tiptrot.com
tiptrot.com October 17, 2017


WannaCry Ransomware: Microsoft Calls Out NSA For 'Stockpiling' Vulnerabilities

20 May 2017, 02:45 | Deanna Wagner

Security agencies are hunting for those behind a crippling cyberattack which has so far hit hundreds of thousands of computers worldwide, including at government agencies, factories and health services.

Ransomware is a kind of malicious software that, as its name implies, takes a computer hostage and holds it for ransom.

"That's what makes this more troubling than ransomware was a week ago", Thakur said.

"So we have the WannaCry thing".

Keep all the software on your computer up-to-date. But these worm attacks became harder to pull off as computer owners and software makers shored up their defenses.

"The government's response has been chaotic, to be frank", the British Labour Party's health spokesman Jon Ashworth said.

The attack has locked computers and blocked access to patient files.

Rather than relying exclusively on users clicking on malicious attachments or links, WannaCry can slip in without user action, then use the infected machine to spread the ransomware further.

The attack is unique, according to Europol, because it combines ransomware with a worm function, meaning once one machine is infected, the entire internal network is scanned and other vulnerable machines are infected. After talking to Microsoft, we had asked people to install patch system in March. Sure enough, WannaCry found plenty of targets. WannaCry exploited common techniques employees use to share files via a central server. The malware, which can only affect a computer if it is on, may spread further on Monday as people return to work. But that's complicated, because hackers need to find security flaws that are unknown, widespread and relatively easy to exploit.


Information on the vulnerability exploited in the WannaCrypt attack (also called WannaCry, Wana Decryptor or WCry) was reportedly stolen from the NSA in April.

"WannaCrypt ransomware was spread normally long before this and will be long after, what we stopped was the SMB worm variant", he said, referring to the program that affected almost a fifth of NHS Trusts in England and many businesses and government departments around the world. But they could still linger as low-grade infections that flare up from time to time. His law firm sued LinkedIn after a 2012 data breach, alleging individuals paid for premium accounts because the company falsely stated it had top-quality cyber security measures. Unfortunately, two new variations of the virus were spotted on Monday. The hacking tool spreads silently between computers, shutting them down by encrypting data and then demanding a ransom of $300 to unlock them.

The damage might have been temporarily contained.

On Saturday, a cybersecurity researcher told AFP news agency that he had discovered a "kill switch" that can prevent the spread of WannaCry. But attackers can, and probably will, simply develop a variant to bypass this countermeasure.

“The geography of attacks that hit post-Soviet Union most also suggests that.” In retrospect, what more convenient confluence of events could there be than having a handy justification for Q2 GDP missing again - just blame it on the computer virus - and accusing Russian Federation of being responsible for the latest global slowdown. "Talk about a wake-up call", Hypponen said.

"It seems that a lot of internet security guys over the weekend did their homework and ran the security software updates". "Part of what an organization needs to understand and assess is what those two risks are".

The attack spread to a large swath of different organizations around the world, including the French vehicle company Renault, the Russian cellphone operator MegaFon and USA -based FedEx.

If your company uses an older Windows network system no longer supported by Microsoft, you may not have been prompted to download security updates, but they're available from Microsoft's site. "We've seen that the slowdown of the infection rate over Friday night, after a temporary fix around it, has now been overcome by a second variation the criminals have released".



Other News

Trending Now

Amtrak Conductor Shot; Suspect in Custody
The Amtrak train, called the Southwest Chief, runs from Los Angeles to Chicago and was carrying 235 passengers at the time. He had been shot in the torso and was taken to Edward Hospital in Naperville, where he was conscious and alert.

Senate Intelligence Committee requests Comey memos
The person who described the Comey memo to the AP was not authorized to discuss it by name and spoke on condition of anonymity. A pair of Senate committees, meanwhile, wants more information about Comey's interaction with President Trump.

'Guardians of the Galaxy Vol. 2' blasts off with $145M debut
More impressive is that Disney releases are the only films to open above $100 million in North America so far in 2017. The Tollywood film (in the Telugu language) has in two weeks grossed $147.3 million globally, according to comScore .

Information Trump shared with Russians came from Israel, official says
The information, which concerned a plot regarding aviation security and the Islamic State, was cited as being from a "partner". Even when intelligence is declassified, the government typically keeps secret the ways it acquired the intelligence.

Trump administration kickstarts Nafta renegotiation
Luis Videgaray, Mexico's foreign minister, said at an event in Washington Thursday that his country is ready for the talks. The Mexican official said he welcomed the opportunity to update the agreement, but insisted it must remain trilateral.

Premier League table: Where could every team finish this season?
Arsenal legend Ian Wright has backed Gunners fans for "voting with their feet" and boycotting the club's game against Sunderland. A victory at home to Everton on Sunday may still not be enough given and could hand them their worst league finish since 1996.

Ransomware Cyber-Attack A Wake-Up Call, Microsoft Warns
The cyberattack, which began in London Friday morning, has so far affected 150 countries and locked 200,000 computers . Repeatedly, exploits in the hands of governments have leaked into the public domain and caused widespread damage.

Trump shared secret info about IS with Russians
Putin even suggested that Russian Federation share the records of last week's talks between Trump and Lavrov with the U.S. The officer went on to say they "would not trust a partner who shared intelligence" without telling them first.

Derek Jeter to exploding Yankee Stadium: Thank you
They each were given Monument Park blazers. "You know, I prided myself in my career to be prepared at all games", he replied. During Jeter's remarks - which he later said were off the cuff - he emphasized how thankful he was.

United Nations chief condemns North Korea over missile launch
The United Nations Security Council on Monday strongly condemned a weekend missile launch by North Korea. The White House, in a statement, said North Korea has been "a flagrant menace for far too long".