WannaCrypt is a serious ransomware attack that has caused major interruptions to individuals, businesses and governments around the world. However, what gives this ransomware teeth is that it took advantage of a vulnerability in Microsoft operating systems that has been public knowledge. Anyone who was using an operating system newer than Windows XP, could have simply patched their workstation and their only risk was to click on a link they shouldn't have. The problem is many people and organizations haven't patched their computers or are still running Windows XP.
Here are the highlights of how WannaCrypt did its damage:
For a clearer example of how the attack works: imagine someone in your household opens a phishing email and clicks an inappropriate link infecting their computer. That computer can see all of the other devices on your home network, in turn the infected computer attacks every other device with the Microsoft vulnerability. Other devices do not necessarily have to be PCs, it could be any device on your network running some variant of the Microsoft operating system. Security systems, smart devices, DVR, etc. often use Microsoft Windows as its operating system.
If you would like more information about what your organization can do to fortify its human firewall, please contact your local UHY Advisors professional.