Thoughts on WannaCry ransomware

58220 pts.
Tags:
Ransomware
Security
Hello everyone, I know this is more of a discussion than a question but I wanted to get everyone's thoughts on the latest security issue: WannaCry ransomware. Are you surprised how fast it spread? What can we do to prevent these attacks in the future? Share your thoughts!

Answer Wiki

Thanks. We'll let you know when a new response is added.
Send me notifications when members answer or reply to this question.

Discuss This Question: 12  Replies

 
There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when members answer or reply to this question.
  • ToddN2000
    I'm not surprised at all. I know a few people who have the Windows automatic updates turned off. That means unless they watch the news and turned it back on they are vulnerable. I'm glad when Microsoft released the fix they also did it for OS that were end of life. I even know a few people on Win XP..I'm just glad it was caught soon and Microsoft rushed to get the fix out.. Once again another bug that slipped by Microsoft's QC department.
    84,925 pointsBadges:
    report
  • Kevin Beaver
    I thought it was pretty amazing how it worked. Here's the deal, if you want to stop infections such as WannaCry, you have to stop the behaviors that facilitate those infections. That's really all there is to it. People keep making the same mistakes and, I presume, they're expecting different results. They're "shocked" when it happens. The security product vendors love it. It's this process/cycle - along with our federal government's desire for control - that created "cybersecurity". Same stuff, different year. I wrote a blog where I lay out the mistakes people made to facilitate WannaCry.
    24,230 pointsBadges:
    report
  • ToddN2000
    I agree Kevin. Just because you installed an antivirus program does not give you free range to open every e-mail and surf any site.. It will protect you to a point. There may be a yet undiscovered exploit to infect us at any time and not all antivirus programs cover everything and are update for the new threats in timely manner. Users keep doing the same old things since the dawn of the PC. You still need common sense.
    84,925 pointsBadges:
    report
  • Kevin Beaver
    Amen, ToddN2000! What's the saying..."There's no patch for stupid."?
    24,230 pointsBadges:
    report
  • Jaideep Khanduja
    I don't think there will be any stop to it. Next blow could be entirely different, unimaginable, and more devastating.
    16,205 pointsBadges:
    report
  • ToddN2000
    Seeing how this exploit spread so fast and because of the way we do or do not do things, I'm worried. Not everyone applies every patch, and some for good reason. What would happen if something like WannaCry hit the cloud? We are putting our trust in cloud services for them to protect our data. What safeguards are in place if something like this did happen? Who gets their data back first if even possible... Yes , I'm playing devil's advocate here.
    84,925 pointsBadges:
    report
  • RegisTesseyre
    Are we still unsure who are the attackers? I know North Korea was suspected but do we now have proof of that?
    10 pointsBadges:
    report
  • TheRealRaven
    If a discussion was desired, was there a reason to post here rather than in the 'Discussions' area?

    A simple way to avoid WannaCry is not to run software that WannaCry exploits.

    As for avoiding such future attacks, you can't. No one knows what attacks will come, so no one knows how to avoid them.

    ...well, that is, other than following more or less the same guidelines for Internet use that have been given for the past quarter century or so. In a real sense, anyone who doesn't already know and practice those should not be allowed to use a business computer that has internet access. And that's "internet", not simply "Internet".
    21,845 pointsBadges:
    report
  • Kevin Beaver
    Indeed, guys...the next one is unpredictable and may be just as devastating. Yet, the question remains: why do we continue to fail in the fundamentals of information security? If we patched our systems, stopped blindly clicking malicious links and attachments (or had controls to stop the damage from those bad choices) and implemented countless security basics that have been around for decades, we could either a) eliminate these risks or b) most certainly minimize their impact.

    Still, in too many cases, we continue down the path of mediocrity in hopes that some cool new vendor technology or government regulation is going fix our problems. I can assure you they won't.
    24,230 pointsBadges:
    report
  • BigKat
    As PT Barnum said "There's a sucker born every minute!" and as long as we keep giving them connected PCs we're going to see these results everytime.
    9,000 pointsBadges:
    report
  • ToddN2000
    Well that did not take long, now we have to be wary of 'Petya' ransomware. It's amazing at the names of some of the larger world wide companies that get hit with type of attack. As others have mentioned, a lot of it eventually comes down to users. In the future I would not be surprised to see some companies block access to web browsing and non-company e-mail accounts at work. Too many places the attack can come from.. Granted some people may need access to the web for certain aspects of their job, but if that is the case maybe they should be on a different network to prevent cross infection.
    84,925 pointsBadges:
    report
  • Michael Tidmarsh
    And just when you think the attacks have gone silent...another one pops right up!
    58,220 pointsBadges:
    report

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

To follow this tag...

There was an error processing your information. Please try again later.

Thanks! We'll email you when relevant content is added and updated.

Following

Share this item with your network: