WannaCry (WannaCrypt) Ransomware Encrypts Victim Data
Last Update Date:
15 May 2017
Release Date:
13 May 2017
23493
Views
RISK: Extremely High Risk
TYPE: Operating Systems - Windows OS
A new variant of ransomware known as WannaCry (WannaCrypt) is spreading quickly, through a Windows SMB vulnerability (EternalBlue and DoublePulsar). HKCERT was aware that there is a widespread overseas.
Note: The vulnerability is being exploited to spread the ransomware attack.
Impacts:
- WannaCry encrypts files on victims’ computers and adds a .WCRY file extension to them.
- Files on network drives are affected.
- Data will be unrecoverable due to encryption by ransomware.
System / Technologies affected
(Please note the affected SMB versions are updated.)
- Windows 10 and prior (SMB v1)
- Windows Server 2016 and prior (SMB v1)
Solutions
To protect yourself from WannaCry ransomeware and mitigation after infection, please refer to:
Vulnerability Identifier
- No CVE information is available
Source
Related Link
Share with