23 September 2017
visit www.avoka.com

Security experts struggle in search for WannaCry clues - Reuters

19 May 2017  |  14204 views  |  0 Security/Risk

Efforts by IT security researchers to get to the bottom of the recent ransomware attack have been hampered by an inability to find early traces of the so-called WannaCry strain, according to research commissioned by Reuters and conducted by security ratings firm BitSight.

While the security experts have struggled to find the so-called 'patient zero' in the attack, they have been more successful in finding the cause of the attacks and the reason why it was so successful.

Reuters reports that two thirds of those affected were running old versions of Microsoft's Windows 7 operating system and failing to install the latest security upgrades.

BitSight's research showed that 67% of 160,000 affected computers were Windows 7 users, whereas the same operating system is used by less than half of global PC users.

The Ransomware attack affected more than 300,000 internet addresses worldwide, including government agencies, large corporations and banks. And experts are warning that the threat is far from over with a new and enhanced strain expected to be unleashed soon.

"Some organisations just aren't aware of the risks; some don't want to risk interrupting important business processes; sometimes they are short-staffed," said Ziv Mador, vice president of security research at Trustwave’s Israeli SpiderLabs unit, speaking to Reuters. "There are plenty of reasons people wait to patch and none of them are good."

Reuters also reports that half of all internet addresses corrupted globally by WannaCry are located in China and Russia, with 30 and 20 percent respectively. Furthermore, infection levels have spiked again this week, according to data supplied to Reuters by threat intelligence firm Kryptos Logic.

However, the respective central banks at the two countries have issued statements to minimise any concern that banks have been affected by the ransomware attacks.

The Russian central bank confirmed there were some isolated cases but they were dealt with quickly and recommendations to update any Windows software were twice issued to all banks in the wake of the attacks.

Meanwhile China's central bank, the People's Bank of China, told Reuters that it has thus far found any cases among its institutions, although it will continue to monitor the situation, adding that it "attached great importance to the work of creating a secure financial network and strengthening internet security and governance".

Comments: (0)

Comment on this story (membership required)

Finextra news in your inbox

For Finextra's free daily newsletter, breaking news flashes and weekly jobs board: sign up now

Related stories

WannaCry ransomware: Indian banks told to update ATM software

WannaCry ransomware: Indian banks told to update ATM software

15 May 2017  |  6473 views  |  5 comments | 5 tweets | 12 linkedin
Ransomware moves to the mobile - and it's after your banking data

Ransomware moves to the mobile - and it's after your banking data

17 June 2014  |  5994 views  |  0 comments | 9 tweets | 5 linkedin
US police force pays out bitcoin ransom after falling to Cryptolocker

US police force pays out bitcoin ransom after falling to Cryptolocker

22 November 2013  |  6265 views  |  0 comments | 3 tweets | 1 linkedin
UK crime agency warns of threat from bitcoin ransomware

UK crime agency warns of threat from bitcoin ransomware

18 November 2013  |  4945 views  |  0 comments | 9 tweets | 10 linkedin

Related company news

 

Related blogs

Create a blog about this story (membership required)
visit www.vasco.comvisit www.capgemini.comvisit www.sibos.com

Top retail banking topics

Most viewed Most shared
HSBC switches on selfie payments in ChinaHSBC switches on selfie payments in China
13004 views comments | 27 tweets | 42 linkedin
AXA launches blockchain to cover late flight compensationAXA launches blockchain to cover late flig...
8895 views comments | 13 tweets | 27 linkedin
Apple P2P payments service nears launchApple P2P payments service nears launch
8430 views comments | 19 tweets | 27 linkedin
ISO 20022: The common language of choiceISO 20022: The common language of choice
7512 views comments | 1 tweets | 2 linkedin
Google makes bid for cashless India with new mobile appGoogle makes bid for cashless India with n...
6490 views comments | 30 tweets | 32 linkedin

Featured job

A minimum of £200K (not a limiting factor)
London

Find your next job