Ransomware wannacry Attack

  • Monday, 15th May, 2017
  • 10:04am

In these days heavy ransomware attacks (especially wannacry). As you know, the virus encrypts data on your computer's filesystems and asks for a ransom to retrieve the data. This of course impacts on companies, professionals and production activities and can get them kneeling. You must absolutely defend yourself from this attack so that you will not face very unpleasant consequences. What we suggest is the following

  • Back up all your data to easily restore the affected systems in case of encryption by WannaCry. The backup is safer if done on external media immediately disconnected after the backup itself
  • Disable where possible and consider appropriate services: Server Message Block (SMB) and Remote Desktop Protocol (RDP);
  • The virus propagates through normal email-based installation but with suspicious links or attachments
  • The virus attacks both network share and cloud backup so for those who have not yet done upgrading backup copy and keep sensitive data isolated from the computer that uses them
  • Perform Security Updates of Intrusion Detection Devices (IPS / IDS)
  • Block all incoming traffic on protocols: Server Message Block (SMB) and Remote Desktop Protocol (RDP)

We recall that the attack was launched last Friday and hit over 150 countries, and made at least 200,000 casualties, including corporations and large corporations. This is an attack that can still be repeated many times, scrupulously follow the warnings indicated and contact an expert in case of infection.


Here are the links to update old windows versions

  • Windows Vista: http://www.catalog.update.microsoft.com/Search.aspx?q=KB4012598
  • Windows 7: http://www.catalog.update.microsoft.com/Search.aspx?q=KB4012212

 




« Back