WannaCry Ransomware Explored

wannacryWannaCry is another form of ransomware, similar to NotPetya and Bad Rabbit. WannaCry severely crippled much of Fedex and Nissan Motor company’s systems, as well as the United Kingdom’s National Health Service (NHS).

In this particular attack, victims were given 72 hours to pay up three hundred dollars in what else? Bitcoin! Worse, paying didn’t result in their systems being unlocked.

The United States has determined that North Korea is to blame for this variation of ransomware, based on their own evidence coupled with evidence from their partners.

WannaCry was exceptionally widespread resulting in billions of dollars in damages leading to the United States position to publicly attribute their attack as costly, cowardly and careless.

The issue here is what’s left to combat North Korea’s excursion into cyber-criminality? The United States has literally done just about everything possible to combat North Korea’s actions, short of full scale war. Do we have to starve their people to death, or would even that not help in dealing with their leadership (or lack of it)?

Not just governments from around the globe, but also companies like Facebook, Microsoft and other industry giants need to work to disrupt these cowardly attacks. They, in fact, have recently started by disabling North Korean accounts determined to be associated with cyber-attacks.

At issue is that ransomware attacks are far too easy if we don’t all pull together as a cyber-coalition to put a halt to these types of attacks. Global inter-communications and cooperation is absolutely necessary.

As North Korea deals with a whole host of problems because of sanctions imposed on them by responsible members of the global community, it continues to develop its cyber capabilities, as well as its nuclear arsenal.

By the United States officially calling out North Korea as the culprit behind the WannaCry ransomware attacks, this gave the U.S. increased ammunition to call on other nations to work hand-in-hand to put a kink in North Korea’s armor.

Countries like Australia, Japan, the U.K. and Canada agree with the United States assessment, but North Korea continues to disavow any connection to this attack.

How large is North Korea’s techno force?

They’ve been actively training soldiers in cyber-criminality since the 90’s, with an estimated 1600 or more state-sponsored hackers – with over double the support staff.

How successful have the North Korean efforts been?

Just recently, they stole United States/South Korean military plans AND they allegedly stole over fifty million dollars from a bank in Taiwan.

Going back a few years, North Korea made international news when they broke into Sony Corp’s systems just as they were due to release a movie entitled, “The Interview,” which I saw, and thought was incredibly hilarious. Why the interest from North Korea? This movie was a comedy that they felt disrespected their leader.

How serious was the WannaCry ransomware attack on NHS?

Approximately one-third of NHS’s systems were affected, resulting in over nineteen thousand medical appointments being cancelled AND computers at six hundred surgeries locked down.

The infection spread using a computer exploit called ETERNALBLUE that was developed by the NSA. That exploit was leaked by The Shadow Brokers, a notorious hacking group.

Could the attack have been prevented?

NHS had been warned to migrate away from older Windows XP software, but failed to act appropriately and thus, consequently suffered untold damages. Once again, it’s better to be proactive rather than reactive.

Fortunately, this particular attack was thwarted by a security researcher utilizing a domain-based kill switch, but not before it affected even more large firms like Renault and Telefonica.

ProlimeHost

BROUGHT TO YOU BY PROLIMEHOST

We’ve been in the web hosting industry for over a decade, helping hundreds of clients succeed in what they do best and that’s running their business. We specialize in Virtual Private Servers (VPS) and dedicated servers, with data centers in Los Angeles, Denver & Singapore.

VPS SERVICES: LIGHTNING FAST SSD VIRTUAL SERVERS

Our Virtual Private Servers all feature high performance Xeon processors and SSD storage in a RAID10 configuration to optimize your server’s performance, which dramatically enhances visitor experiences on your site.

That speed is backed by unparalleled 24/7 support, featuring both outstanding response AND resolution times to maximize your uptime.

Now is the time to join the ProlimeHost virtual private server revolution.

DEDICATED SERVERS: BACKED BY A 99.9% SLA NETWORK UPTIME GUARANTEE

We only use enterprise-class hardware in our dedicated servers [1] and offer a four (4) hour hardware replacement. Throw in IPMI for remote management, support for public and private networks, free operating system (OS) re-installs, and SATA, SAS & SSD (including NVMe) storage. Call 1-877-477-9454 or contact us [2]. For everything from gaming servers to cheap dedicated servers, we’re here to help.

Steve

Leave a Reply