Posts Tagged ‘WANNACRY’

There was a rapid growth of encryption programs in 2017. The most striking attacks were WannaCry, exPetr and BadRabbit. The attacks were aimed at businesses, and cyber security experts are looking for a way to stop the spread of the virus. Experts say that WannaCry has not been destroyed yet.

Bitcoin is the most famous cryptocurrency, and the oldest one. Previously, it could be mined using a home computer. It was even possible to use your laptop. Then the situation shifted to the use of GPUs as the complexity of cryptocurrency mining increased. At present, you need specialized intelligent equipment.

Rene Milman wrote an article about how the latest Microsoft operating system could be infected with ransomware. Malicious can on TCP scan 445 port (Server Message Block / SMB) and spread like a worm, attacking hosts and encrypting the files that are on them. After that, he wants to list some number of bitcoyans for decryption.

In mid-May 2017, many companies around the world were attacked by the WannaCry network crypto variant. The Wannacle malware spread across local networks and the Internet by exploiting the CVE-2017-0143 (MS17-010) vulnerability in components of the SMBv1 service (port TCP 445) in Windows operating systems. Since the industrial network is not directly connected to the Internet, and access is provided through the corporate network using NAT, a firewall and a corporate proxy server, which makes it impossible to infect such systems via the Internet. There are typical industrial network configuration errors, which have led to WannaCry infections, according to our data: