According to BBC News, WannaCry Ransomware has infected more than 200,000 computers in 150 countries. See the visualization as provided by Kaspersky below:
In Kenya as at 19th May 2017, the Communication Authority reported 19 instances where the Wannacry ransomware had infected computers as can be seen in the tweet below;
WannaCry also known as WannaCrypt or WanaCrypt0r 2.0 or Wanna Decryptor is a type of ransomware encryption based attack targeting Microsoft Windows Operating System (OS). It has the capability of scanning heavily over TCP port 445 (Server Message Block/SMB), spreading similar to a worm, encrypting files stored then demanding ransom payment in the form of Bitcoin.
It can also spread through email attachments, pop-ups in websites, and installation files disguised as official software updates such as Java, Adobe products, and Flash Player. Some of the adverts in torrent websites can also used to distribute this malware.
How to Prevent Wannacry
With the recent ‘Wannacry’ Ransomware Attacks, efforts are needed to mitigate and prevent such attacks in future. Some of the methods that can be employed to mitigate and prevent such attacks include:
- Backup data files on regular basis in a separate/offsite location
- Install software updates and make sure that the operating system and all software are up to date including security patches.
- Maintain an up-to-date antivirus and a firewall and ensure that the rules and policies are set correctly