Talk Quesada forum

The malware used in the huge NHS hack is now spreading across the world. The problems are hitting people and companies across Europe and Asia, according to experts.
The ransomware – which locks down files until money is paid – is a new version that is rapidly spreading across the world. It is known as Wanna Decryptor.
Though the problem has become most famous for the damage it has done to NHS systems, the effects have focused most specifically on Spain and Russia, according to experts.

“This cyber attack is much larger than just the NHS," said Travis Farral, director of security strategy for cyber security firm Anomali Labs. "It appears to be a giant campaign that has hit Spain and Russia the hardest."
Some people are already paying to get their files back, Mr Farral said.
Wanna Decryptor, the malware that is being used, has been known to cyber security experts for weeks. But the version spreading across the internet has just been updated, according to reports.
"The ransomware used in this attack is relatively new - it was first seen in February 2017, and the latest variant emerged earlier today," said Aatish Pattni from cyber security firm Check Point.
"Even so, it's spreading fast, with organisations across Europe and Asia being hit.
"It shows just how damaging ransomware can be - and how quickly it can cause disruption to vital services.
"Organisations need to be able to prevent infections taking hold in the first place, by scanning for, blocking and filtering out suspicious files content before it reaches their networks.
"It's also essential that staff are educated about the potential risks of incoming emails from unknown parties, or suspicious-looking emails that appear to come from known contacts

Make sure all your devices, Laptop and Desktop Virus Guards are up to date - Click on them to check they are current and say 'protected'.

Use normal security measures such as never clicking on any email attachments that you are not absolutely sure of.

I know someone who was infected with an earlier version of a ransomware virus a couple of months ago. His antivirus software was fully up to date and he was looking at the website of his Spanish GP, trying to book an appointment. He was prompted to install a font, to allow the website content to be displayed correctly, but this was actually the randomware virus. The next thing he knew all of his documents, spreadsheets and photos on his computer had been encrypted and he was being asked for a payment if €80 to be able to access them again.
Fortunately, he had an off-line backup of everything, so he was able to remove the virus and restore the files that had been encrypted.
If his USB backup disk had still have been connected to his PC when the virus attack happened then the backup files would have been encrypted as well.
I've since changed my backup regime to ensure that an anti virus and malware scan has just been completed and that I've checked that document files can be accessed before attaching my backup drive and performing the backup. I then remove the backup drive and return it to the safe.

Pete.

Pete, Am I understanding that the main problem was Windows XP computer systems.?

clivespana wrote:Pete, Am I understanding that the main problem was Windows XP computer systems.?

That's what I heard on the news, but a colleagues modern MacBook also got hit by a very similar thing, he was trying to watch some dodgy TV show stream though and clicked to install a plug in [the idiot]

clivespana wrote:Pete, Am I understanding that the main problem was Windows XP computer systems.?

The code used in this particular cyber attack utilised a windows vulnerability that was made public by the American NSA. Microsoft released a patch to plug this vulnerability, but operating systems such as XP and Windows 8 no longer receive support so weren't included in the patch. Microsoft have now said that they will release an update for these operating systems.

My friend who suffered a ransomware attack a few months ago was running the latest version of Windows 10, with up to date anti-virus software, so any systems are vulnerable to these attacks.

Pete.