Dimanche, 24 Septembre 2017
Latest news
Main » Microsoft Releases Emergency Security Update for Wanacrypt Ransomware

Microsoft Releases Emergency Security Update for Wanacrypt Ransomware

16 Mai 2017

Dame Fiona and the Care Quality Commission wrote to Mr Hunt to highlight a "lack of understanding of security issues", the newspaper said, and that "the external cyber threat is becoming a bigger consideration".

Two employees at St Bartholomew's Hospital, which is part of Barts Health, told AFP that all the computers in the hospital had been turned off. Those infected are asked for a payment of $300 in order to decrypt the files on their PCs.

Spanish authorities confirmed the ransomware is spreading through the vulnerability, called "EternalBlue", and advised people to patch.

The ransomware, also known as "WanaCryt0r", "WeCry", "WanaCrypt" or "WeCrypt0r", used a vulnerability in a Windows Server component to spread within corporate networks. WannaCry was especially successful because it was able to leverage the spy tools which the NSA developed to monitor the computers of suspected terrorists, an exploit which was leaked last month.

These exploits, which Hickey calls "highly reliable" and "weaponized", were then released onto the Internet by a group called the ShadowBrokers and made available to be downloaded by anyone wanting to engage in espionage or cyber crime. In March, Microsoft patched the vulnerability that the ransomware exploits - but only for newer Windows systems.

According to the Financial Times, data shows that more than 1.3 million computer systems are still vulnerable to infection by WannaCry, which has paralyzed hospitals, disrupted transport networks and immobilized businesses around the world.

Alongside the Fall Creators Update, Microsoft will be debuting its Fluent Design System for Windows 10.

The Japan Computer Emergency Response Team Coordination Center, a nonprofit providing support for computer attacks, said 2,000 computers at 600 locations in Japan were reported affected so far. A large cyberattack crippled computer systems at hospitals across England on Friday, with appointments canceled, phone lines down and patients turned away.

Also hit were Deutsche Bahn, the Russian Central Bank, Russian Railways, Russia's Interior Ministry, Megafon and Telefónica.

Companies and institutions are often slow to update their computers because it can screw up internal software that is built to work with a certain version of Windows. Microsoft swiftly released software "patches" to fix those holes, but many users still haven't installed updates or still use older versions of Windows.

While now on the decline, WannaCrypt could still pose a potential threat to users who have not updated their systems to patch the vulnerability, which affects older versions of Microsoft Windows. Note this means that the backup can't be on your computer but should be in the cloud or on an external hard drive. The easiest thing to do is approve auto-updates, if your particular Windows system allows that.

Researchers who helped prevent the spread of the malware and cybersecurity firms worked around the clock during the weekend to monitor the situation and install a software patch to block the worm from infecting computers in corporations across the U.S., Europe and Asia. However, paying the ransom is no guarantee for getting the files will be restored and might just open up new attacks. "They said the system was down and that they can not transfer anyone till the computer system was back up so he is still in the theatre".

An unprecedented "ransomware" cyberattack that has already hit tens of thousands of victims in 150 countries could wreak even more havoc Monday as people return to their desks and power up their computers at the start of the work week.

"WannaCry is different from anything we've ever seen before in that it's a union of the old and new", said Haiyan Song, senior vice president of security markets at Splunk, in an email to CRN.

The US government on Saturday issued a technical alert with advice on how to protect against the attacks, asking victims to report attacks to the Federal Bureau of Investigation or Department of Homeland Security.

Microsoft Releases Emergency Security Update for Wanacrypt Ransomware