No ransomware attack reported yet: IT ministry -Governance Now

No ransomware attack reported yet: IT ministry

Wannacry encrypts hard disk drive of computers and demands $300 in bitcoins to decrypt

GN Bureau | May 13, 2017

#bitcoins #Kaspersky Lab #Quick Heal #Symantec #malicious IP addresses #MEIT #Wannacry

A day after a global cyber ransomware attack, the Indian computer emergency response team of the ministry of electronics and information technology has advised organisations to apply patches to Windows systems. The details of patches, as stated in Microsoft security bulletin MS 17-010, are publicly available.

Ransomware malware is malicious software which, when in contact with a computer or network, encrypts computers hard disk drive and locks the user and demands for a ransom for decryption. In this case, ‘wannacry’ has demanded $300 in bitcoins. Reports claim that the attack seems to taken place across 99 countries—the figure is approximate. European countries, however, are the worst hit.

“It has been reported that a new ransomware named Wannacry is spreading widely. Wannacry encrypts the files on the infected Windows systems. This ransomware spreads by using vulnerability in implementation of Server Message Block (SMB) in Windows systems. This exploit is named as ‘Eternalblue’,” said an advisory on ‘cert-in-org.in’.

The cyber hack tool seems to have been stolen from National Security Agency of the US.

“On May 12, 2017… ransomware began spreading widely impacting a large number of organizations, particularly in Europe,” US based security solutions company Symantec said on its portal. WannaCry, the cyber security firm said, has the ability to spread itself within corporate networks, by exploiting a known vulnerability in Microsoft Windows. “Computers which do not have the latest Windows security updates applied are at risk of infection,” Symantec said.

According to officials at the electronics and IT ministry, so far no ‘wannacry’ cases have been reported. The government organisation is working on developing a ‘removal tool’ to detect the malware and clean the system with Quick Heal, and would soon be making it available on cyberswachhtakendra.gov.in portal.

ICERT, the officials said, is also sharing a list of malicious IP addresses with all government organisations and facilities declared as ‘critical information infrastructure’. Microsoft had released a patch mid-March for the Windows vulnerability being currently exploited by ‘wannacry’. Subsequently, ICERT had advised organisations to upgrade the Windows software with the given patch.

It is understood that it’s not a targeted attack. “Ransomware campaigns are typically indiscriminate,” Symantec believes.

Kaspersky Lab, a Russian cyber security solutions provider, have found 45,000 ‘wannacry’ cases across countries including the UK, Russia, Ukraine, India, China, Italy, and Egypt. “In Spain, major companies including telecommunications firm Telefónica were infected. By Friday evening, the ransomware had spread to the United States and South America, though Europe and Russia remained the hardest hit, according to security researchers Malware Hunter Team. The Russian interior ministry says about 1,000 computers have been affected,” a Guardian report said.

For remedial measures refer here

Comments

Other News

India faces critical shortage of skin donors amid rising burn cases

India reports nearly 70 lakh burn injury cases every year, resulting in approximately 1.4 lakh deaths annually. Experts estimate that up to 50% of these lives could be saved with adequate access to skin donations. A significant concern is that around 70% of burn victims fall wi

Not just politics, let`s discuss policies too

Why public policy matters Most days, India`s loudest debates stop at the ballot box. We can name every major leader and recall every campaign slogan. Still, far fewer of us can explain why a widow`s pension is delayed or how a government school`s budget is actually approved. That

When algorithms decide and children die

The images have not left me, of dead and wounded children being carried in the arms of the medics and relatives to the ambulances and hospitals. On February 28, at the start of Operation Epic Fury, cruise missiles struck the Shajareh Tayyebeh school – officially named a girls’ school, in Minab,

The economics of representation: Why women in power matter

India’s democracy has grown in scale, but not quite in balance. Women today are active participants in elections, influencing outcomes in ways that were not as visible earlier. Yet their presence in legislative institutions continues to lag behind. The Nari Shakti Vandan Adhiniyam was meant to addres

India will be powerful, not aggressive: Bhaiyyaji

India is poised to emerge as a global power but will remain rooted in its civilisational ethos of non-aggression and harmony, former RSS General Secretary Suresh `Bhaiyyaji` Joshi has said. He was speaking at the launch of “Rashtrabhav,” a book by Ravindra Sathe

AI: Code, Control, Conquer

India today stands at a critical juncture in the area of artificial intelligence. While the country is among the fastest adopters of AI in the world, it remains heavily reliant on technologies developed elsewhere. This paradox, experts warn, cannot persist if India seeks technological sovereignty.