Breaking

Monday, 15 May 2017

WannaCry Ransomware Attack - How to be safe ?

on in , , , , , , ,
WannaCry Ransomware Attack -How to be safe? 



WannaCry ransomware (also known as 'Wana Decrypt0r,' 'WannaCryptor' or 'WCRY') attack that has become the largest ransomware attack in the history within just a few hours. At Friday, May 12, 2017 this ransomware attack happen all over the world.Yet WannaCry have been infected over 237,000+ computers across 99+ countries around the world still infecting.India One Of The Worst Affected By WannaCry, Says QuickHeal Co-Founder.

The Ransomware is a type on virus which affect  the victims system who using windows unsupported operation system (XP , Vista , win 8..).

Who is Behind WannaCry ?

It isn’t known yet.It is widely accepted that the hackers used the Hacking tool (Eternal Blue) created by America’s National Security Agency (NSA) to gain access to Microsoft Windows computers.

What exactly happened?

At last Friday the Virus (Ransomware) call 'WannaCry' infecting number of computer using windows operating system.WannaCry encrypts the files on infected Windows systems. and demands money to unlock it. Once infected with the WannaCry ransomware, victims are asked to pay up to $300 in order to remove the infection from their PCs; otherwise, their PCs render unusable, and their files remain locked.Also expert said there is no guarantee to get unlocked after payment.and WannaCry also scans for other vulnerable computers connected to the same network, as well scans random hosts on the wider Internet, to spread quickly.Its a largest spreading attack over last 10 years.
It also drops a file named !Please Read Me!.txt which contains the text explaining what has happened and how to pay the ransom.

Source: Symantec

How WannaCry Spread?

     • It may comes through an malicious attachments to emails.
     • It also spreads through LAN from an infected system of same network. 
What to do for safty?

     •  If you are using an unsupported version of Windows Operating system,             you are advised to either upgrade to Windows 10 or install the latest                 emergency patch issued by Microsoft Security Bulletin MS17-010 for                 Windows XP, Vista,and 8, server 2003 and 2008. 
     •  Microsoft Patch for Unsupported Versions such as Windows                                XP,Vista,Server 2003, Server 2008 etc..                                                          http://www.catalog.update.microsoft.com/Search.aspx?q=KB4012598
     •  Disable SMBv1. (How-to)
     •   To prevent data loss Users & Organisations are advised to take backup of           Critical Data  
     •  Use latest and updated anti-malware as well anti-virus softwares having            the latest patches.
     •  Dont install any exe from malicious emails.
     •  Use Anti-Ransomware tools. 
  1. AVG
  2. TrendMicro
  3. Avast
  4. BitDefender
  5. Kaspersky      
   

References:
google.com
thehackernews.com
cyberswachhtakendra.gov.in
https://technet.microsoft.com/library/security/MS17-010





Read this post in marathi .

• What is Ransomware?




Author Image

About Ssachin Ujjjainkar
Sachin Ujjainkar is a Tech blogger,Started this blog with a dream to provide every possible guides and tutorials related to Android , Computer , Technology,Ethical Hacking and Website for newbie Blogger. The Main Goal of starting this blog is to build an active community of People so that they can Learn About Blogging, Web Designing, Web Developing,Ethical Hacking And Technology Update.

Related Posts:
-
Labels: , , , , , , ,

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)