Groups | Search | Server Info | Keyboard shortcuts | Login | Register [http] [https] [nntp] [nntps]

Groups > aus.computers > #60092

Re: Wana Cry ransomware

From felix <felix@real_felix.invalid>
Newsgroups aus.computers
Subject Re: Wana Cry ransomware
Date 2017-05-23 14:58 +1000
Message-ID <eohtsfFprmuU1@mid.individual.net> (permalink)
References <eohc9pFmaekU1@mid.individual.net> <eohi6aFngunU1@mid.individual.net>

Show all headers | View raw

On Tuesday, 23 May 2017 11:39 AM, Rod Speed wrote:
> felix <felix@real_felix.invalid> wrote
>
>> I guess XP will be highly vulnerable to this due to lack of updates?
>
> It has got an update that removes that particular exploit.

before M$ stopped supporting it? but this variant hasn't been around 
that long

>
>
>> also reports are that no one is getting their files back even when 
>> they pay
>
> That would be straight from some journo's arse.
>
> Only a fool of a ransomware operation wouldn’t
> ensure at some got their files back.
>
>
this (excerpt) from ZoneAlarm

Last Friday there was a global cyberattack that affected 150 countries 
called WannaCry, also known as Wanna Decryptor and “wcry”. WannaCry is a 
Ransomware attack that extorts innocent PC users by encrypting their 
files and demanding a ransom in bitcoin to release them.

WannaCry affects machines running old versions of Windows operating 
system (Windows XP, 8 and Server 2003). Like other ransomwares, it locks 
the data on a computer system and leaves the user with two files: 
instructions on what to do and the Wanna Decryptor program.

Victims are warned that their files will be deleted within days if they 
do not pay up using Bitcoin, the world’s biggest virtual currency that 
can be transferred and used to make payments anonymously.

This is the screen you do not want to get:
WannaCry screenshot
Should you pay the ransom?

If you get infected, we strongly recommend you not to pay the ransom. As 
of May 14th , the three bitcoin accounts associated with the WannaCry 
ransomware have accumulated more than $33,000 between them. Despite 
that, not a single case has been reported of anyone receiving their 
files back.

The decryption process itself is problematic, to say the least.

Unlike other ransomwares market, WannaCry doesn’t seem to have a way of 
associating a payment to the person making it. Most ransomware, such as 
Cerber, generate a unique ID and bitcoin wallet for each victim and thus 
know who to send the decryption keys to. WannaCry, on the other hand, 
only asks you to make a payment and wait.

Most ransomwares pride themselves on customer support, and are usually 
very easy to contact. That is not the case with WannaCry, that we’ve 
made our best efforts to contact, but have not received a reply.

Lastly, our research at Check Point puts into question the ability of 
WannaCry’s creators to decrypt your files at all even if they want to.


-- 
"Multiculturanism equals white ethnocide"
http://thereligionofpeace.com
http://www.barenakedislam.com/
http://www.siotw.org

Back to aus.computers | Previous | NextPrevious in thread | Next in thread | Find similar | Unroll thread

Thread

Wana Cry ransomware felix <felix@real_felix.invalid> - 2017-05-23 09:58 +1000
  Re: Wana Cry ransomware "Rod Speed" <rod.speed.aaa@gmail.com> - 2017-05-23 11:39 +1000
    Re: Wana Cry ransomware felix <felix@real_felix.invalid> - 2017-05-23 14:58 +1000
      Re: Wana Cry ransomware Computer Nerd Kev <not@telling.you.invalid> - 2017-05-23 05:40 +0000
        Re: Wana Cry ransomware felix <felix@real_felix.invalid> - 2017-05-23 18:53 +1000
      Re: Wana Cry ransomware "Rod Speed" <rod.speed.aaa@gmail.com> - 2017-05-23 20:07 +1000
  Re: Wana Cry ransomware Computer Nerd Kev <not@telling.you.invalid> - 2017-05-23 05:45 +0000

csiph-web