Security Level: Critical
WannaCry ransomware in just a few hours targeted more than 100,000 computers in the world. Ransomware infected the machine by encrypting all its files and, using a remote command execution vulnerability through SMB, is distributed to other Windows machines on the same network.
To safeguard against such ransomware infection, you should only open files received from the Internet in Safe Run mode. Make sure that you run an active anti-virus security suite of tools on your system.
Bkav's tool scans WannaCry ransomware, checks EternalBlue - the vulnerability in Windows Server Message Block (SMB) service exploited by WannaCry to intrude computers. This tool also helps users to get the fix quickly.
Bkav's tool can be downloaded at Bkav.com.vn/Tool/CheckWanCry.exe, not require installation to scan. Bkav Internet Security has automatic protection feature against ransomware already.
Zero-day vulnerabilities are discovered in operating systems or worldwide popular softwares.
New and dangerous viruses emerge with high spreading rate worldwide. (For instance: Code Red, Blaster, Conficker…).
Malicious attacks performed by Vietnamese or global hackers. (For instance: DDoS attacks aimed at Korea and US government’s websites etc.).
Critical vulnerabilities are still being exploited at large scale though patches are already available.
The spread of viruses or malicious attacks in specific and large community or regions (For instance: all over Vietnam, South East Asia, etc.).
The emergence of viruses exploiting new technology. As all defense systems are not yet ready and antivirus softwares have not been updated with new definitions, both individuals and enterprises are affected. (For instance: Skype wiretapping Trojan, virus that infects Delphi Code Translator, etc.).
The vulnerabilities have already been patched and being exploited only at small scale.
Cyber attacks and viruses spread at small scale.
There is no sign of cyber attacks or viruses spread worldwide. Network systems are working fine.