05-18-2017 , 05:57 PM
Quote:A few days ago saw the beginning of the Trojan encryptor WannaCry outbreak. It appears to be pandemic — a global epidemic. We counted more than 45,000 cases of the attack in just one day, but the true number is much higher.
Several large organizations reported an infection simultaneously. Among them were several British hospitals that had to suspend their operations. According to data released by third parties, WannaCry has infected more than 200,000 computers. The sheer number of infections is a big part of the reason it has drawn so much attention.
The largest number of attacks occurred in Russia, but Ukraine, India, and Taiwan have suffered much damage from WannaCry as well. In just the first day of the attack, we found WannaCry in 74 countries.
What is WannaCry?
Generally, WannaCry comes in two parts. First, it’s an You are not allowed to view links. Register or Login to view. whose purposes are infection and propagation. The second part is an You are not allowed to view links. Register or Login to view. that is downloaded to a computer after it has been infected.
The first part is the main difference between WannaCry and the majority of encryptors. To infect a computer with a common encryptor, a user has to make a mistake, for example by clicking a suspicious link, allowing Word to run a malicious macro, or downloading a suspicious attachment from an e-mail message. A system can be infected with WannaCry without the user doing anything.
WannaCry: Exploit and propagation
The creators of WannaCry have taken advantage of the Windows exploit known as EternalBlue, which relies on a vulnerability that Microsoft You are not allowed to view links. Register or Login to view., dated March 14 of this year. By using the exploit, the malefactors could gain remote access to computers and install the encryptor.
Read the full article here:
You are not allowed to view links. Register or Login to view.