WannaCry Ransomware to Infect Windows 10 as Well
Security researchers for Wannacry ransomware are still busy developing the fixes. Well, Windows was largely affected worldwide. Researchers at Risksense have successfully managed to port the WannaCry exploit to infect Windows 10.
In the recent WannaCry attack fiasco, Windows was affected massively across the globe in over 100 countries causing organisations to effectively shut down systems which were running on XP. However, supported Windows version with Windows 10 in particular was secure against the WannaCry ransomware attacks. Microsoft had issued a patch which effectively saved the ransomware from causing any major damage.
However, a team of researchers at the Risksense has now managed to port the WannaCry exploit to affect Windows 10 as well. However, users running the updated version of Windows 10 with all patches installed are likely to remain safe.
As we all know WannaCry ransomware is based on EternalBlue, an exploit which was stolen by the Shadow Brokers hacking group from the NSA last summer and published online earlier this year. Security researchers at RiskSense built a Metasploit module that can bypass all the security features implemented by Microsoft in its Windows 10 operating system.
Researchers explained “We’ve omitted certain details of the exploit chain that would only be useful to attackers and not so much for building defences. The research is for the white-hat information security industry in order to increase the understanding and awareness of these exploits so that new techniques can be developed that prevent this and future attacks.
This helps defenders better understand the exploit chain so that they can build defences for the exploit rather than the payload” in a paper.
The new exploit was built to work against Windows 10 x64 version 1511 (November Update), still supported by Microsoft as part of the Current Branch for Business.
Windows users are again recommended to keep their systems fully up-to-date and to make sure that the MS17-010 update provided by Microsoft in March is running on their computers.
So, what do you think about this? Share your views in the comment box below.
However, a team of researchers at the Risksense has now managed to port the WannaCry exploit to affect Windows 10 as well. However, users running the updated version of Windows 10 with all patches installed are likely to remain safe.
As we all know WannaCry ransomware is based on EternalBlue, an exploit which was stolen by the Shadow Brokers hacking group from the NSA last summer and published online earlier this year. Security researchers at RiskSense built a Metasploit module that can bypass all the security features implemented by Microsoft in its Windows 10 operating system.
Also Read: WannaCry Ransomware that's hitting World Right now Uses NSA Windows Exploit.
Researchers explained “We’ve omitted certain details of the exploit chain that would only be useful to attackers and not so much for building defences. The research is for the white-hat information security industry in order to increase the understanding and awareness of these exploits so that new techniques can be developed that prevent this and future attacks.
This helps defenders better understand the exploit chain so that they can build defences for the exploit rather than the payload” in a paper.
The new exploit was built to work against Windows 10 x64 version 1511 (November Update), still supported by Microsoft as part of the Current Branch for Business.
Windows users are again recommended to keep their systems fully up-to-date and to make sure that the MS17-010 update provided by Microsoft in March is running on their computers.
So, what do you think about this? Share your views in the comment box below.
No comments: