Security researchers just traced Uiwix, a ransomware which is very similar to WannaCry but more dangerous than it

Now-a-days, the word "WannaCry" is very familiar to all of us. This ransomware exploited the vulnerabilities in Microsoft’s Windows operating system (except Windows 10) to hack more than 75,000 computers in more than 150 countries & counting last Friday. Microsoft has recently released the security patches for all versions of Winows including XP to prevent this ransomware. Also numerous security researchers are continuously working to develop a permanent solution. Although a temporary solution called "WannaCry KillSwitch" is already discovered by a british security researcher Marcus Hutchins. He slows down the spreads of WannaCry by registering a domain name "wannacry".

Heimdal Security, a cyber security software company has recently reported that another ransomware called Uiwix, has emerged, which is exploiting the vulnerabilities found in Windows SMB v1 and SMB v2. Wannacry is doing in the same method to spread.

Is Uiwix similar to WannaCry?

A group of security researchers has claimed that they have traced WannaCry in Uiwix. Yet, this does not mean that Uiwix & WannaCry are identical. Unfortunately, unlike WannaCry, Uiwix cannot be stopped from spreading just by registering a domain, the Killswitch of Wannacry. Hence, it's called Uiwix is far far more dangerous than WannaCry. Although even some temporary solutions for Wannacry exists, but, still there is no solution discovered for Uiwix.

How does Uiwix work ?

Uiwix works just like WannaCry. At first it attacks victim's PC, and encrypts important files on it. Then it demands a ransom $200 to get decrypt all the files seized by it. The ransom payment of $218 is demanded in bitcoins with the current exchange rate.

image credit

It is very astonishing to have two similar ransomware exploiting the same vulnerability to show up twice so rapidly. So, that it is said that vulnerabilities in Windows software have not been 100% fixed yet.

How to keep safe yourself from Uiwix ?

Since Uiwix cannot be stopped like WannaCry, the only way to contain the virus is to fix the vulnerability that appears to be present in Windows. According to Andra Zaharia, Heimdal Security (a cyber security software company) :

" Attackers are easily able to exploit these vulnerabilities in a network if it’s enabled because, even when the system uses SMB v2 or v3, if the attacker can downgrade the communication to SMB v1, he can exploit the system. This is where the man-in-the-middle attack of a Windows SMB v1-enabled system can become an issue, even if it’s not being used "

However, Uiwix cannot be stopped as of now, the only way to protect yourself is to take some preventive precautions to avoid any trouble in the future. Following these rules strictly may decrease the chances of hijacking by Uiwix -

1. Do not connect your pc, laptop, tablet etc. to a public WiFi hot spot.

2. Do not open any attachments in email from unknown or, suspicious senders.

3. Do not click any links in emails from unknown senders.

4. Do not download any files attached in email from unknown or, suspicious senders.

5. Try to avoid visiting malicious sites.

6. Do not download or, update software/apps from a third-party website, or store.

7. Do not use any out-dated or, pirated software.

8. Install WOT (web of trust) extension, and visit only reputed websites shows by WOT.

9. Keep your antivirus & windows up to date always.

10. You may use Kaspersky anti-ransomware tool, or, Bitdefender anti-ransomware tool for extra security.

11. Disable SMB v1, SMB v2, SMB v3 on windows via registry editing. How to disable it ? Read below.

12. Periodically set restore point. After attack you may able to use System Restore to get back to a known-clean state.

13. Most Important : Always keep offline backup your data, or, do cloud backups.

image credit

How to disable SMB v1, SMB v2, SMB v3 on windows via registry editing ?

To enable or disable SMBv1 on the SMB server, configure the following registry key:

Registry subkey: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\LanmanServer\Parameters

Registry entry: SMB1
REG_DWORD: 0 = Disabled
REG_DWORD: 1 = Enabled
Default: 1 = Enabled

To enable or disable SMBv2 on the SMB server, configure the following registry key:

Registry subkey:HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\LanmanServer\ParametersRegistry entry: SMB2
REG_DWORD: 0 = Disabled
REG_DWORD: 1 = Enabled
Default: 1 = Enabled

image credit

references :

https://heimdalsecurity.com/blog/security-alert-uiwix-ransomware/

https://malwaretips.com/threads/security-alert-uiwix-ransomware-is-here-and-it-can-be-worse-than-wannacry.71464/

https://support.microsoft.com/en-in/help/2696547/how-to-enable-and-disable-smbv1,-smbv2,-and-smbv3-in-windows-vista,-windows-server-2008,-windows-7,-windows-server-2008-r2,-windows-8,-and-windows-server-2012

https://www.hackread.com/uiwix-ransomware-like-wannacry-ransomware/

Tags : Security, Hacks, Ransomware, Malware, Windows, Microsoft, Operating System,

