Skip to main content

WannaCry (WannaCrypt) Ransomware Encrypts Victim Data

Last Update Date: 15 May 2017 Release Date: 13 May 2017 20298 Views

RISK: Extremely High Risk

TYPE: Operating Systems - Windows OS

TYPE: Windows OS

A new variant of ransomware known as WannaCry (WannaCrypt) is spreading quickly, through a Windows SMB vulnerability (EternalBlue and DoublePulsar). HKCERT was aware that there is a widespread overseas.

 

Note: The vulnerability is being exploited to spread the ransomware attack.

 

Impacts:

  • WannaCry encrypts files on victims’ computers and adds a .WCRY file extension to them.
  • Files on network drives are affected.
  • Data will be unrecoverable due to encryption by ransomware.

System / Technologies affected

(Please note the affected SMB versions are updated.)
  • Windows 10 and prior (SMB v1)
  • Windows Server 2016 and prior (SMB v1)

Solutions

To protect yourself from WannaCry ransomeware and mitigation after infection, please refer to:

/my_url/en/blog/17051401


Vulnerability Identifier

  • No CVE information is available

Source


Related Link