WannaCry, also known as WannaCrypt and Wana Decryptor, is one of the worst computer viruses of the 21st century. A wormable cryptovirus, it spreads from one computer to another. Targeting computers running the Microsoft Windows operating system, it encrypts important data on the machine – including files, images, documents, and videos – and holds it hostage until a ransom of $300 (later increased to $600) in the Bitcoin cryptocurrency is paid.
The “I Love You” virus took advantage of a vulnerability in Microsoft's Windows operating system to propagate itself automatically, infecting every computer on a network within hours.
Responsibility also lies with Eternal Blue, the exploit leaked from the US National Security Agency that WannaCry used to spread like wildfire. A patch for the vulnerability had been issued by Microsoft before the WannaCry ransomware attack began, but many individuals and organizations had not installed it, leaving themselves exposed.
Once it gains access to a computer system, WannaCry searches for dozens of file types – including Microsoft Office documents, images, videos, and archives – and encrypts them. The files can be decrypted only with a digital key that is transmitted externally. The encrypted files are then renamed with the extension .WNCRY, and a ransom demand appears on the desktop, requesting payment in the virtual currency Bitcoin to recover them.
And, even when victims pay, the hackers do not unlock their computers or decrypt their data.
The WannaCry ransomware infected hundreds of thousands of computers in more than 150 countries in a matter of hours. Here is why it was so successful.
First, WannaCry is a worm, meaning that its self-replicating code spreads without human intervention, and deletes files on an infected computer. Second, some lazy computer users had not updated their operating systems. And third, victims clicked on a link in an e-mail. Spam and phishing e-mails are believed to be vectors for ransomware in some cases.
On May 12, the WannaCry ransomware attack struck Asia, and quickly went global. WannaCry was undoubtedly a worldwide cyber pandemic that caused major losses for many people in all walks of life, especially in finance, energy, and health care.
The unprecedented WannaCry ransomware attack had a far-reaching impact, infecting more than 200,000 computers in 150 countries, and causing billions of dollars in damage. It hit health-care providers particularly hard, with the United Kingdom's National Health Service among the first to be affected. Large manufacturers, including TSMC, Boeing, and FedEx, were also impacted. And some universities in China were not immune.
Had they not updated their Windows operating systems to get the latest security patches, their computers would still be vulnerable to WannaCry and its variants. And there is reason to fear that many companies failed to patch their systems. But, with new technologies evolving, there is no doubt that WannaCry's days are numbered.
Now that we know the damage that WannaCry can do, fortunately there are many steps we can take to protect ourselves against ransomware attacks online.
Individually, people can protect themselves by doing the following:
For companies and organizations, defenses against ransomware can include:
In this article, you can get more information about free virus removal tools for PC.