2. WannaCry ransomware attack
The WannaCry
ransomware attack was a
worldwide cyberattack in
May 2017 .
Date 12 May 2017-15 May
2017.
3. Introduction:
The WannaCry ransomware attack was one of the most significant cyber
attacks in recent history. In May 2017, a ransomware variant known as
WannaCry infected hundreds of thousands of computers across the globe,
causing widespread disruption and financial losses.
4.
5. Creation of the WannaCry Ransomware
WannaCry used the Eternal Blue exploit & Double Pulsar backdoor developed by the U.S. National
Security Agency (NSA) to spread through local networks.
EternalBlue exploit-
It is a cyberattack exploit developed by U.S National Security Agency. It was leaked by the shadow
Brokers hacker group on April14,2017.
Double Pulsar-
Double Pulsar is a backdoor implant tool developed by the U.S (NSA) Equarion group that was
leaked by The Shadow Brokers in early 2017.
Double Pulsar runs in kernel mode, which grants cybercriminals a high level of control over the
computer.
6. Background:
The WannaCry ransomware attack exploited a vulnerability in Microsoft Windows
operating systems which had been identified and patched by Microsoft two months
earlier.
However, many organizations failed to update their systems, leaving them vulnerable
to the attack.
The ransomware spread rapidly, using a worm-like mechanism to infect other
computers on the same network.
7. Impact:
The impact of the WannaCry ransomware attack was significant. It affected organizations in over 150
countries. Many organizations were forced to shut down their computer systems, leading to financial
losses and disrupted operations. The total cost of the attack has been estimated to be in the billions of
dollars.
8. Who stopped the WannaCry_Ransomware and
how??
Hutchins said he stumbled across the solution when he was
analyzing a sample of the malicious code and noticed it was linked
to an unregistered web address.
He promptly registered the domain, something he regularly does to
discover ways to track or stop cyber threats, and found that stopped
the worm from spreading.
Marcus Hutchins
9. How to protect yourself from Ransomware ???
Update your software and operating system regularly
Do not click on suspicious links
Never open untrusted email attachments
Do not download from untrusted websites
Avoid unknown USBS
Use a VPN when using public Wi-Fi
Install internet security software
Install Antivirus
Back up your data