WannaCry Variants Tougher to Kill

Monday, May 15, 2017 @ 05:05 PM gHale

WannaCry ransomware variants are already out there attacking and some are even harder to kill off.

WannaCry is a ransomware that is stronger than other similar malware due to the worm component that helps it spread through networks. This is the main reason why computers in the NHS network went down one after another, or why Renault had to stop production at multiple sites. Once a computer in a network suffers from the infection, it is only a matter of time before the rest are too. Other companies have also suffered, including FedEx and Telefonica, as well as Germany’s railway system.

How to Protect Against ‘WannaCry’
Secrets Under Attack: Report
ICSJWG: New Reality for Safety, Security
ICSJWG: Malware Having ICS Impact

After the security researcher named MalwareTech on Twitter discovered by purchasing a random domain name the initial spread of the WannaCry ransomware was stopped, it didn’t take long for attackers to remove this domain from the code, add another or just leave the code free of such an easy way out.

Multiple researchers confirmed those types of variants are available.
At this point more than 200,000 computers have fallen victim to the ransomware in over 174 countries, despite the kill switch.

The only solution to block this attack is to update the operating system or to make sure you have an anti-malware solution installed to protect you from the malware.

Microsoft released a patch to fix the vulnerability in March. This vulnerability was actually exposed by a hacker group called Shadow Brokers who dumped online a series of documents belonging to the NSA which detailed a Zero Day exploit.

To show how big this attack really is, since the XP and Server 2003 operating systems are no longer supported by Microsot, the software giant, following the launch of WannaCry, released a patch for two systems.

Leave a Reply

You must be logged in to post a comment.