Ransomware Attack: Impact Assessment

According to numerous open-source reports,ƒwidespread ransomware campaign is affecting various organizations with reports of tens of thousands of infections in as many as 74 countries, including the United States, United Kingdom, Spain, Russia, Taiwan, France, and Japan. The software can run in as many as 27 different languages.

The latest version of this ransomware variant, known as WannaCry, WCry, or Wanna Decryptor, was discovered the morning of May 12, 2017, by an independent security researcher and has spread rapidly over several hours, with initial reports beginning around 4:00 AM EDT, May 12, 2017. Open-source reporting indicatesƒ requested ransom of .1781 bitcoins, roughly $300 U.S.
Initial reports indicate the hacker or hacking group behind the WannaCry campaign is gaining access to enterprise servers either through Remote Desktop Protocol (RDP) compromise or through the exploitation of ƒ critical Windows SMB vulnerability. Microsoft releasedƒ security update for the MS17-010 vulnerability on March 14, 2017. According to open sources, one possible infection vector is via phishing emails.

Systems Affected:
  1. Microsoft Windows operating systems.
Recommendation to prevent from being infected:
  1. It is recommended to restrict access to www.gmail.com for time being as there would be chances to get malicious files accessed or links opened from this site which may prove potential threat to DOP environment as we don’t have any administrative control over www.gmail.com
  2. It is required to ensure that all the systems in field must be having AV installed and up to date with latest virus/malware definitions (Symantec released virus signature update for this ransomware on May 12, 2017) to prevent possible attacks. Run Symantec AV Full scan on the systems.
  3. It is recommended to not to open unknown urls(links)/files or not to download unknown attachments from any sources.
  4. It is strictly recommended to use only sify network(Do not use hotspots or wifi). Also not to attach any pen drives or flash drives to systems.
  5. It is required to sendƒnotification message through portal to all users of field to make them aware about this attack and preventive measures to be taken.
  6. It is required to ensure that DC/DR servers of all SIs must be updated with latest patches, having latest AV definition and open vulnerabilities from scan should be closed.
  7. Until required, DO NOT share any file/folder within LAN also. As it would help to propagate malware rapidly.
Symptoms ofinfected system :
  1. One may observes system files are not in readable format or encrypted.
  2. One may unable to start system(Screen showing some fatal/error message).
  3. If any file having extension as .wncry, .wcry, .wncryt and .wnry [Do not open/download such file]
  4. As per SEPM configuration, if any system is infected with such malware,ƒpopup message will be prompted to enduser [Run “Full Scan” on the systems with latest AV definition file].
Prompt action tobe taken by End-user:
  1. End user should raise ticket on service desk along with abnormal behavior of system observed.
  2. It is requested to run AV Full scan, if possible and attach screen shot of successfully completion of same to raised service desk ticket.
  3. If the system is not accessible at all, then immediately remove the system from LAN and format the system.Restoration of the Backup Files is to be attempted only if the backup files are not infected.
  4. After bringing the system up with Antivirus, use the same port to join the system into domain, to avoid mac binding issues.

Comments

Post a Comment

Popular Posts

Working Foreign Banks in India (Part I)

There are 16 Foreign Banks which are working in India. AB Bank Ltd ABN-AMRO Bank N.V Abu Dhabi Commercial Bank Ltd American Express Banking Corp Antwerp Diamond Bank NV BNP Paribas Bank of America N.T. & S.A Bank of Bahrain & Kuwait B.S.C Bank of Ceylon Bank of Nova Scotia Barclays Bank PLC Calyon Bank Chinatrust Commercial Bank Citibank N.A Deutsche Bank (Asia) DBS Bank Ltd 1.   AB Bank Ltd. : Introducing Bangladesh to its very first private sector bank; AB Bank Limited was incorporated on 31st December,1981 . Arab Bangladesh Bank as formerly known started its effective operation from 12th April, 1982 with the mission to be the best performing bank of the country. AB has extensively widened its services over the last three decades in both home and abroad. The bank opened its very first branch at Karwan Bazar on 12th April 1982 and now has a successful footprint of 104 branches including one overseas branch in Mumbai, India and 270 plus ATMs ...
Read More In the Next Page »

