Wannacry Ransomware..what is this?

Some of you may have heard of this virus.  On May 12th, 2017 this Virus attack began.  It infected almost a 1/4 of a million computers in around 150 countries.

Windows XP and Microsoft Server 2003 were the most vulnerable but since there are not many computers running those operating systems.  Most of the computers impacted were running Windows 7.  Since the outbreak (in fact within 4 days) patches were applied to windows computers which slowed further infections down dramatically.

A infected computer will have a message displayed on their computer stating that their files have been encrypted.

A demand is made for a payment in “Bitcoin” to the value of $300 and if not paid within 7 days, this amount is raised to $600.  By the end of May 2017, around a little under $130 thousand dollars had been transferred to the Bitcoin Wallet or address.

What can you do to protect yourself?

  1. Backup your data
  2. Backup your backup  (Keep multiple backups)
  3. Keep an “Airbridge” between your computer and your backup.  i.e disconnect the backup once it is complete.
  4. Test your backups work.
  5. Get some decryption tools. There are available for most of the main antivirus companies.  The issues here is that sometimes they need a copy of for example a image file that was encrypted to have as a comparison to the encrypted file.  See what has changed on this file and then work out how to decryped the image file.  This does not always work but worth having.
Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s