The Wannacry Ransomware Disaster

More than 230 000 people in 150 countries were victims of the biggest cyberattack ever known on May 12th. Wannacry struck hard. Learn more and strike back!

Wooxo's blog

The Wannacry Ransomware Disaster

► How does it spread?

First, this Ransomware enters your computer by a phishing email and then, unlike other random ransomwares, it spreads through your entire network and infects all your colleague’s workstations.

Once the computer is stricken, the malicious software encrypts all your available data (local and on network), and tries to spread in the company, using technical vulnerability.

 

In this case, it’s a recently discovered Microsoft flaw. Your data is held “hostage” by the hackers who are asking for a ransom to be paid. There is absolutely no guaranty that your data will be freed if you do. Find here the targeted extensions.

 

Big companies were struck by this attack: Fedex, Vodaphone, Renault… Production sites had to close to prevent the spread.    

 

IT security software providers were quick to respond but we have to always remain vigilant: New versions of Wannacry are still being discovered; this attack may still be running. We must look for other sorts of attacks because it will strike again where it’s not expected.

►What can I do?

The emergency response is to isolate and shut down your computer, unplug it from the network and wifi.

Do NOT pay a ransom.

According to Microsoft, Windows 10 is safe. For the other versions, Microsoft released a security patch on March 2017. The infected computers were not updated. It’s not too late to update your devices, especially for Windows XP users.

You have to:

  • Make sure your computer is updated.
  • Do NOT open suspect attachments in emails.
  • Do NOT click on suspect links on Internet.
  • Make sure your antivirus software is updated.
  • Talk about it to your colleagues and your contacts.

You’re having doubts about your backup system?

 

List of the targeted extensions:


.der
.pfx
.key
.crt
.csr
.p12
.pem
.odt
.ott
.sxw
.stw
.uot
.3ds
.max
.3dm
.ods
.ots
.sxc
.stc
.dif
.slk
.wb2
.odp
.otp
.sxd
.std
.uop
.odg
.otg
.sxm
.mml
.lay
.lay6
.asc
.sqlite3
.sqlitedb
.sql
.accdb
.mdb
.db
.dbf
.odb
.frm
.myd
.myi
.ibd
.mdf
.ldf
.sln
.suo
.cs
.c
.cpp
.pas
.h
.asm
.js
.cmd
.bat
.ps1
.vbs
.vb
.pl
.dip
.dch
.sch
.brd
.jsp
.php
.asp
.rb
.java
.jar
.class
.sh
.mp3
.wav
.swf
.fla
.wmv
.mpg
.vob
.mpeg
.asf
.avi
.mov
.mp4
.3gp
.mkv
.3g2
.flv
.wma
.mid
.m3u
.m4u
.djvu
.svg
.ai
.psd
.nef
.tiff
.tif
.cgm
.raw
.gif
.png
.bmp
.vcd
.iso
.backup
.zip
.rar
.7z
.gz
.tgz
.tar
.bak
.tbk
.bz2
.PAQ
.ARC
.aes
.gpg
.vmx
.vmdk
.vdi
.sldm
.sldx
.sti
.sxi
.602
.hwp
.edb
.potm
.potx
.ppam
.ppsx
.ppsm
.pps
.pot
.pptm
.xltm
.xltx
.xlc
.xlm
.xlt
.xlw
.xlsb
.xlsm
.dotx
.dotm
.dot
.docm
.docb
.jpg
.jpeg
.snt
.onetoc2
.dwg
.pdf
.wk1
.wks
.123
.rtf
.csv
.txt
.vsdx
.vsd
.eml
.msg
.ost
.pst
.pptx
.ppt
.xlsx
.xls
.docx
.doc