tiptrot.com
tiptrot.com June 26, 2017


22 million WannaCry ransomware attack attempts blocked by Symantec

23 May 2017, 11:17 | Deanna Wagner

Companies Victimized By WannaCry Ransomware Could Be Sued For Negligence

Pirated, outdated operating systems contributes in global ransomware attack

The ransomware attack that began on Friday - known as WannaCry - is believed to be the largest cyber exploitation attack recorded, according to multiple cybersecurity experts. However, the evidence is not conclusive. Attacks of this kind have spiked in the past year, jumping from 340,665 in 2015 to 463,841 in 2016, according to online security company Symantec. "Once such attacks come out in the public domain and they usually get patched by the maintainers of the OS".

'The United States, more than probably any other country, is extremely careful with their processes about how they handle any vulnerabilities that they're aware of, ' Tom Bossert, the White House homeland security adviser, said at a press briefing on Monday.

A Cybercpace Administration of China official said on Monday, that although the virus is still spreading, it has slowed.

The WannaCry attack "bore some striking similarities to the code used in those three attacks". The unprecedented planet-wide attack is another harbinger of the world's exposure to hackers and digital terrorists. Moreover, in addition to Symantec, researchers at Google and Kaspersky Lab confirmed the coding similarities, the Times reports.

"Technology companies owe their customers a reliable process for patching security vulnerabilities", he said. The software is WannaCry ransomware which took over the machines of more than 150 countries including India. The program takes control over a user's system and brings up a message telling users they can recover their files only if they send $300, or in some cases $600 in bitcoins to a specific address.

Experts are suspecting that the next wave of attacks will be subjected to the banking sector.

At present, the so-called "kill switch" for the attack, discovered by a young British cybersecurity researcher, is no longer effective.

"Hopefully people are learning how important it is to apply these patches", said Darien Huss, a senior security research engineer for cybersecurity firm Proofpoint, who helped stem the reach of the weekend attack.


How did all of this get started?

The hackers are called Shadow brokers.

Sadly, your only options are to pay the ransom or to try Bleeping Computer's guide to removing WannaCry from your system, though we can not confirm at this time whether or not it works. Users are also advised to back up valuable data regularly, either to cloud services or to another disk drives, an not click on suspicious links or attached files. "(The unit has since been renamed.)", according to the Times.

"For Microsoft to say that governments should stop developing exploits to Microsoft products is naive", said Brian Lord, a managing director at PGI Cyber and former deputy director at the Government Communications Headquarters, one of the UK's intelligence agencies. This is an emerging pattern in 2017.

The computing giant said software vulnerabilities hoarded by governments had caused "widespread damage", the BBC reported.

Smith said that Friday's attack demonstrated how cyber security was becoming a shared responsibility between customer and supplier.

A researcher from Google posted on Twitter that an early version of WannaCrypt from February shared some of the same programming code as malicious software used by the Lazarus Group, the alleged North Korean government hackers behind the destructive attack on Sony Corporation in 2014 and the theft of $81 million from a Bangladesh central bank account at the New York Fed previous year. And while Microsoft said it had already released a security update to patch the vulnerability one month earlier, the sequence of events fed speculation that the NSA hadn't told the us tech giant about the security risk until after it had been stolen.

The new hacking tool also exploits weaknesses in older versions of Microsoft Windows software and was stolen from the US National Security Agency, like the stolen tool that formed the basis of last week's WannaCry attack.



Other News

Trending Now

Ecuador 'did its duty' by giving Assange asylum, Correa says
He said he has suffered a "terrible injustice", without ever being charged with a crime. "The European arrest warrant against Mr. Friday was the deadline for the Swedish public prosecutor's office to either renew the pan-European arrest warrant or lift it.

Christie: Flynn wouldn't be allowed in White House if I were president
Christie declined to elaborate on his reservations about Flynn, citing classified information. Flynn, Christie allowed, could "go on a tour" like the rest of the public.

Mark Zuckerberg Reveals Video Of Exact Moment He Was Accepted Into Harvard
He initially tried to push the camera away before he celebrated with a quiet: " Yay, I got accepted ". One lesson I've learned from marriage is that exploring together just gets better over time.

Microsoft says cyberattack should be wake up call for governments
Microsoft itself has come under fire for not providing regular security updates for older versions of its software. The temporary fix initially helped slow down the rate of infected computers .

Kevin McCarthy: Comment that Putin is paying Trump was bad joke
Brendan Buck , a Ryan spokesman, told the newspaper: " That never happened ", but later said on Twitter: "Goodness, I don't lie". Rohrabacher said he isn't taking offense to the comments, adding he believes the majority leader made the comments in jest.

Zverev shrugs off expectations at French Open
Fellow 30-and-over rivals Rafael Nadal, Stan Wawrinka and Andy Murray chimed in with birthday wishes. Boris Becker left the Djokovic entourage last December after three successful years together.

Ceremony honors fallen officers
The exercise was part of the first-ever HOPE (Honoring Our Police in Elgin) Luncheon held Wednesday at the Centre of Elgin. A wreath was placed at the Troy Police Department during the ceremony and another at Bicentennial Park after the ceremony.

Army foils infiltration bid on LoC, 3 soldiers among 7 killed
Sources told Mirror that after the operation was resumed, the terrorists who were hiding started firing in which one soldier died. An official said that four weapons and other war-like stores had been recovered from the encounter site.

US extends 'temporary protected status' to Haitians until January
And, they said, there is no way the country can absorb the return of 58,000 people who have protected status. TPS holders were just in the right place at the right time, and in effect won the lottery.

Iran reformist drops out of election, supports Rouhani
That held true in 1997 with the election of reformer Seyyed Mohammad Khatami, who threw his support Monday behind Rouhani. Both have promised to create millions of jobs if elected and increase cash handouts to the poorer segments of society.