You are viewing the article What is Wanna Cry Ransomware? How to prevent? at Lassho.edu.vn you can quickly access the necessary information in the table of contents of the article below.
Recently, a large-scale cyber attack with about 75,000 computers was infected across 99 countries by a type of ransomware known as Wanna Cry. What is this and how to prevent it, please follow the following article.
What is Wanna Cry Ransomware?
WannaCry is a type of malicious code that, when infiltrating a user’s device, computer or enterprise system, automatically encrypts a series of files in targeted formats such as documents, images. .. Individual users as well as businesses will have to pay a small amount of money if they want to get that data back.
In terms of infection, the WannaCry malware finds security holes and infects them inside the organization by exploiting the vulnerability disclosed by the NSA tool stolen by the hacker group The Shadow Brokers. This ransomware mainly exploits the vulnerability of the SMB protocol that organizations and individuals have not patched in time, focusing on Win2k8 R2 and Win XP.
This type of attack is different from the traditional method of using a worm, a program that clones itself into a computer system and tricks users into clicking on a malicious link.
It is estimated that the cyber attack took place on a global scale, affecting about 99 countries, including the UK, the US, China, Russia, Spain, Italy, Taiwan (China), Vietnam and Vietnam. many other countries. According to Intel experts, currently the vulnerability has been reported in Hanoi and Ho Chi Minh City, and may spread nationwide.
By the end of May 13, according to TheHackerNews, the largest ransomware attack ever, WannaCry has successfully infected more than 200,000 Windows computers in at least 99 countries. Within the first few hours of spreading, the amount of money the hacker group behind WannaCry collected was about $ 30,000.
Not stopping, a more sophisticated upgraded version of WannaCry, WannaCry 2.0, has just been released by the hacker group and is continuing to infect hundreds of thousands of computers around the globe.
How to check the level of Wanna Cry virus infection
You can click this link: https://intel.malwaretech.com/WannaCrypt.html
How to launch anti-virus WannaCry
According to expert CMC INFOSEC, in the coming week, the hacker group will see many new variants of WannaCry as well as new more complex malicious codes.
Therefore, the urgent job at the moment is to temporarily disable SMB and constantly update patches with Windows operating systems, especially with servers. In addition, users still need to be wary of opening strange emails and files of unknown origin.
Enterprises and users can download Microsoft’s emergency patch, for the bug in the SMB protocol, for use on versions that are no longer supported including Windows XP, Vista, Windows8, Server2003 and 2008.
Besides, it is necessary to regularly back up data and have plans to back up business data; watch out for strange links, in which it is best for businesses to have a separate machine for remote employees when they suspect that mail is not secure; For individual users, always install anti-virus software on mobile phones and computers, especially specialized software for data encryption malware.
In short you must:
- Immediately update the version of Windows operating system in use.
- Immediately update the Anti-virus programs in use.
- Be careful when receiving emails with attachments and strange links, on social networks.
- Delete card information on online payment/shopping websites, etc.
- Do not open links with HTA extensions or links with unclear structure, shortened links.
- Take measures to store important data.
Reference: VTV
Supermarket lassho.edu.vn
Thank you for reading this post What is Wanna Cry Ransomware? How to prevent? at Lassho.edu.vn You can comment, see more related articles below and hope to help you with interesting information.
Related Search: