UCSB Cyber Security Tip of the Month - Lessons From WannaCry

June 19, 2017

Recently, you most likely watched widespread news coverage of a new cyber-attack called WannaCry. It infected over 200,000 computers worldwide and locked numerous organizations out of their data, including hospitals in the United Kingdom. There are several reasons this attack gained so much attention. 

First, it spread rapidly from computer to computer by attacking a known weakness in Windows computers. Second, the attack was a type of malware called Ransomware, which meant that once it infected your computer, it encrypted all your files, locking you out of your data. The only way you could recover your data was from backups or by paying the attacker a $300 ransom to decrypt all of your data. The third and most important reason this attack gained so much attention was because it never should have happened. The weakness that WannaCry attacked in Windows computers was well known by Microsoft, which had released a fix months earlier. Many organizations failed to install the fix, or were still using operating systems that are no longer supported by Microsoft. 

There are three simple steps you can take to make sure attacks like WannaCry never infect your computers. To learn these three simple steps click here: 

English: Lessons From WannaCry
https://securingthehuman.sans.org/newsletters/ouch/issues/OUCH-201706_en.pdf

Spanish: Lecciones que podemos aprender de WannaCry
https://securingthehuman.sans.org/newsletters/ouch/issues/OUCH-201706_sp.pdf

Russian: Уроки WannaCry
https://securingthehuman.sans.org/newsletters/ouch/issues/OUCH-201706_ru.pdf

This tip is brought to you by your UCSB Cyber Security Awareness Team and SANS.

Sam Horowitz
samh@ucsb.edu

Kip Bates
kip.bates@ucsb.edu

Kevin North
kevin.north@ucsb.edu

For additional cybersecurity information visit:
https://security.ucsb.edu