Preparing for Ransomware Attacks

WPI Information Security Alert - Actions taken by WPI and actions individuals should take to prepare for WannaCry and other ransomware attacks

Why

Computers worldwide have been attacked by WannaCry ransomware, malicious software that encrypts a victim's hard drive and demands a ransom be paid in order to decrypt the contents. Although the initial wave of attacks was stopped, recent reports indicate that a new round of attacks is imminent. Initial infections occurred through phishing, but are now promulgating as a worm through networks worldwide, preying on vulnerabilities in unpatched computers. NO USER INTERACTION required to be infected.

Impact

As a matter of standard operating practice, WPI ITS takes these actions to minimize impact for the WPI Community:

  • Timely distribution of current patches to ITS-managed computers. (Unpatched Microsoft systems are vulnerable to the WannaCry ransomware variant.)
  • Timely distribution of updated virus definitions (DATs).
  • Ongoing monitoring of current threats and execution of appropriate response procedures.

Action Needed

Cybersecurity and protecting WPI is a responsibility we all must share. Individuals are the best first line of defense against cyber threats. Being a good digital citizen means remaining aware of current threats and how to protect against them.

Additional information about WannaCry is available to view in Actions.

Individuals should take recommended action below to prepare computers that are not managed by WPI ITS for ransomware attacks.


Timeline

End: 31 May 2017,5:00 PM

Posted: 19 May 2017, 10:00 AM

Start: 12 May 2017,5:00 PM

Status

Completed


Timing

From

Friday

12 May 2017

5:00 PM

To

Wednesday

31 May 2017

5:00 PM

Posted

19 May 2017, 10:00 AM


Audience

Faculty Staff Students