Everything you need to know about WanaCry

There has been alot of misinformation about the WanaCry ransomware.


  • It was spread via malicious attachments in email. NO! The malware needed no user intervention. The machines that were infected had a known, patched flaw that allowed the malware to infect vulnerable, internet connected machines.
  • The NHS was the target. NO! The attack was global in scope, but in the UK there were hundreds of other companies and individuals that were also attacked. Yet the news networks latched on to the NHS story for days, even standing outside hospitals and reporting on the malware.
  • It targeted Windows XP. NO! The EternalBlue infector is ineffective on XP and Server 2003. It is mostly unpatched Windows 7 and Server 2008 machines that spread the malware.
  • Paying the ransom gets you your files back and removes the malware. NO! The malware drops three components. only 2 of which get removed when the ransom is paid.


Everything you want to know about WanaCry

Comments

Post a Comment

Popular Posts