EnternalBlue: Still a threat?
Wannacrypt – 13th May 2017 – Ransomware attack speeds across the world…
NHS cyber attack – Doctor’s surgeries and Hospitals it by ransomware
Infected by a massive worldwide malware outbreak, around 40 NHS trusts have been locked out from accessing patient data.
Locked computers showed a ransomware message, demanding a £230 payment
Surgeries and hospitals were unable to access patient prescribed medicine, blood test results, x-rays and everything else.
Almost all patient data is stored electronically, now.
Many, many organisations around the world were affected. Why? The malware was a worm – meaning it was able to spread through and jump between computer networks.
That worm-like behaviour allowed the threat to spread across the internet, worldwide from its original source so quickly.
One of the biggest malware outbreaks in the history of computers. The Wannacrypt threat caused world-wide interruptions to and shutdown of computer systems two years ago, in May 2017. But the exploit that caused it hasn’t gone away.
EternalBlue, Microsoft Windows operating system exploit,
reported to have been stolen from the American security agency, the National Security Agency (NSA) in 2016. The details of the exploit were leaked online on April 14th 2017 by a group known as the Shadow Brokers. The vulnerability exploited Microsoft’s version of the Server Message Block (SMB) protocol, a form of computer communications language, on port 445.
This exploit was disclosed to Microsoft privately and patched, even before the malware outbreak occurred, but even today, there are still almost a million computers that are vulnerable to attack through this vulnerability.
Your computers should not be affected by this threat. If you have an up-to-date operating system and up-to-date anti-virus software, then the answer will be No.
Thirty years ago, the Internet and world wide web, as we know it today, did not exist. And although malware existed, it typically spread by friends or businesses sharing floppy disks; a relatively slow process and it was highly unlikely you or your computer would be affected by any one threat.
Today is a very different story! With four billion people and and almost 50 billion devices permanently connected to the Internet, it is almost certain that, unless you ensure your system is adequately protected, it will be infected by malware.
The fact that computers regularly connected to the internet are still unprotected against EnternalBlue demonstrates the very clear importance of ensuring your computers are fully patched and protect against malware,so reducing the risk of infection as small as possible.
7th June 2019