Critical Cyber Security Threat - WannaCry
As you may be aware, on May 12, hackers launched a global ransomware campaign (WannaCry) against tens of thousands of corporate and governmental targets. The ransomware encrypts files on an infected computer and asks the computer's administrator to pay a ransom in order to regain access.
The ransomware attack is spreading through a Microsoft Windows exploit called “EternalBlue,” for which Microsoft released a patch in March.
ETS is aware of this threat and has been working since Friday to get all our managed systems patched that were not patched already. We are currently going through reports to ensure that all systems have been patched (some may have been turned off or simply not connected to the Internet over the weekend). We will be following up with all users today that need the patch installed.
In addition, it is good to note that all clients with FortiGate firewalls also have an additional layer of protection. Fortinet updated their Intrusion Prevention System signatures to detect and block this ransomware. They have also added AV signatures to the firewalls as well.
At ETS, we subscribe to multiple security alert e-mail services and are made aware of instances like WannaCry. Whenever a Zero Day patch is released by Microsoft we immediately push that patch out to all our managed systems.
In addition, we are always looking at trends in IT security and are recommending policies and products to our clients to combat the ever changing landscape.
As we progress through this process, we will communicate with each of our clients individually to let them know they are fully patched.
Please don’t hesitate to reach out to us if you have any questions or concerns. Your account manager is the best person to reach out to regarding this specific threat.