wannaCry ransomware also known as wannacrypt, wannacrypt0r 2.0, wanna decryptor, WCRY. It is highly potential cyber attack.It is activated on somewhere this month. It is specially targeted to exploit Microsoft Windows. Some of the report says it’s already infected million of the computer right now. “Special cyber security intelligence “expecting a continuation of this cyber crime. If we could not find to stop this encryption attack though specialist hacker already active to remove this infection soon not to further damage.
WannaCry Ransomware cyberattack: Beware if you are Microsoft Windows user in 2017
What exactly they are doing?
It was released on 14th April 2017 by the hacker group called THE SHADOW BROKERS. After a month on 14th may 2017 they spread this infection worldwide. Most of the Microsoft Windows already targeted by this wannaCry ransomware. They injected this malware all over the world. It is very critical to destroy. According to one of the tech blogger called Malwaretech.com. This malware attack is temporary and they already designed kill switch to stop them. But it’s too late for those who already infected by this Wanna Cry ransomware. This kill switch stopped this malware attack but this will not gonna work for a long time. The Hacker will decode kill-switch and re-code their program for further attack
Beware if you are Microsoft Windows user in 2017 especially window XP.
What they are doing– Simply encrypting the file on your infected computers. Once they encrypt file successfully, you will be unable to use your computer, I mean important document and files which are saved on your computer. After encryption, they will display a popup in your computer and demand ransom payment in cryptocurrency Bitcoin in 28 languages. You will be temporarily blocked to use your computer documents & file till payment made by you. They are asking somewhere $300 to $700 within 6 to 7 days. If you don’t pay their ransom amount then they will permanently damage your computer files.
What’s happening now?
All over the world, this WannaCry ransomware was threatened by the hacker. It is still very active and infecting computer very rapidly. A team of special cyber intelligence agencies already active. They will stop this infection as soon as possible. They spread this wannaCry ransomware all over the world so it will take a time to recover this situation.
What should you do if WannaCry ransomware will infect your computers?
First of all, don’t pay a single penny to the hacker. It will encourage crime. if something happened like this just leave it as it is. Disconnect your computer from the internet as soon as possible because it is spreading very fast through LAN. Don’t remove your important document and file if it will unable to recover. Because there are certain tools available to decrypt your data.
Important: – All the government agencies already active and handling this wannaCry ransomware. Kindly visit your respective government website as soon as possible. To know how you can prevent this ransomware on your computer. They guide you how to recover from this situation.
If you are from India: Kindly visit www.cert-in.org.in for security alert and latest updates.
You may download free ransomware security tool on computer through – www.cyberswachhtakendra.gov.in
You can also contact to toll-free number- +91-1800-11-4949
This contact information provided by (CERT. in) – Indian Computer Emergencies Response Team
you may try this following link even you are from outside India. some the link is accessible anywhere.
If not then…
Don’t worry you may contact government websites or contact government cyber agencies they will help through the respective website to gather appropriate information according to your country specific.
You can also try this security tool to stop ransomware and other malware threat. These are safe and secure and the best part is these websites are recommended by Indian govt. Anyone can use these links. No matter from which country you belong to.
ESET Online Scanner
Microsoft Safety Scanner
Norton Power Eraser
Free Bot Removal Tool
The antivirus company Quick Heal is providing the free bot removal Tool. Click the below mentioned link to download the tool.
Note: To identify, the architecture of your system whether it is 32-bit or 64-bit, kindly follow the below mentioned steps:
Right-click on “My Computer”/ “This PC” -> Properties-> Check your system architecture
Indicator of Compromise (IOC)
In order to prevent infection user and organization are advised to apply patches to window system as mention in the Microsoft Security Bulletin MS17-010
Note– Microsoft patches is unsupported to version such as Window XP, Vista, server 2003, server 2008 etc. so the user has to update their system in order to prevent this ransomware because of highly chances to attract this unsupported version.
The best way to prevent is to keep a backup offline. In case you lose your critical data then you can get it back.
Till now ransomware attacked various biggest organizations so you can imagine how critical this is. Here is the list of organization below.
Use Strong antivirus and keep updates on time. Don’t click any anonymous link. If you receive an email and you’re not sure about the senders. Don’t reply or download any unknown attachments from those emails. Don’t worry you can access any websites and email but don’t click any anonymous link where there no publisher is mentioned.
Note– Indiavent.com did not claim any facts and figure about this topic though we shared all the correct information best of our knowledge. If this information is not enough. Visit other legit sources to get valid information.