I have been having a hard time finding any practical info regarding the growing concern of this most recent large scale ransomware attack.
I am talking about the one that took down the UK hospitals systems.
From what I have read this is a worm and there will be a newer stronger version released soon.
It infects the system, scrambles data, and the crooks extort money for the key to unscramble the data.
What I would like to know is, is this a threat to the casual internet user or is this focused on corporate/large scale systems?
Do I need to take steps to protect my systems; Win10 and WinXP?
Latest ransomware attacks
Re: Latest ransomware attacks
It uses last march's SMB attack.
If you are up to date with patches, and as extra mitigation disabled SMB ports on your router, you should be ok.
If you are up to date with patches, and as extra mitigation disabled SMB ports on your router, you should be ok.
-
- Posts: 3906
- Joined: Jan 01, 2009 7:03
- Location: Australia
Re: Latest ransomware attacks
You are just as susceptible to an attack as any corporation if you don't have the latest M$ updates or click on something you shouldn't in an email.sancho2 wrote:What I would like to know is, is this a threat to the casual internet user or is this focused on corporate/large scale systems?
Always backup your vital files daily anyway on a separate system. (USB hard drive). I don't have much data just photos and of course FB programs which I copy to USB sticks.
.
Re: Latest ransomware attacks
See https://blogs.technet.microsoft.com/msr ... t-attacks/ to get the fix, especially if you are still on XP, because you probably have to download & install the update manually as automatic update doesn't necessarily work anymore. If you are using Windows 7, 8.1 or 10 you shouldn't need to do anything, provided that you installed updates regularly. Te fix was publish already in march for those systems.
See https://technet.microsoft.com/library/security/ms17-010 for some more details about the problem and the fix.
See https://technet.microsoft.com/library/security/ms17-010 for some more details about the problem and the fix.
Re: Latest ransomware attacks
I written small application that disable some widely used way to infect computers - by running JS/VBS scripts from email attachments. 99.99% of users does not need to have possibility tu run scripts by double click, but hackers using this default behaviour on Windows to infect computers. So I updated registry by application to change default behaviour from run script to view script in Notepad. If you still want possibility to run scripts, use "-run" argument and application will add Run command to right click menu, so you can still run scripts but not without control like M$ designed inside Windows. Source code included if you want compile it by yourself. Need to run under admin privileges.
This app will not protect you against latest WannaCry which use SMB protocol attack, but can protect you and specially ordinary users from most used attacks by scripted attachments in emails. I used it in logon script also to protect all users. Enjoy it.
https://drive.google.com/file/d/0B8CO0m ... sp=sharing
This app will not protect you against latest WannaCry which use SMB protocol attack, but can protect you and specially ordinary users from most used attacks by scripted attachments in emails. I used it in logon script also to protect all users. Enjoy it.
https://drive.google.com/file/d/0B8CO0m ... sp=sharing
Re: Latest ransomware attacks
Thanks, I downloaded the fix for XP from MS.St_W wrote:See https://technet.microsoft.com/library/security/ms17-010 for some more details about the problem and the fix.