WannaCry (also known as Wana Decrypt0r 2.0, Wannacryptor, WannaCrypt, wana Decryptor) ransomware disrupts 2-3 millions of devices around 150 countries, taking important files as a hostage and demanding a ransom of $600 worth of bitcoins. The ransomware is found to be using the old SMB vulnerability (MS17-010 released in April 2017) to spread across devices. There was no second doubt that crooks would find a way to weaponize the leaked NSA tool back in April 2017.
The worm was mostly contained when a researcher who uses the Twitter handle MalwareTech and works for security firm Kryptos Logic took control of a domain name that was hard-coded into the exploit. Often users could decrypt their systems without paying the ransom. The tools Wannakey and wanakiwi took advantage of weaknesses in the Microsoft Cryptographic Application Programming Interface that WannaCry and other Windows applications use to generate keys for encrypting and decrypting files.n
! Wana Decrypt0r 2.0
2ff7e9595c
Comments