You’ve probably heard by now that Wanna, or WannaCry is a new ransomware variation that exploits a vulnerability in the Windows operating system (MS17-010) essentially encrypting the infected computer’s data and holding it hostage until a ransom is paid, usually in the form of Bitcoins.
WannaCry hunts for and encrypts 176 different file types and attaches .WCRY to the end of the file name. It ask users to pay a US$300 ransom in bitcoins. The ransom note indicates that the payment amount will be doubled after three days. If payment is not made after seven days, the encrypted files will be deleted (Symantec Security Response, 2017).
Files saved on Desktop, (My) documents, and removable files are encrypted and usually wiped with no hope of recovery. Files saved elsewhere are also encrypted and deleted but with the use of a undelete tool, some could possibly be recovered.
Ransomware prevention embodies a compelling security threat because ransomware evolves steadily as cyber criminals perfect their tools, techniques, and procedures.
What you can do to mitigate this virus:
- Keep your operating system and security software updated.
- Be wary of unexpected emails especially if they contain links and/or attachments.
- Using cloud services could help mitigate ransomware infection, since many retain. previous versions of files, allowing you to roll back to the unencrypted form.
- Be wary of unexpected emails especially if they contain links and/or attachments or ask you to enable macros to view.
- Of utmost importance, back up important data.
Back up all pertinent files and do not pay the ransom.