World’s Biggest Cyberattack Continues to Spread, North Korea: Keep a Pure Land

Last Friday on May 12, according to the report of Associated Press and the British Standards such as many media, a computer ransomware named WannaCry virus is spreading worldwide, in which 99 countries have been infected by now. The most affected areas, which concentrated in the United States, Europe, Australia and other regions, have spread into China from abroad.

Meanwhile, North Korea ran away in under this wide range attack of plundered, has defended a side of pure land, due to their closed networks and exchanges, maybe they are happy with it. But for now, it seems the North Korea have something to do with this worldwide massive cyberattack accordign to CNN, for more details and evidences about the connection, the security researchers are working on it.

How WannaCry Spread All over the World

This ransomware is mainly using Microsoft “Windows” system’s vulnerabilities to get automatic transmission capacity, which is able to infect all computers in a system within a few hours. According effective survey, the virus attack has been over 4000 times per hour at yesterday night.

In accordance with network security organization notification demonstration, WannaCry is the first case of NSA network of armories civilian. It will automatically scan Windows machine of 445 file sharing ports, without any operation, it can encrypt, freeze all disk files, and transform the suffix into .onion, soon after, hacker can control the Trojan through long-distance, blackmail users with “the ransom money” in desktop.

The UK NHS (Britain’s National Health Service) is the first attacked by the WannaCry. According to the BBC and CNN reported, more than 16 hospitals had been attacked by major hacker, lead to the system paralysis, established operation was forced to cancel, and the ambulance was forced to turn to other hospitals. Hacker asked the hospital to pay a $300 coins so they can only get the key, and reopen the file. If it does not complete the payment within three days, ransom will be doubled.

How to Avoid the Viruses Extortion

In a small area within the Internet, once one person did not seal off 445 public ports, or not to patch Windows, then the computer will be infected by the virus in the whole region. As an individual user, who once infected by this virus, don’t give the money, even if you have pay the ransom, the document is possibly unable to restore. Only you can do is low lattice hard drive, reinstall the operating system.

The most efficient method to avoid infection is to install the patch as soon as possible. At present, Microsoft has released the patch MS17-010 to fix the system vulnerabilities attacked by ” WannaCry “; As for XP, 2003 which Microsoft no longer provides security updates, it is recommended to use “NSA Arsenal immune tool ” to inspect whether there is a loophole, and then close the port affected by the loophole can be avoided by extortion software such as viruses.