Skip to main content

Security researchers just traced Uiwix, a ransomware which is very similar to WannaCry but more dangerous than it

Now-a-days, the word "WannaCry" is very familiar to all of us. This ransomware exploited the vulnerabilities in  Microsoft’s Windows operating system (except Windows 10) to hack more than 75,000 computers in more than 150 countries & counting last Friday. Microsoft has recently released the security patches for all versions of Winows including XP to prevent this ransomware. Also numerous security researchers are continuously working to develop a permanent solution. Although a temporary solution called "WannaCry KillSwitch" is already discovered by a british security researcher Marcus Hutchins. He slows down the spreads of WannaCry by registering a domain name "wannacry".
Heimdal Security, a cyber security software company has recently reported that another ransomware called Uiwix, has emerged, which is exploiting the vulnerabilities found in Windows SMB v1 and SMB v2. Wannacry is doing in the same method to spread.

Is Uiwix similar to WannaCry?

A group of security researchers has claimed that they have traced WannaCry in Uiwix. Yet, this does not mean that Uiwix & WannaCry are identical. Unfortunately, unlike WannaCry, Uiwix cannot be stopped from spreading just by registering a domain, the Killswitch of Wannacry. Hence, it's called Uiwix is far far more dangerous than WannaCry. Although even some temporary solutions for Wannacry exists, but, still there is no solution discovered for Uiwix.

How does Uiwix work ?

 Uiwix works just like WannaCry. At first it attacks victim's PC, and encrypts important files on it. Then it demands a ransom $200 to get decrypt all the files seized by it. The ransom payment of $218 is demanded in bitcoins with the current exchange rate.

It is very astonishing to have two similar ransomware exploiting the same vulnerability to show up twice so rapidly. So, that it is said that vulnerabilities in Windows software have not been 100% fixed yet.

How to keep safe yourself from Uiwix ?

 Since Uiwix cannot be stopped like  WannaCry, the only way to contain the virus is to fix the vulnerability  that appears to be present in Windows. According to Andra Zaharia, Heimdal Security (a cyber security software company)  :
Attackers are easily able to exploit  these vulnerabilities in a network if it’s enabled because, even when  the system uses SMB v2 or v3, if the attacker can downgrade the  communication to SMB v1, he can exploit the system. This is where the  man-in-the-middle attack of a Windows SMB v1-enabled system can become  an issue, even if it’s not being used "
 However, Uiwix cannot be stopped as of now, the  only way to protect yourself is to take some preventive precautions to  avoid any trouble in the future.  Following these rules strictly may decrease the chances of hijacking by Uiwix -
1. Do not connect your pc, laptop, tablet etc. to a public WiFi hot spot.
2. Do not open any attachments in email from unknown or, suspicious senders.
3. Do not click any links in emails from unknown senders.
4. Do not download any files attached in email from unknown or, suspicious senders.
5. Try to avoid visiting malicious sites.
6. Do not download or, update software/apps from a third-party website, or store.
7. Do not use any out-dated or, pirated software.
8. Install WOT (web of trust) extension, and visit only reputed websites shows by WOT.
9. Keep your antivirus & windows up to date always.
10. You may use Kaspersky anti-ransomware tool, or, Bitdefender anti-ransomware tool for extra security.
11. Disable SMB v1, SMB v2, SMB v3 on windows via registry editing. How to disable it ? Read below.
12. Periodically set restore point. After attack you may able to use System Restore to get back to a known-clean state.
13. Most Important : Always keep offline backup your data, or, do cloud backups. 

How to disable SMB v1, SMB v2, SMB v3 on windows via registry editing ? 

To enable or disable SMBv1 on the SMB server, configure the following registry key:
Registry subkey: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\LanmanServer\Parameters
Registry entry: SMB1
REG_DWORD: 0 = Disabled
REG_DWORD: 1 = Enabled
Default: 1 = Enabled
To enable or disable SMBv2 on the SMB server, configure the following registry key:
Registry subkey:HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\LanmanServer\ParametersRegistry entry: SMB2
REG_DWORD: 0 = Disabled
REG_DWORD: 1 = Enabled
Default: 1 = Enabled

references :


Tags : Security, Hacks, Ransomware, Malware, Windows, Microsoft, Operating System,

This Post Was Published On My Steemit Blog. Please, navigate to steemit and cast a free upvote to help me if you like my post. First Time heard about Steemit ? Click Here To Know Everything About Steemit 







Comments

Popular Posts (Last 7 Days)

"Share It with Steemit" should be a great idea

I believe sharing photos, arts, musics, videos, news, articles etc. of other people's works from different sources has also value. And also important for steemit community. You must follow some guidelines to make this kind of sharing post - Don't spamming. Do not share random contents from web. Only share what you love most.Do not copy paste directly from source.There are two ways to share: (i) Write your own words, make a summarization, highlight vital portions to make it attractive & finally cite the original source and name of author. (ii) Write your own words in only title & then copy-paste some portion from original article, link it to the source.Always cite the name of original content writer & original source.If you want to use images then you need include the image sources also.You may use tags for this post : shareit/shareitsteemit/share-it/share-it-steemit/siws/sis Here I give some examples [I follow type (i) here -I wrote my own words & made a summar…

One Black & White Photograph Daily for 30 days - Day #25

green yard - behind of my village home Camera : Xiaomi
Model : 2014818
Location : Bongaon, West Bengal, India
Snap Taken : 14 March 2016 Tags : Black & White Photography, Flowers & Plants photography, Landscape photography, Nature, Photography, 
This Post Was Published On My Steemit Blog. Please, navigate to steemit and cast a free upvote to help me if you like my post. First Time heard about Steemit ? Click Here To Know Everything About Steemit 

$3 Donation [Fixed]
Donate $Any Amount


"The Old Man"- My Original Abstract Art

My Original Abstract Art "The Old Man"



 enjoy :) 
Tags : Abstract, Art, Drawing, Painting,  This Post Was Published On My Steemit Blog. Please, navigate to steemit and cast a free upvote to help me if you like my post. First Time heard about Steemit ? Click Here To Know Everything About Steemit 

$3 Donation [Fixed]
Donate $Any Amount


Our Great Festival Durga Puja - Series Photography [Maha Nabami] #13

“Ya devi sarvabhuteshu shanti rupena samsthita,
Namastasyai Namastasyai Namastasyai Namo Namah” Durga Puja is our great festival. We celebrate every year in the month of October. It refers to all the five days observed as Shashthi, Maha Saptami, Maha Ashtami, Maha Nabami & Bijaya Dashami. In these days our city Kolkata wears glamorous attire & illumination . I framed some moments on my camera – PART #13 [Maha Nabami]See also :PART #01 [Shashthi]PART #02 [Shashthi]PART #03 [Maha Saptami]PART #04 [Maha Saptami]PART #05 [Maha Saptami]PART #06 [Maha Ashtami]PART #07 [Maha Ashtami]PART #08 [Maha Ashtami]PART #09 [Maha Ashtami]PART #10 [Maha Ashtami]PART #11 [Maha Nabami]PART #12 [Maha Nabami]
The main attractive thing of this “theme pandal” is all the decorations & sculptures are TERRACOTTA Estimated Cost : 5.2 Million Rupees .

Amazing arts by unknown artists - Series #40

I captured all these art photographs in the Kolkata Book Fair, 2018. I tried to know the original artists of these awesome arts, but, failed. Enjoy this awesome arts. All credits goes to the unknown artists :) To Be Continued.. Previous Episodes : Episode#01Episode#02Episode#03Episode#04Episode#05Episode#06Episode#07Episode#08Episode#09Episode#10Episode#11Episode#12Episode#13Episode#14Episode#15Episode#16Episode#17Episode#18Episode#19Episode#20Episode#21Episode#22Episode#23Episode#24Episode#25Episode#26,

Beauty of an Indian Village

Tags :Flowers & Plants photography, India, Landscape photography, Nature, Photography, Village
This Post Was Published On My Steemit Blog
Earned : $33.48 SBD Converted to USD @0.9578$ Rate = $32.0671 USD
First Time heard about Steemit ? Click Here To Know...

Diwali - Festival of Lights & Kali Puja - Worship of Power against evils [Series Photography] - LAST EPISODE

Another great festival Diwali & Kali Puja Diwali & Kali Puja is our another awesome celebration. Diwali is the festival of lights and Kali Puja is the worship of goddess Maa Kali. We celebrate this two festivals in the same night. We, Bengalee also call Diwali as Deepawali. Diwali is celebrated every month of October/November (Autumn) in India, Nepal & Bangladesh. In this day every Hindu decorates their home & temples with lights. Kali Puja is also known as Shyama Puja. In the same night of Diwali we celebrate it. The goddess Kali is the symbol of power against evil. In nowadays our city Kolkata wears glamorous attire & illumination. I framed some moments on my camera— (all photographs are original & taken by myself) EPISODE #10 [LAST]See also : Episode #01Episode #02Episode #03Episode #04Episode #05Episode #06Episode #07Episode #08Episode #09
Estimated Cost : 5.2 Million Rupees








"Moonlit Night" My Original Abstract Art

Here I share my original abstract art "Moonlit Night"

enjoy :) Tags : Abstract, Art, Drawing, Painting,  This Post Was Published On My Steemit Blog. Please, navigate to steemit and cast a free upvote to help me if you like my post. First Time heard about Steemit ? Click Here To Know Everything About Steemit 

$3 Donation [Fixed]
Donate $Any Amount


ALERT ! Over 100 Million unencrypted passwords of famous Russian Search Engine rambler.ru got HACKED

Very popular russian search engine rambler.ru  has reportedly been a victim of a security breach. About 100 million users data including usernames, email addresses, ICQ numbers, passwords & other important private data are now stolen by an unknown hacker group.   "LeakedSource", the data breach index service published this hacking news on their site --  “Rambler.ru was hacked for 98,167,935  users on February 17th, 2012 and this data set was provided to us by  daykalif@xmpp.jp who also provided the Last.fm mega breach.”  The most bad thing is that all the passwords stored in plain text format without any encryption on the rambler server. So, hacker easily got all login credentials. URGENT ! Change your rambler.ru passwords as soon as possibel !Source of the news : https://www.hackread.com/russian-search-engine-rambler-ru-hacked/ Tags : Hacks, News, Security, Cyber Attack, Cyber Crime,  This Post Was Published On My Steemit Blog. Please, navigate to steemit and cast a free …

“The Holi - festival of color, festival of love” My Original Abstract Art

My Original Abstract Art “The Holi - festival of color, festival of love”






Tags : Abstract, Art, Drawing, Painting,  This Post Was Published On My Steemit Blog. Please, navigate to steemit and cast a free upvote to help me if you like my post. First Time heard about Steemit ? Click Here To Know Everything About Steemit 

$3 Donation [Fixed]
Donate $Any Amount


Back to Top