WannaCrypt Ransomware Attack

The WannaCry/WannaCrypt Ransomware attack successfully compromised tons of systems already by using the classic e-mail attachment vector and the 2nd vector is to use the vulnerable SMB protocol to attack machines in internal networks to infect them as well.

To fix the SMB issue Microsoft already released an update in march 2017, security bulletin MS17-010.

Description:
This security update resolves vulnerabilities in Microsoft Windows. The most severe of the vulnerabilities could allow remote code execution if an attacker sends specially crafted messages to a Windows SMBv1 server.

Microsoft now also released an update for Windows XP and Windows Server 2003 (KB4012598) to fix the issue. Automatic Updates should find and install the updates or you can find them in the Microsoft Update Catalog. Microsoft has some more information about this issue on the MSRC team blog.

Available Patches:

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s