NSA Told Microsoft of Flaw Before Ransomware Attack

On Wednesday security firms Bitdefender and Proofpoint found hackers using the same exploit to spread cryptocurrency-mining malware called Adylkuzz. That’s why it is critical that you keep your Windows OS up to date.

The cyber ransomware attack infected at least two lakh computers in various countries according to European Union’s law enforcement agency, Europol. Phishing attacks with software downloads or links and attachments to malware are often the first sign that a ransomware event is looming.

For all the worldwide chaos they have caused, the ransomware attack’s perpetrators have reportedly made little more than less than $70,000, according to Tom Bossert, assistant to the president for homeland security and counterterrorism.

But Scott Vernick, a data security lawyer at Fox Rothschild that represents companies, said he was skeptical that WannaCry would produce a flood of consumer lawsuits.

Users should also avoid providing personal information or information about their organization, including its structure or networks, CERT says, unless they are certain of a person’s authority to have the information. With this attack, Abrams recommends trying to recover the “shadow volume” copies some versions of Windows have. Multiple backups also help.

McConnell said IVCH hasn’t had any ransomware-related problems.

WannaCry exploits a Windows vulnerability codenamed EternalBlue, which has been patched by Microsoft in an update deployed on March 14. Updating software will take care of some vulnerability.

Businesses could face legal claims if they failed to deliver services because of the attack, said Edward McAndrew, a data privacy lawyer at Ballard Spahr.

Because WannaCrypt exploits a quirk of the Windows operating system, Macintosh and Linux systems are safe.

Ultimately, “Microsoft will take a lot of heat for this, but in this instance, they performed as rapidly as they could, they have a right to be [angry]”. This is why many users even after paying the ransom have not been able to get their data back. Overworked systems administrators work within limited budgets.

“Ransomware generally gets into the system through user interaction”, Staats said.

Some organizations disconnect computers as a precautionary measure. On Friday, it reported 16 computer networks were shut down. When it infects a computer, it encrypts files, making them unusable, and demands a ransom to unlock the files. There’s also no guarantee all files will be restored.

Updating your computer regularly is a good way to make sure vulnerabilities like the kind WannaCry exploits are covered.

“If there is a silver lining to it, you’re not out a million dollars”, he said.

Staats admitted he’s been fooled into answering fraudulent emails and said there is no reason to be embarrassed about being tricked into installing a virus and getting help quickly.

Then who is, you may ask?