Page Loader Logo
Loading...
833-847-3280
Schedule a Call
Partner With Us

The Wannacry Infection … not a problem if you practice cyber hygiene.

The Wannacry Infection: What it is

I am sure that, over the weekend, you were inundated with news about the latest worldwide, The Wannacry Infection, cyber attack, infecting hundreds of thousands of systems around the world. Encryption occurred in the files of the affected computers and servers. From a hacker’s perspective, the infection was a complete success, affecting major corporations, government agencies and business worldwide.

If you didn’t read too deeply, you would think that The Wannacry Infection was the end of the world. You would think that some secret NSA developed virus was taking over businesses, government entities and personal computers. You would think that there was no way to stop it. But a deeper dive into the infection demonstrates once again, why proper cyber and IT hygiene is critical in preventing such serious infections.

The Wannacry Infection: How it Works

The Wannacry Infection works by taking advantage of a flaw in older Microsoft operating systems. A hacking group called Shadow Brokers released the infection. They are allegedly tied to hacks that were stolen from the NSA. Regardless of its origin or the effectiveness of the hack, basic IT and cyber hygiene would have prevented these infections. Why? Microsoft released a fix in February. IT managers should have updated their IT systems.

Additionally, most Anti-Virus programs have the update contained in them as well, as a simple search will reveal. This infection could have been preventable if IT managers kept their operating systems updated.

How to Prevent

I don’t want to get on my soapbox again but, as proponents of businesses small and large, we have often stressed the most affordable ways to prevent hackers from gaining access and control of critical IT systems that are critical to the operations of any sized corporation. It is critical that stakeholders ensure that their IT managers are doing their jobs. There are ways to ensure that they are doing their jobs, one of them being vulnerability scanning.

Vulnerability Scans

A vulnerability scan is a very inexpensive way to get a look at your IT architecture and to determine how up-to-date and/or secure it is. By using a variety of open source or proprietary tools, a provider obtains access to your network (through your IT POC) and “scans” the network for missing updates, open ports and other areas where hackers may enter your network.

The reports are simple to read and demonstrate what vulnerabilities exist, allowing the business owner to make informed decisions and can determine if s/he is secure or not. Repeated scans offer the owner the ability to track the progress that their IT personnel are making on addressing these vulnerabilities.

Other areas where business owners and private citizens can increase their security:

Update and Update again: too often we ignore those “update” messages that come up on our computer. More importantly, when you see them, act.

Download File: This goes back to training and preventing your employees from clicking on those blue links of chaos that come in emails promising things that are just too good to be true (they aren’t). Ensure they are aware of simple social engineering approaches: changed email addresses, modified URLs, etc.

Use Anti-Virus Programs: AV programs usually get frowned upon. Most people rely on their computer firewalls to prevent viruses. AV programs are kept up-to-date. They usually include information from application and system providers on hacks that affect their programs.

Back up your system: Sometimes a business cannot control everyone that touches their IT systems and even the most rigorous training program will not prevent someone from downloading an infection. Back up your systems. Above all, store them off site and on a different system/server than the one your company operates on.

These simple tactics can help prevent such a calamity from affecting your business. Practice good IT and cyber hygiene and you have a stronger chance of surviving a global cyber-attack.

Latest Posts

A transparent image used for creating empty spaces in columns
Welcome to today’s briefing on a crucial topic in the realm of cybersecurity: internal network penetration testing. Now, I know that the term might sound a bit intimidating but fear not. By the end of this discussion, you’ll have a solid understanding of what it…
A transparent image used for creating empty spaces in columns
 In the world of cybersecurity, there’s a misconception that a clean pen testing report means something was missed or the test wasn’t thorough enough. But here’s the truth: receiving a clean report from your penetration test is not only a positive outcome—it’s a testament…
A transparent image used for creating empty spaces in columns
Hey there, folks! Let’s get one thing straight: when MainNerve talks about penetration testing, we’re diving deep into the world of cybersecurity. But hey, we know what people think when we say “penetration testing.” So, buckle up because we’re about to compare pen testing to…
A transparent image used for creating empty spaces in columns
 In the fast-paced world of managed IT services, we know that time is money. Your clients rely on you to keep their systems secure, and you need partners who can deliver top-notch services without slowing you down. If you’re a Managed Service Provider (MSP)…
A transparent image used for creating empty spaces in columns
The primary purpose of performing a penetration test is to simulate real-world attacks on a computer system, network, or application. This is done by skilled cybersecurity professionals, who are tasked with identifying vulnerabilities and weaknesses that malicious actors could exploit. Their role is crucial in…
A transparent image used for creating empty spaces in columns
 If your business relies on older technology, you’ll want to listen up. We’re highlighting a critical weakness in many organizations’ defenses: legacy systems. What Are Legacy Systems? Legacy systems are outdated technologies that are no longer supported with updates or patches from their creators.…
contact

Our Team

Name(Required)
This field is for validation purposes and should be left unchanged.
quick links to

Our Services

On Load
Where? .serviceMM
What? Mega Menu: Services
201 E Pikes Peak Ave Suite 2025
Colorado Springs, CO 80903