WannaCry Ransomware: Story Of One Of The Worst Cyber ​​Attacks

Oleh Admin -
WannaCry Ransomware
Photo credit: Wikipedia

The WannaCry ransomware attack that occurred in 2017 was one of the fastest-spreading cyber attacks. The attacks ultimately cost billions of dollars and the effects are still being felt today.

This attack occurs due to the use of an outdated computer system. At that time, people lack the awareness to always update the software they use, making it vulnerable to cyber attacks.

The WannaCry ransomware attack is a warning for companies to always update the operating system (OS) and the software they use. In general, developers will always improve the security system on the devices they develop so that users can avoid various cyber attacks.

What is WannaCry Ransomware?

WannaCry is a crypto worm ransomware that attacks computers running the Microsoft Windows operating system by encrypting data and requesting a ransom payment in the form of Bitcoin cryptocurrency. WannaCry is also known as WannaCrypt, WCry, Wana Decrypt0r 2.0, WanaCrypt0r 2.0, and Wanna Decryptor.

This ransomware exploits a vulnerability that existed in old Windows. Even though Microsoft has patched the vulnerability quickly, the majority of companies remain infected because they did not update the systems they use. In other words, many companies are still using older versions of Windows.

Once the WannaCry ransomware infects your device, it will start infecting your computer and encrypt all data. After that, the program will display a screen asking the victim to pay a certain amount of money to regain access. Typically, the asking price will get higher over time until the files are destroyed.
$ads={1}

How Does WannaCry Ransomware Spread?

Since it first appeared on 12 May 2017, the WannaCry ransomware has infected hundreds of thousands of computers worldwide, including devices belonging to government agencies and hospitals.

WannaCry spreads using a Windows vulnerability known as MS17-010, which hackers can take advantage of the EternalBlue exploit. The vulnerability was discovered by the United States National Security Agency (NSA) but did not immediately report it to Microsoft, but used it to create exploits for its own offensive work. 

WannaCry targets networks using SMBv1, a file sharing protocol that allows PCs to communicate with printers or other devices connected to the same network. The WannaCry ransomware behaves like a worm so it can spread over the network.

Once installed on one machine, WannaCry will scan the network for other devices that are more vulnerable to infection. WannaCry enters the system via the EternalBlue exploit using a backdoor tool called DoublePulsar to install and run itself. Therefore, WannaCry can spread quickly without the need for human interaction and without the need for files or host programs.

WannaCry Attack in May 2017

The WannaCry ransomware attack began on May 12, 2017, which is the first to occur in Asia. Quickly, this attack infects as many as 10,000 people every hour and is finally stopped after 4 days.

This attack then caused various chaos. Many businesses have lost data and hospitals have reported many cancellations of surgery because patient files were lost. While not 100% sure, the cybersecurity community attributed the attack to North Korea.

Although WannaCry does not appear to be targeting anyone specifically, it is spreading rapidly to 150 countries. Most of the attacks occurred in Russia, China, Ukraine, Taiwan, India and Brazil.

The victim will be asked to pay a ransom of $300 in Bitcoin within 3 days or $600 in a week. If the victim does not pay the ransom, the victim will be informed that their file will be permanently deleted.

Cybersecurity researcher Marcus Hutchins found that once WannaCry lands on a system, WannaCry will try to reach a specific URL. If no URL is found, the ransomware will infect the system and encrypt the files. Hutchins can register a domain name to create a DNS sinkhole that acts as a kill switch on and off of WannaCry. 
$ads={2}

How to Avoid Ransomware Attacks

Even though the WannaCry ransomware doesn't do much damage anymore, there are still many other ransomware that threaten your business. If you want to protect your business from cyber attacks, then there are a few tips you can do like:
  1. Always update the software and OS you are using. As explained above, WannaCry attacks companies that are still running old or outdated versions of software. Outdated software still has unpatched or unfixed vulnerabilities, making it especially vulnerable to attack. Therefore, always update the software you are using.
  2. Don't open suspicious email links (phishing emails). Ransomware can also be spread via phishing emails. Always avoid suspicious email links. 
  3. Download software, applications, or media files from official or trusted websites. 
  4. Using anti virus or anti malware.
  5. Routinely perform penetration testing (pentest). Currently, there are many penetration testing services that will help find vulnerabilities in the system you are using or developing. By regularly performing pentest, you can find out weaknesses in your system so that patching can be done immediately.
  6. Perform regular data backups.

Komentar

Posting Komentar

Postingan populer dari blog ini

The Hacker News Premium Blogger Template Download

Oleh Admin -
Gambar
The Hacker News Blogger Template Download The Hacker News Blogger Template  is a blazing cool and responsive blogger template.  The Hacker News template  is designed by Nigerian blogger and web designer  Harbyjay,  Designer of this blog.  This is the original theme used in the popular Cybersecurity news blog thehackernews.com we now provide the template for general use courtesy of Fetney Blog.   Features of Fetney Official Blogger Template Responsive Mobile Friendly SEO Friendly Dynamic Heading High CTR Personal Blog Lazyload Images Facebook Comment Responsive Ad Slot Breadcrumbs Search Box Social Share Button Responsive Dropdown Menu Social Links Widget Recommended Widget Custom Subscribe Box Widget Well Documentation More... Download The Hacker News blogger template. Download The Hacker News blogger template . DEMO   BUY $5
Baca selengkapnya

Is the Martingale Strategy Suitable for Money Management in Quotex Trading?

Oleh Admin -
Gambar
Is the Martingale Strategy Suitable for Money Management in Quotex Trading? One of the main ways to sustain profitable options trading is money management. Youll want to minimize losses and increase your winning trades. This way, winners will offset the losing trades and leave you with some profit. But when you incur a loss, adjusting your trading to reflect the remaining capital is vital to long term trading. Common sense dictates that you lower the amount you place on trades following a loss. But one strategy advises the opposite. This is the Martingale strategy. How does the Martingale strategy work? The Martingale strategy requires that you increase your bet amount even if you lose. That is, if you lose on a trade, the amount you invest on the next trade should be a multiple of what you lost. If you lose again, increase your investment until you finally get a winning trade. Once you get a winning trade, start all over again with the initial small investment. How does the Martingale
Baca selengkapnya

Earn with compounding on Quotex

Oleh Admin -
Gambar
Do you have a weekly profit target while trading on the Quotex platform? Well, I hope you do. It is proven that having one brings a lot of advantages and has a positive psychological effect. You will enter the transactions that will move you towards your goal. On the other hand, when you reach the weekly target you will know, you can take a break for the rest of the week. In this guide, I want to show you that you have a huge earning potential of at least 20% weekly profit. I am going to talk of an example of trading at Quotex for 1 year with an initial sum of $1,000. Compounding your money in 1 year 50 weeks. This is the time left after deducting holidays in the trading business from 52 weeks in a year. And this is the time to work the well-proven science of compounding to provide 20% of the weekly return. Assuming that everything goes according to plan, that your initial balance account is $1,000 and your weekly profit target is 20%, you should gain $200 during 5 working days of the
Baca selengkapnya