What is Ransomware -
Ransomware is a form of malicious software that locks up the files on your computer, encrypts them, and demands that you pay to get your files back. It prevents users from accessing their system.
When a system is infected, a pop-up window appears, prompting you to pay to recover all your files within three days, with a countdown timer on the left of the window. It adds that if you fail to pay within that time, the fee will be doubled, and if you don’t pay within seven days, you will lose the files forever.
Payment is accepted only with Bitcoin.
Wanna Decryptor, or WannaCry, is a form of ransomware that affects Microsoft’s Windows operating system. WannaCry has the ability to spread itself within corporate networks, without user interaction, by exploiting a known vulnerability in Microsoft Windows.
How does it spread?
According to the US Computer Emergency Readiness Team (USCRT), under the Department of Homeland Security, ransomware spreads easily when it encounters unpatched or outdated software. Experts say that WannaCry is spread by an internet worm — software that spreads copies of itself by hacking into other computers on a network, rather than the usual case of prompting unsuspecting users to open attachments. It is believed that the cyber attack was carried out with the help of tools stolen from the National Security Agency (NSA) of the United States.
Some forms of malware can lock the computer entirely, or set off a series of pop-ups that are nearly impossible to close, thereby hindering your work.
What can be done to prevent this?
The best way to protect your computer is to create regular backups of your files. The malware only affects files that exist on the computer. If you have created a thorough backup and your machine is infected with ransomware, you can reset your machine to begin with a clean slate, reinstall the software and restore your files from the backup.
According to Microsoft’s Malware Protection Centre, other precautions include –
- regularly updating your anti-virus program;
- enabling pop-up blockers;
- updating all software periodically;
- ensure the smart screen (in Internet Explorer) is turned on, which helps identify reported phishing and malware websites;
- avoid opening attachments that may appear suspicious.
Who has it affected so far?
It was first reported from Sweden, Britain and France, but Russia and Taiwan are said to be the worst hit, according to US media. Over 75,000 systems have been affected. Major companies that have reported attacks are FedEx, Telefonica and National Health Service (UK).
In India, Andhra Pradesh’s police computers have come under the cyber attack. Computers in 18 police units in Chittoor, Krishna, Guntur, Visakhapatnam and Srikakulam districts have been affected.