blog-logo.png

A BLOG ABOUT CYBER SECURITY

Wombat Security is a leader in security awareness and training. Our blog covers the latest cyber security news, insights, and best practices. We arm infosec professionals with the knowledge and tools they need to improve end-user behaviors and reduce organizational risk.

The Latest on the WannaCry Ransomware Attack

Posted by Gretel Egan on 6/2/17

Topics: Cyber Threats, In the News, All Posts, Ransomware

Wombat_Ransomware2016.jpg

Three weeks post-attack, and WannaCry is still top-of-mind for infosec professionals worldwide. This was very much in evidence during this week’s SecureWorld Atlanta, which I had the privilege of attending. Multiple sessions — including a panel discussion that featured Wombat Chief Architect Kurt Wescoe — covered ransomware attacks in general, but the conversations all spent a fair amount of time focusing on WannaCry and its impact.

The interesting thing is that WannaCry has been called a “somewhat amateur” piece of ransomware (see the ZDNet link below). That and some of the other “oddities” of the attack — like the embedded kill switch and the relatively low return the cybercriminals received for their efforts — left us wondering if the code was intentionally flawed. Perhaps a “gray hat” hacker out there fired this warning shot to unsuspecting organizations, intending WannaCry to be a bit of an international wake-up call? Or maybe it was a test run of sorts for copycat (and kill-switch-free) variants like UIWIX and EternalRocks? Or maybe it was something far more devious, like a false flag that flew the banner of ransomware for all to see while a more dangerous malware permeated into systems undetected?

For now, we are left to speculate. But regardless of whether WannaCry’s failings as an extortion tool were accidental rather than deliberate, it’s critical to recognize that even low-level ransomware can spread and have debilitating consequences if you are not prepared.

color_bar.png

Our Ransomware Resource Center can help you fight this dangerous cybersecurity threat.

Learn More

color_bar.png

Read some of the latest news about the WannaCry ransomware attack in the following articles:

icon-book.png

Try Our Interactive Security Awareness Training Modules

Our 25+ interactive training modules in topics like Email Security, URL Training, Mobile App Security, and more are proven to change the behavior of end users and reduce risk.

Try Our Modules

   Educate Yourself: Protect Against Security Vulnerabilities