A quick summery regarding the recent WannaCry, WNCry, WanaCrypt0r, Wana Decrypt0r ransomware and it's varients for those using Microsoft Windoze.
Note, those of you using Windoze 10 were immune from the network exploit, but not from email / web infections.
Most is common sense but I'll state it anyway.
The first important thing to do is Check all Microsoft updates have been installed on your system,check anti-virus/anti-malware software is up to date,
Make sure you have backups of all your important data ,documents,photo's on to a device that can be removed from your computer or network and put away.
Do not open emails from unknown sources, take care in clicking links to other web sites.
The Wannacry malware that hit like a global mega-bomb, showed everyone how vulnerable we are to a global cyber attack. Billed as “one of the largest global ransomware attacks the cyber community has ever seen,” the infection started in London and then emerged almost instantly in Seattle, New York, and Tokyo. Within ten minutes, the coordinated attack became epidemic throughout the world, covering the better part of every continent but Antarctica. By the end of one day, the malware had infected over 200,000 computers in 150 nations, encrypting all their data and locking the users out. More at link -
http://news.goldseek.com/GoldSeek/1495209107.phpFor a brief history and how it's allegedly using tools from the NSA see this link -
https://thehackernews.com/2017/05/how-to-wannacry-ransomware.htmlAn initial analysis of what it drops and how it proceeds can be found here -
http://blog.talosintelligence.com/2017/05/wannacry.htmlNext cyber-attack could be imminent, warn experts
http://www.bbc.co.uk/news/uk-39911385Phishing emails seen coming from alertatnb@serviciobancomer causing one source of infection.
Microsoft released a patch that stops the malware automatically spreading across networks it's posted here ( even for Windoze XP ) but if your 7/8/10 system is up to date then you already have it -
http://www.catalog.update.microsoft.com/Search.aspx?q=KB4012598If the worst has happened, you see the screen below and you don't have backups do not pay the ransom,those that have still don't have access to their files, you can check these sites for possible decrypting keys, although at the time of writing none had keys for the current outbreak -
https://decrypter.emsisoft.com/https://www.bleepingcomputer.com/download/windows/ransomware-decryptors/https://noransom.kaspersky.com/All links here checked safe to visit.
Tony
Linux Mint 18.1