This Post Was Published On My Steemit Blog. Please, navigate to steemit and cast a free upvote to help me if you like my post. First Time heard about Steemit ? Click Here To Know Everything About Steemit

Comments

What I Learnt Today : 10 Unknown Amazing Facts About Animals - Part CXXXIII

image credit (1) Japanese Macaques make snowballs for fun. (2) The chevrotain is an animal that looks like a tiny deer with fangs. (3) Turritopsis nutricula Immortal jellyfish is the only species known to live forever. (4) One million stray dogs and 500,000 stray cats live in New York City metropolitan area. Turritopsis nutricula Immortal jellyfish image credit (5) Nine-banded armadillos always give birth to identical quadruplets. (6) The flying frog uses flaps of skin between its toes to glide. (7) It takes a sloth two weeks to digest its food. Nine-banded armadillo flying frogs image credit (8) A narwhal tusk is actually an exaggerated front left tooth, and unlike most teeth, it's soft and sensitive on the outside with a tough interior. (9) Humpback whales create the loudest sound of any living creature. (10) The slowest mammal on earth is the tree sloth. It only moves at a speed of 6 feet (1.83 meters) per minute. sloth narwhal tusk i

A friendly reminder : Do not use "Electron Cash" to claim/spend your "Bitcoin Cash"

Yesterday, I got a few twitter notifications where electrum warned about using of "Electron Cash". What is "Electron Cash" ? It's a lightweight HD wallet for "Bitcoin Cash", very likely to "electrum". There is a potential risk of losing your original Bitcoins if you are currently using electrum and if you install both "electrum" and "electron cash" on the same PC. Because, it copies all your "electrum wallet files" into its own directory. And it's too dangerous to use your original "electrum seed" into "electron cash" to import your existing BTC wallets. In addition its binary files are signed with a pseudonym "Jonald Fyookball". I'm astonished that why the creator or developer group want to hide their real identities and wanna keep them as anonymous. If a huge amounts of BTC are stolen via "electron cash" then there will be no chance to trace them. Although,

What I Learnt Today : 10 Unknown Amazing Facts About Animals - Part CXXX

image credit (1) Dolphins have developed a very unique sleeping technique that allows them to sleep with half of their brains awake and one eye open. The other half of the brain keeps a vigil of the surrounding environment, breathing functions and protect them from drowning water. (2) Dogs’ nose prints are as unique as human fingerprints and can be used to identify them. (3) A sun bear claws grow throughout its lifetime and the length of its claws can recognize the age of sun bears. (4) Do you know about sailfish ? Sailfish is considered as the fastest fish in the ocean, its speed is as much as that of a running cheetah which is the fastest land creature. sailfish image credit (5) Many animals have been reported to commit suicide, including cows, dogs, bulls, and sheep. (6) Frogs don’t drink water. They absorb it through their skin. (7) A cheetah can accelerate from 0 to 60 mph (95 km/h) in just 3 seconds. That’s faster than a Ferrari Enzo. sun bear cheetah

What are bitcoin miners really solving? (collected from web)

What are bitcoin miners really solving? Here is an extremely simplified sketch of the problem, but it should give a pretty good idea of what the problem is. The data: This is the hash of the lastest block (shortened to 30 characters): 00000000000001adf44c7d69767585 These are the hashes of a few valid transactions waiting for inclusion (shortened). 5572eca4dd4 db7d0c0b845 And this the hash of one special transaction that you just crafted, which gives 25BTC (the current reward) to yourself: 916d849af76 Building the next block: Now, let's use a gross approximation of what a new block might look like (the real one uses binary format). It contains the hash of the previous block and the hashes of those 3 transactions: 00000000000001adf44c7d69767585--5572eca4dd4-db7d0c0b845-916d849af76-- Now let's do mining by hand! Our goal is to complete this block with a nonce (a piece of garbage) such that the hash of the new block starts with 13 zeros (consid

