BLOG

Mar
05
WannaCry - Ransomware Attack Stolen From NSA Leak Is Running Wild In More Than 99 Countries

temp-post-image

CNN is reporting that Avast security software has tracked more than 75,000 attacked computers in 99 countries by the WannaCry ransomware. Image: Wired

Who has been targeted?

The attack seems to have been focused on infrastrutural networks such as National Health Service (NHS) hospitals and facilities in England and telecom and natural gas companies in Spain. And the wormable ransomware is quickly spreading to other vulnerable systems and networks.

How have systems become infected?

The ransomware takes advantage of a Windows vulnerability called EternalBlue. Microsoft released a patch in March for the NSA leaked vulnerability, but many system administrators have not yet installed this patch--especially on networks related to healthcare, hospitals and other civil infrastructure. Worse yet, once a computer is infected, the virus is designed to "hunt" out other computers on the network to take advantage of the same exploit. As a result, the attack has grown at an unprecedented rate in the last 24 hours. It will be interesting to see how the attack develops, and to what ends system administratos will need to go to remediate the infection.

How do I know if I'm risk?

Contact your IT Solutions Provider