Crippling crypto malware sweeps across the globe
15 May 2017
Over the last day or so, media outlets and IT security organisations have published details on a malicious software “WannaCrypt”. Many businesses and individuals have been affected by this cyberattack where files on computers become crypto locked and require a ransom to be paid so that files can be unlocked, with a password. This malware has targeted Windows Server and Desktop operating systems using a known vulnerability.
Rather than adopting a 'wait and see' approach, indviduals and organisations are encouraged to ensure the security update associated with Microsoft Security Bulletin MS17-010 has already been deployed within their IT environment. If this has not been done already, this should be done immediately. In cases where automatic updates are enabled, or have deployed this update from a managed service, these systems should already be protected from the vulnerability these attacks are trying to exploit.
The Microsoft Security Response Center (MSRC) blog at Customer Guidance for WannaCrypt Attacks also provides further details of the malware, suggested actions, and links to additional resources.
Should you have any concerns on this or relating IS business issues, please feel free to contact Harun Abdul-Haqq (IS Advisory).
Related BDO Insights:
- Article: Dealing with Ransomware
- Article: Cyber for the C-Suite
- Article: M&A Update – The technology market heats up
- Business tool: Managing Risk – Elevation of Cybersecurity to the Boardroom