Egypt, Elsewedy review progress on Ain Sokhna phosphate complex    US employment cost index 3.6% up in year to June 2025    Egypt welcomes Canada, Malta's decision to recognise Palestinian state    Pakistan says successfully concluded 'landmark trade deal' with US    Sterling set for sharpest monthly drop since 2022    Egypt, Brazil sign deal to boost pharmaceutical cooperation    Modon Holding posts AED 2.1bn net profit in H1 2025    Egypt's Electricity Ministry says new power cable for Giza area operational    Egypt's Al-Sisi, Italian defence minister discuss Gaza, security cooperation    Egypt's FM discusses Gaza, Nile dam with US senators    Aid airdrops intensify as famine deepens in Gaza amid mounting international criticism    Egypt exports first high-tech potato seeds to Uzbekistan after opening market    Health minister showcases AI's impact on healthcare at Huawei Cloud Summit    On anti-trafficking day, Egypt's PM calls fight a 'moral and humanitarian duty'    Egypt strengthens healthcare partnerships to enhance maternity, multiple sclerosis, and stroke care    Egypt keeps Gaza aid flowing, total tops 533,000 tons: minister    Indian Embassy to launch cultural festival in Assiut, film fest in Cairo    Egyptian aid convoy heads toward Gaza as humanitarian crisis deepens    Culture minister launches national plan to revive film industry, modernise cinematic assets    I won't trade my identity to please market: Douzi    Sisi sends letter to Nigerian president affirming strategic ties    Two militants killed in foiled plot to revive 'Hasm' operations: Interior ministry    Egypt, Somalia discuss closer environmental cooperation    Egypt's EHA, Huawei discuss enhanced digital health    Foreign, housing ministers discuss Egypt's role in African development push    Egypt reveals heritage e-training portal    Three ancient rock-cut tombs discovered in Aswan    Sisi launches new support initiative for families of war, terrorism victims    Egypt expands e-ticketing to 110 heritage sites, adds self-service kiosks at Saqqara    Egypt's Irrigation Minister urges scientific cooperation to tackle water scarcity    Palm Hills Squash Open debuts with 48 international stars, $250,000 prize pool    On Sport to broadcast Pan Arab Golf Championship for Juniors and Ladies in Egypt    Golf Festival in Cairo to mark Arab Golf Federation's 50th anniversary    Germany among EU's priciest labour markets – official data    Paris Olympic gold '24 medals hit record value    A minute of silence for Egyptian sports    Russia says it's in sync with US, China, Pakistan on Taliban    It's a bit frustrating to draw at home: Real Madrid keeper after Villarreal game    Shoukry reviews with Guterres Egypt's efforts to achieve SDGs, promote human rights    Sudan says countries must cooperate on vaccines    Johnson & Johnson: Second shot boosts antibodies and protection against COVID-19    Egypt to tax bloggers, YouTubers    Egypt's FM asserts importance of stability in Libya, holding elections as scheduled    We mustn't lose touch: Muller after Bayern win in Bundesliga    Egypt records 36 new deaths from Covid-19, highest since mid June    Egypt sells $3 bln US-dollar dominated eurobonds    Gamal Hanafy's ceramic exhibition at Gezira Arts Centre is a must go    Italian Institute Director Davide Scalmani presents activities of the Cairo Institute for ITALIANA.IT platform    







Thank you for reporting!
This image will be automatically disabled when it gets reported by several people.



Kaspersky Lab' comment on WannaCry ransomware attack
Amwal Al Ghad Published in Amwal Al Ghad on 14 - 05 - 2017

On May 12th, a massive ransomware attack was unleashed, hitting organisations worldwide. Kaspersky Lab's researchers have analysed the data and can confirm that the company's protection subsystems detected at least 45,000 infection attempts in 74 countries, most of them in Russia.
The ransomware infects victims by exploiting a Microsoft Windows vulnerability described and fixed in Microsoft Security Bulletin MS17-010. The exploit used, "Eternal Blue" was revealed in the Shadowbrokers dump on April 14.
Once inside the system, the attackers install a rootkit, which enables them to download the software to encrypt the data. The malware encrypts the files. A request for $600 in Bitcoin is displayed along with the wallet – and the ransom demand increases over time.
Kaspersky Lab experts are currently trying to determine whether it is possible to decrypt data locked in the attack – with the aim of developing a decryption tool as soon as possible.
Kaspersky Lab security solutions detect the malware used in this attack by the following detection names:
* Trojan-Ransom.Win32.Scatter.uf
* Trojan-Ransom.Win32.Scatter.tr
* Trojan-Ransom.Win32.Fury.fr
* Trojan-Ransom.Win32.Gen.djd
* Trojan-Ransom.Win32.Wanna.b
* Trojan-Ransom.Win32.Wanna.c
* Trojan-Ransom.Win32.Wanna.d
* Trojan-Ransom.Win32.Wanna.f
* Trojan-Ransom.Win32.Zapchast.i
* Trojan.Win64.EquationDrug.gen
* Trojan.Win32.Generic (the System Watcher component must be enabled)
Kaspersky Lab recommends readers taking the following measures to reduce the risk of infection:
* Install the official patch from Microsoft that closes the vulnerability used in the attack
* Ensure that security solutions are switched on all nodes of the network
* If Kaspersky Lab's solution is used, ensure that it includes the System Watcher, a behavioral proactive detection component, and that it is switched on
* Run the Critical Area Scan task in Kaspersky Lab's solution to detect possible infection as soon as possible (otherwise it will be detected automatically, if not switched off, within 24 hours).
* Reboot the system after detecting MEM: Trojan.Win64.EquationDrug.gen
* Use Customer-Specific Threat Intelligence Reporting services

Clic here to read the story from its source.