Kaspersky Lab engineers have analyzed the information on the cases of infection with the file-encrypting malware known as WannaCry, which attacked a number of companies around the world on May, 12.
For the attack, the known network vulnerability Microsoft Security Bulletin MS17-010 was used. Then, the rootkit was installed on the infected computers, through which the file-encrypting malware was run.
Kaspersky Lab experts are currently analyzing the malware samples to find decryption options.
For detailed information about the WannaCry attacks, please refer to the Kaspersky Lab report.
If the antivirus databases of your Kaspersky Lab application are up to date, WannaCry malware will be detected and blocked.
To minimize the risk of infection, we recommend that you install the Microsoft patch, which fixes the vulnerability used for the attack. For the detailed guide, see the following section.
For operating systems that are no longer supported (e.g. Windows XP) visit this page.
For a guide on how to run an update task, please see this article.
For a guide on how to enable System Watcher, please see this article.
How to protect against the WannaCry attacks if you use Kaspersky Lab products for businessWannaCry ransomware used in widespread attacks all over the worldWannaCry cryptor attack: what happened and how to protect yourself
Please let us know how we can make this website more comfortable for you
Thank you for submitting your feedback. We will review your feedback shortly.
Your feedback will be used for content improvement purposes only. If you need assistance, please contact technical support.
Your suggestions will help improve this article.