One Black & White Photograph Daily for 30 days - Day #25

green yard - behind of my village home Camera : Xiaomi Model : 2014818 Location : Bongaon, West Bengal, India Snap Taken : 14 March 2016 Tags : Black & White Photography, Flowers & Plants photography, Landscape photography, Nature, Photography, This Post Was Published On My Steemit Blog . Please, navigate to steemit and cast a free upvote to help me if you like my post. First Time heard about Steemit ? Click Here To Know Everything About Steemit $3 Donation [Fixed] Donate $Any Amount

Unknown Fruit - [Beauty of Nature Series -02]

A snapshot of an unknown fruit (it's not berry) Tags : Fruits, Nature, Photography, Fruits photography This Post Was Published On My Steemit Blog . Earned : $00.00 SBD Converted to USD @0.9319$ Rate = $00.00 USD . First Time heard about Steemit ? Click Here To Know...

HOW GOOGLE'S NEW A.I. MICROCHIPS TAKE A PAGE FROM BITCOIN MINERS

Yesterday at Google’s I/O developers conference , CEO Sundar Pichai briefly spoke about a custom-built chip that helps give Google its edge in machine learning and artificial intelligence. The chip, dubbed a TPU or Tensor Processing Unit (in keeping with Google's A.I. platform TensorFlow ), is specifically wrought for running Google’s decision-making algorithms. Most companies like Facebook and Microsoft use GPUs for their machine learning and artificial intelligence.But Pichai’s speech and the accompanying blog post only reveal a few details about TPUs. About the only useful thing we know about the chip is that it’s an ASIC, or application-specific integrated circuit. ASIC chips aren’t bought off the shelves, but designed specifically to do one task very well without using a lot of power. They’re used in applications that never change, like the controlling how a phone battery charges. .............................. [ read full story ] Tags : Bitcoin, Business,

What I Learnt Today : 10 Unknown Amazing Facts About Animals - Part LXIII

image credit (1) Here’s a tidbit that might be useful if you plan on becoming the next Steve Irwin: To escape the grip of a crocodile’s jaw, push your thumb into its eyeball – It will let you go instantly. (2) You might want to thank a squirrel the next time you enjoy the shade of a tree. Millions of trees are accidentally planted by squirrels that bury nuts and then forget where they hid them. (3) The earliest European images of dogs are found in cave paintings dating back 12,000 years ago in Spain. (4) If a honeybee keeps waggle dancing in favor of an unpopular nesting site, other workers headbutt her to help the colony reach a consensus. Honeybee image credit (5) When a rabbit is happy it will sometimes jump in the air twist it’s body. This is called a binky. (6) The Tyrannosaurus Rex went extinct 65 million years ago. (7) Considered to be the loudest land animals, howler monkeys create loud, guttural sounds to defend their turf, that can travel up to 3 miles (4

Life without modern gadgets

We can't think about a day without electronic gadgets. The day starts with a computerized wake up timer and "advanced" goes with us for the duration of the day – wherever we go and whatever we do. These electronic contraptions have officially left a tremendous effect on our way of life; individuals of any age are utilizing diverse sorts of devices. It is presently for all intents and purposes difficult to live without these things; figuring out how schedule to keeping up all contacts, every one of our exercises are controlled by contraptions and thingamabobs. PDAs lie at the focal point of our life; updates, to-do's, contacts, messages – everything can be followed with a most recent mobile phone set. Music mates can purchase a cell telephone with great sound quality, radio and enough memory to store melodies. iPods are likewise very mainstream among music significant others nowadays. iPhones and iPads are two most recent advancements that have g

Visiting deep inside the Sundarbans & spent days with Bawali - Episode #19

In the last October-November I visited Sundarbans, the world's one of the largest mangrove forest. It was also declared as world heritage site by UNESCO in 1997. In this forest a numerous wildlife species exist - birds, reptiles, fishes, amphibians and also the king of the forest "Royal Bengal Tiger". The ganges dolphins & crocodiles are also living in the canals of Sundarbans. Chital is a one kind of spotted deer living in this forest. The rural life in the area of this coastal forest is also very attractive. They basically maintain their lives by collecting honey, woods and fishes. In the native language they are called as Bawali. I spent some days with them. Here I share some of my tour photographs of Sundarbans and Bawali -- It's now reflux time. Narrow canal has least water, boating is almost not possible. So, Bawalis are spending their leisure time on the deck of the boat Camera : SONY Model : DSC-W710 Location : Sundarbans, West Bengal, India Sna

Search This Blog