11-17-2019, 08:07 AM
@chanalku91. Today I've got more time for a Google search on this; so here is what I've got, if it's of any help.
The specifics of this ransomware are too technical but I want to refer you to an article by Sophos (from 2 months ago): WannaCry – the worm that just won’t die that kind of lay out the big picture of the "wannacry" current situation. It also refers to a research article (in PDF) done by Peter Mackenzie of Sophos Group: WannaCry Aftershock for more in-depth information.
In that research article, there is a section called "Recommendations and advice" which states the following:
As I said in my previous post, the patch exists since 2017; which means that your windows PCs aren't still patched against EternalBlue vulnerability, which make them a target for this Wannacry ransomware.
The specifics of this ransomware are too technical but I want to refer you to an article by Sophos (from 2 months ago): WannaCry – the worm that just won’t die that kind of lay out the big picture of the "wannacry" current situation. It also refers to a research article (in PDF) done by Peter Mackenzie of Sophos Group: WannaCry Aftershock for more in-depth information.
In that research article, there is a section called "Recommendations and advice" which states the following:
Quote:The most important advice we can share is patch your computers, all of them. Do it now!
You can use the instructions in the following article to check if your computer is patched against EternalBlue: How to Verify if a Machine is Vulnerable to EternalBlue - MS17-010.
If you are a Sophos customer and (....)
SophosLabs has published a list of Indicators of Compromise (IoCs) relating to this research on our Github page, at https://github.com/sophoslabs/IoCs
As I said in my previous post, the patch exists since 2017; which means that your windows PCs aren't still patched against EternalBlue vulnerability, which make them a target for this Wannacry ransomware.