"Kaspersky Lab" experts analyzed the "WannaCry" transmission information. On May 12, it hit e many companies around the world. As shown in the analysis, the attack took place in the Security Bulletin MS17-010 known through network vulnerability Microsoft. Then the infected system was installed rootkit (a collection of software which provides the concealment of objects, governance, data collection), using which attackers deploy encoders program. "All the Kaspersky Lab solutions" detects that malicious programs used in this attack with the following names.
Trojan-Ransom.Win32.Scatter.uf
Trojan-Ransom.Win32.Scatter.tr
Trojan-Ransom.Win32.Fury.fr
Trojan-Ransom.Win32.Gen.djd
Trojan-Ransom.Win32.Wanna.b
Trojan-Ransom.Win32.Wanna.c
Trojan-Ransom.Win32.Wanna.d
Trojan-Ransom.Win32.Wanna.f
Trojan-Ransom.Win32.Zapchast.i
Win64.EquationDrug.gen
Win32.Generic (registration for this malicious program must be enabled component "Monitoring System").
Then attackers demand to paid 600 US dollars for opening files. On May 14, the "Kaspersky Lab" registered 74 45 000 attack attempts in the country. The largest number of infection attempts seen in Russia. Europol director Rob Ueynrayte said that cyberattacks have been across 150 countries, adding that it is more than 200 thousand, many companies, including large corporations were injured.
For example, on May 12 48 branches in the UK National Health Service suffered by viral attack including hospitals, clinics and health funds, which led to the cancellation of the adoption of ambulatory patients to medical facilities, disturbance of emergency service work and planned surgery failures.
And British Defense Minister Michael J. Fallon stated that the UK authorities additional 50 million pounds (64 million dollars) spent ensuring the security of computer systems for the National Health Service (NHS).
If your files (files) are encrypted, does not use the Internet or e-mail received disclosure of the proposed measures. Files encrypted with algorithms, and your utility can be downloaded to your PC in great damage to both the organization's computers, which are potentially harmful and aimed at a new wave of the epidemic.
If you discover that your computer has been infected, it is necessary to disable it and apply information security department for further instructions.
We advise companies to take a series of measures to reduce infection risks.
The official patch is installed Microsoft (update), which closes the vulnerability used in attacks (in particular, updates are available for Windows XP and Windows 2003 versions);
Ensure that all nodes are connected to network defense solutions;
When using the "Kaspersky Lab security solution" is to ensure that its version includes a "monitoring system".
Launch the "Kaspersky Lab" to scan critical areas of defense task to solve in order to detect possible infection as soon as possible (otherwise the registration will take place automatically in 24 hours);
After restarting the system Win64.EquationDrug.gen-'s registration;
Further, use of threats of information services for the prevention of such incidents, the most dangerous time for obtaining data on the targeted attacks and possible infections.
More detailed information can be obtained from the WannaCry attacks, "Kaspersky Lab" 's record.

The material is copyrighted and protected by law