Cancellation of the selection process for recruitment to the Gazetted posts in the Directorate of SCERT & re-schedule for Viva-Voce

Image
APSC published notification that in pursuance of legal opinion of the learned Advocate General of Assam vide letter No. AGL/46/2016/128 dated 6th March, 2017 the Commission has decided to cancel the selection process for recruitment to thevarious Gazetted posts in the Directorate of SCERT under Elementary Education Department vide Advt. No. 17/2015 for which Interview/Viva-Voce was held on 28th, 29th, 30th July & on 1st August, 2016.
Read More In the Next Page »

Government is committed for inclusive development through e- governance

Addressing at 20th National Conference on e-Governance concluded in Visakhapatnam the Union Minister of State for Electronics and Information Technology and Law & Justice Shri P.P. Chaudhary stated that there is a need for bridging the digital divide between the urban and rural areas & Union government promotes research and development and innovative eco-system of Information Technology and also encourages acquisition of the Intellectual Property Rights by Indians as it is stated in a press release by Press Information Bureau, Government of India.   The Minister further said that Cyber Security is the need of the hour and artificial intelligence will provide solutions to the problem of cyber security. There is also need for development of Nano technology and Nano electronics which helps for imparting value based education based on Mission mode Nano Electronics & India will be in a position to manufacture electronics devices and products in the country very soon. ...
Read More In the Next Page »

PRAGATI

Image
The Prime Minister, Shri Narendra Modi, chaired his nineteenth interaction through PRAGATI - the ICT-based, multi-modal platform for Pro-Active Governance and Timely Implementation on dated 24th May 2017. The Prime Minister reviewed the progress towards handling and resolution of grievances related to postal services. He asserted that the importance of postal services is on the rise again. He sought to know what changes have been made in procedures, and what action has been taken against officers responsible for lapses. He stressed on the importance of human resource management, systemic improvement, and infrastructure strengthening in the Department of Posts.
Read More In the Next Page »

প্ৰধান মন্ত্রী জন ধন যোজনাৰ অধীনত প্ৰায় ২৫.৬৮ কোটি সংখ্যক একাউন্টত প্ৰায় ৭২,৮৩৪.৭২ কোটি টকা জমা

Image
বিত্ত মন্ৰালয়ৰ হিচাপ অনুসৰি বৰ্তমানলৈ প্ৰধান মন্ত্রী জন ধন যোজনাৰ অধীনত প্ৰায় ২৫.৬৮ কোটি সংখ্যক একাউন্টত প্ৰায় ৭২,৮৩৪.৭২ কোটি টকা জমা হৈছে | ইয়াৰে ৫৬,৬৬৮.০৫ কোটি টকা জমা হৈছে ৰাজহুৱা খণ্ডৰ ২০.৪৪ কোটি একাউণ্টত, ১৩,৫০৭.০৯ কোটি টকা জমা হৈছে আঞ্চলিক গ্ৰামীণ বেংক সমূহৰ ৪.৩৭ কোটি একাউণ্টত আৰু অন্য ২,৬৫৯.৫৮ কোটি টকা জমা হৈছে ব্যক্তিগত খণ্ডৰ ০.৮৬ কোটি একাউণ্টত | PMJDY website
Read More In the Next Page »

Diabetes Vaccine Officially Revealed

Image
Diabetes is on the rise from urban to rural people due to lack of healthy life style. China, India and USA are among the top three countries with a high number of diabetic population. While the numbers climbed from 20.4 million in China in 1980 to 102.9 million in 2014, the rise has been equally dramatic in India from 11.9 million in 1980 to 64.5 million in India. Prevalence of diabetes has more than doubled for men in India and China (3.7 per cent to 9.1 per cent in India and 3.5 per cent to 9.9 per cent in China). It has also increased by 50 per cent among women in China (5.0 per cent to 7.6 per cent) and 80 per cent among women in India (4.6 per cent to 8.3 per cent). Currently there is no known cure for diabetes, an autoimmune disorder that produces high blood sugar levels over a prolonged period. There are two forms of the disease, the first of which (Type 1) typically onsets during childhood and results from the body’s immune system attacking insulin-produci...
Read More In the Next Page »