Egypt, Qatar intensify coordination as Gaza crisis worsens    Egypt prepares governmental talks with Germany to boost economic cooperation    Arabia Developments, ElSewedy join forces to launch industrial zone in New 6th of October City    Egypt, US's Merit explore local production of medical supplies, export expansion    Egypt, WHO discuss joint plans to support crisis-affected health sectors    IWG accelerates Egypt expansion, plans 30 new flexible workspace centres in 2026    Grand Egyptian Museum fuels hospitality, real estate expansion in West Cairo    400 children with disabilities take part in 'Their Right to Joy' marathon    Egypt touts North Coast as investment magnet after $29.7b Qatar deal – FinMin    URGENT: Egypt's net FX reserves hit $50b in October – CBE    Egypt's Foreign Minister discusses Gaza, Sudan with Russian counterpart    Russia's Putin appoints new deputy defence minister in security shake-up    UNESCO General Conference elects Egypt's El-Enany, first Arab to lead body    Egypt repatriates 36 smuggled ancient artefacts from the US    Grand Egyptian Museum attracts 18k visitors on first public opening day    'Royalty on the Nile': Grand Ball of Monte-Carlo comes to Cairo    Egypt, Albania discuss expanding healthcare cooperation    VS-FILM Festival for Very Short Films Ignites El Sokhna    Egypt's cultural palaces authority launches nationwide arts and culture events    Egypt launches Red Sea Open to boost tourism, international profile    Qatar to activate Egypt investment package with Matrouh deal in days: Cabinet    Hungary, Egypt strengthen ties as Orbán anticipates Sisi's 2026 visit    Egypt's PM pledges support for Lebanon, condemns Israeli strikes in the south    Omar Hisham Talaat: Media partnership with 'On Sports' key to promoting Egyptian golf tourism    Egypt, Medipha sign MoU to expand pharmaceutical compounding, therapeutic nutrition    Egypt establishes high-level committee, insurance fund to address medical errors    Sisi expands national support fund to include diplomats who died on duty    Madinaty Golf Club to host 104th Egyptian Open    Egypt's PM reviews efforts to remove Nile River encroachments    Al-Sisi: Cairo to host Gaza reconstruction conference in November    Egypt will never relinquish historical Nile water rights, PM says    Al-Sisi, Burhan discuss efforts to end Sudan war, address Nile Dam dispute in Cairo talks    Syria releases preliminary results of first post-Assad parliament vote    Egypt resolves dispute between top African sports bodies ahead of 2027 African Games    Germany among EU's priciest labour markets – official data    Paris Olympic gold '24 medals hit record value    It's a bit frustrating to draw at home: Real Madrid keeper after Villarreal game    Russia says it's in sync with US, China, Pakistan on Taliban    Shoukry reviews with Guterres Egypt's efforts to achieve SDGs, promote human rights    Sudan says countries must cooperate on vaccines    Johnson & Johnson: Second shot boosts antibodies and protection against COVID-19    Egypt to tax bloggers, YouTubers    Egypt's FM asserts importance of stability in Libya, holding elections as scheduled    We mustn't lose touch: Muller after Bayern win in Bundesliga    Egypt records 36 new deaths from Covid-19, highest since mid June    Egypt sells $3 bln US-dollar dominated eurobonds    Gamal Hanafy's ceramic exhibition at Gezira Arts Centre is a must go    Italian Institute Director Davide Scalmani presents activities of the Cairo Institute for ITALIANA.IT platform    







Thank you for reporting!
This image will be automatically disabled when it gets reported by several people.



Kaspersky Lab' comment on WannaCry ransomware attack
Amwal Al Ghad Published in Amwal Al Ghad on 14 - 05 - 2017

On May 12th, a massive ransomware attack was unleashed, hitting organisations worldwide. Kaspersky Lab's researchers have analysed the data and can confirm that the company's protection subsystems detected at least 45,000 infection attempts in 74 countries, most of them in Russia.
The ransomware infects victims by exploiting a Microsoft Windows vulnerability described and fixed in Microsoft Security Bulletin MS17-010. The exploit used, "Eternal Blue" was revealed in the Shadowbrokers dump on April 14.
Once inside the system, the attackers install a rootkit, which enables them to download the software to encrypt the data. The malware encrypts the files. A request for $600 in Bitcoin is displayed along with the wallet – and the ransom demand increases over time.
Kaspersky Lab experts are currently trying to determine whether it is possible to decrypt data locked in the attack – with the aim of developing a decryption tool as soon as possible.
Kaspersky Lab security solutions detect the malware used in this attack by the following detection names:
* Trojan-Ransom.Win32.Scatter.uf
* Trojan-Ransom.Win32.Scatter.tr
* Trojan-Ransom.Win32.Fury.fr
* Trojan-Ransom.Win32.Gen.djd
* Trojan-Ransom.Win32.Wanna.b
* Trojan-Ransom.Win32.Wanna.c
* Trojan-Ransom.Win32.Wanna.d
* Trojan-Ransom.Win32.Wanna.f
* Trojan-Ransom.Win32.Zapchast.i
* Trojan.Win64.EquationDrug.gen
* Trojan.Win32.Generic (the System Watcher component must be enabled)
Kaspersky Lab recommends readers taking the following measures to reduce the risk of infection:
* Install the official patch from Microsoft that closes the vulnerability used in the attack
* Ensure that security solutions are switched on all nodes of the network
* If Kaspersky Lab's solution is used, ensure that it includes the System Watcher, a behavioral proactive detection component, and that it is switched on
* Run the Critical Area Scan task in Kaspersky Lab's solution to detect possible infection as soon as possible (otherwise it will be detected automatically, if not switched off, within 24 hours).
* Reboot the system after detecting MEM: Trojan.Win64.EquationDrug.gen
* Use Customer-Specific Threat Intelligence Reporting services

Clic here to read the story from its source.