WannaCry Patch – How To Protect Your IT Infrastructure

You have probably heard of WannaCry ransomware—the latest malware attack that shook the world just last month. It affected many users around the globe and revealed alarming weaknesses in Microsoft Windows. WannaCry is considered to be far more dangerous than other ransomware types because it can spread itself across an entire organization’s network by exploiting vulnerabilities in Windows computers that were patched by MS17-010 (released in March 2017). Known as ‘Eternal Blue,’ the exploit was released online in April through a series of leaks by the Shadow Brokers—the group that claimed to steal data from Equation cyber espionage group.

Microsoft has since released a WannaCry patch, which fixes the vulnerability caused by MS17-010. It was automatically applied to machines running Windows Update on Windows 7, Windows 8.1, Windows 10, and post-2008 Windows Server.

In an unusual move, the software giant has also patched vulnerabilities on older (unsupported) operating systems to help limit the number of computers at risk from WannaCry-like attacks in the future. Organizations running unsupported computers are urged to download and apply the patch as soon as possible. However, Microsoft continues to warn users who are still running Windows Server 2003 or XP and other out-of-support operating systems that they shouldn’t expect regular fixes.

What happens if you don’t apply the patch?

WannaCry ransomware searches for 176 various file types, appends.WCRY to the end of their file names, and encrypts them. When activated, you will need to pay the ransom money of US$300 in bitcoins. The ransom note states that the payment will double after three days, and if you don’t pay after seven days, it claims that the affected files will be deleted. While decryption may not be possible at this time, some antivirus, malware, and security companies are already looking up possibilities. At this point, it pays to have a backup of your files stored somewhere else, like in the cloud. Paying the ransom will not help.

How to protect yourself from future vulnerabilities

Anyone can be a victim of ransomware—and the effects can be devastating especially for businesses. It’s crucial that you take proper measures to protect your IT infrastructure by keeping your systems up-to-date and installing the latest security patches. If you lack the capability to check or update your systems properly, consider outsourcing the task to a reputable IT specialist to upgrade your business and to ensure regular protection and security from experts.

About the Author:

Mike Rana is the Chief Technology Advisor of Orion Network Solutions. Orion Network Solutions specializes in providing Computer Installation, Maintenance, and Consulting services along with 24x7 help desk services for small and midsize companies. We provide network solutions that enable small businesses to not only lower their management cost but also increases employee productivity at the same low price. We offer network solution that becomes an integral part of your organization and can provide an increase in productivity of your organization.

Mike Rana is the Chief Technology Advisor of Orion Network Solutions. Orion Network Solutions specializes in providing Computer Installation, Maintenance, and Consulting services along with 24x7 help desk services for small and midsize companies.