Massive Worldwide Cyberattack: What You Need to Know

Massive Worldwide Cyberattack: What You Need to Know

A new piece of ransomware is taking the world by storm. Here’s what you need to know:

Attack Details

This HUGE cyberattack is based on code that was once part of the NSA’s Surveillance Toolkit. That exploit (named “EternalBlue”) was leaked online on April 14th. The attack going on right now is called “WannaCry” and is based on the EternalBlue exploit.

More information about who is getting attacked / exploit specifics can be found at:

Who Is Affected?

74 countries and counting! Here’s a map showing which countries have been affected:


Is There A Fix?

YES. Microsoft patched this vulnerability on March 14 (see security bulletin). If you have not installed this patch, do so ASAP.

How Can I Protect Myself?

Start by practicing good cyber hygiene. Did you know that implementing the first 5 controls of the Critical Security Controls (CSC) protects you from 85% of known threats? The first 5 controls are:

  • Control 1: Inventory of Authorized & Unauthorized Devices
  • Control 2: Inventory of Authorized & Unauthorized Software
  • Control 3: Secure Configurations for Hardware & Software on Mobile Devices, Laptops, Workstations, & Servers
  • Control 4: Continuous Vulnerability Assessment & Remediation
  • Control 5: Controlled Use of Administrative Privileges

Installing security patches regularly…that’s number 4.

Need help coming up with something more comprehensive for your business? Check out our security services and then drop us a line.