The WannaCry ransomware has wrecked havoc across the world. Europol and cyber experts have termed this attack as unprecedented. WannaCry – also known as WannaCrypt, Wanna Decryptor, and WanaCrypt0r 2.0, is a virus that combines a ransomware and a worm – a cryptoworm or cryptovirus. WannaCry exploits the Server Message Block 1.0 (SMBv1) vulnerability in the Microsoft Windows operating system.
The ransomware is believed to have spread through phishing attacks as malicious attachments or links. Once the system is infected, it can spread to other systems on the same network as well as randomly to other computers exploiting a file-sharing vulnerability in Windows. The malware reads the files on the hard disk, encrypts them and deletes the original files. This encrypted data cannot be decrypted without the key, yet.
Microsoft had issued a patch – Microsoft Security Bulletin MS17-010 – Critical Security Update for Microsoft Windows SMB Server (4013389) – in March 2017, for operating systems that were receiving support. Organizations that had applied this critical patch update are safe from this ransomware, but those that did not were at risk of being affected. This ransomware rout seems to have primarily affected older Windows operating systems that do not receive Microsoft support – Windows XP, Vista, 8, etc…, It had been advised that organizations upgrade to supported operating systems, but due to many reasons such as budgetary constraints, application compatibility, etc.., many did not, and have been paying the price if they had got infected.
As many organizations suffered, Microsoft in an unprecedented move released software patches for operating systems that it no longer supported – including Windows XP and Windows 8. This is an initiative to curtail spread of the WannaCry ransomware.
The list below provides a link to the patches for the older operating systems.
Windows XP SP3
Windows Vista x64
Windows 7 x64
Windows 7 x86
Windows 2003 x86
Windows 2003 x64
It is highly recommended that you prioritize and immediately download and install these patches – if you have not done it yet. Though the present version of WannaCry has been curtailed, newer versions maybe more robust and without kill switches. And stay protected with a robust security solution such as Comodo that can protect you from ransomware and all known and unknown malware.