Skip to main content

Security researchers just traced Uiwix, a ransomware which is very similar to WannaCry but more dangerous than it

Now-a-days, the word "WannaCry" is very familiar to all of us. This ransomware exploited the vulnerabilities in  Microsoft’s Windows operating system (except Windows 10) to hack more than 75,000 computers in more than 150 countries & counting last Friday. Microsoft has recently released the security patches for all versions of Winows including XP to prevent this ransomware. Also numerous security researchers are continuously working to develop a permanent solution. Although a temporary solution called "WannaCry KillSwitch" is already discovered by a british security researcher Marcus Hutchins. He slows down the spreads of WannaCry by registering a domain name "wannacry".
Heimdal Security, a cyber security software company has recently reported that another ransomware called Uiwix, has emerged, which is exploiting the vulnerabilities found in Windows SMB v1 and SMB v2. Wannacry is doing in the same method to spread.

Is Uiwix similar to WannaCry?

A group of security researchers has claimed that they have traced WannaCry in Uiwix. Yet, this does not mean that Uiwix & WannaCry are identical. Unfortunately, unlike WannaCry, Uiwix cannot be stopped from spreading just by registering a domain, the Killswitch of Wannacry. Hence, it's called Uiwix is far far more dangerous than WannaCry. Although even some temporary solutions for Wannacry exists, but, still there is no solution discovered for Uiwix.

How does Uiwix work ?

 Uiwix works just like WannaCry. At first it attacks victim's PC, and encrypts important files on it. Then it demands a ransom $200 to get decrypt all the files seized by it. The ransom payment of $218 is demanded in bitcoins with the current exchange rate.

It is very astonishing to have two similar ransomware exploiting the same vulnerability to show up twice so rapidly. So, that it is said that vulnerabilities in Windows software have not been 100% fixed yet.

How to keep safe yourself from Uiwix ?

 Since Uiwix cannot be stopped like  WannaCry, the only way to contain the virus is to fix the vulnerability  that appears to be present in Windows. According to Andra Zaharia, Heimdal Security (a cyber security software company)  :
Attackers are easily able to exploit  these vulnerabilities in a network if it’s enabled because, even when  the system uses SMB v2 or v3, if the attacker can downgrade the  communication to SMB v1, he can exploit the system. This is where the  man-in-the-middle attack of a Windows SMB v1-enabled system can become  an issue, even if it’s not being used "
 However, Uiwix cannot be stopped as of now, the  only way to protect yourself is to take some preventive precautions to  avoid any trouble in the future.  Following these rules strictly may decrease the chances of hijacking by Uiwix -
1. Do not connect your pc, laptop, tablet etc. to a public WiFi hot spot.
2. Do not open any attachments in email from unknown or, suspicious senders.
3. Do not click any links in emails from unknown senders.
4. Do not download any files attached in email from unknown or, suspicious senders.
5. Try to avoid visiting malicious sites.
6. Do not download or, update software/apps from a third-party website, or store.
7. Do not use any out-dated or, pirated software.
8. Install WOT (web of trust) extension, and visit only reputed websites shows by WOT.
9. Keep your antivirus & windows up to date always.
10. You may use Kaspersky anti-ransomware tool, or, Bitdefender anti-ransomware tool for extra security.
11. Disable SMB v1, SMB v2, SMB v3 on windows via registry editing. How to disable it ? Read below.
12. Periodically set restore point. After attack you may able to use System Restore to get back to a known-clean state.
13. Most Important : Always keep offline backup your data, or, do cloud backups. 

How to disable SMB v1, SMB v2, SMB v3 on windows via registry editing ? 

To enable or disable SMBv1 on the SMB server, configure the following registry key:
Registry subkey: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\LanmanServer\Parameters
Registry entry: SMB1
REG_DWORD: 0 = Disabled
REG_DWORD: 1 = Enabled
Default: 1 = Enabled
To enable or disable SMBv2 on the SMB server, configure the following registry key:
Registry subkey:HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\LanmanServer\ParametersRegistry entry: SMB2
REG_DWORD: 0 = Disabled
REG_DWORD: 1 = Enabled
Default: 1 = Enabled

references :


Tags : Security, Hacks, Ransomware, Malware, Windows, Microsoft, Operating System,

This Post Was Published On My Steemit Blog. Please, navigate to steemit and cast a free upvote to help me if you like my post. First Time heard about Steemit ? Click Here To Know Everything About Steemit 







Comments

Popular Posts (Last 7 Days)

The Real Face Of India - Episode 133

The Real Face Of India - Episode#133 I believe that India is the most beautiful country in the world. In this series I show the real face of beautiful India. Half Dozen Photos of Natural Beauties Snap taken : 21 Mar 2018   Camera : SAMSUNG, Model : SM-A310N0 Other Episodes :  Episode#01 ,  Episode#02 ,  Episode#03 ,  Episode#04 ,  Episode#05 ,  Episode#06 ,  Episode#07 ,  Episode#08 ,  Episode#09 ,  Episode#10 ,  Episode#11 ,  Episode#12 ,  Episode#13 ,  Episode#14 ,  Episode#15 ,  Episode#16 ,  Episode#17 ,  Episode#18 ,  Episode#19 ,  Episode#20 ,  Episode#21 ,  Episode#22 ,  Episode#23 ,  Episode#24 ,  Episode#25 ,  Episode#26 ,  Episode#27 ,  Episode#28 ,  Episode#29 ,  Episode#30 ,  Episode#31 ,  Episode#32 ,  Episode#33 ,  Episode#34 ,  Episode#35 ,  Episode#36 ,  Episode#37 ,  Episode#38 ,  Episode#39 ,  Episode#40 ,  Episode#41 ,  Episode#42 ,  Episode#43 ,  Episode#44 ,  Episode#45 ,  Episode#46 ,  Episode#47 ,  Episode#48 ,  Episode#49 ,  Episode#50 , 

Bitcoin Extortionist Convicted in Romney Tax Return Fraud

A Tennessee man was recently found guilty on charges of extortion and wire fraud scheme in the attempted extortion of former Republican Presidential nominee, Mitt Romney. The extortion scheme from 2012 saw the accused demand $1 million in  bitcoin in ... Bitcoin -ransoming Romney tax 'hacker' faces 25 years inside The Register Bitcoin  Hacker Convicted In Romney Tax Return Fraud, Faces 25 Years Of Imprisonment EconoTimes ............................................... [ Read Full Story ] Tags :    Bitcoin, Crime, Cryptocurrency, Money, News, Fraud, Tax This Post Was Published On My Steemit Blog .  Earned : $00.03 SBD Converted to USD @0.9578$ Rate = $0.0287 USD .  First Time heard about Steemit ? Click Here To Know...

Steemit bug found in “TAG”

Steemit bug found in “TAG” image credit I just found a serious bug on steemit TAG. Today I published a news cum TIL post with 5 tags - wilt news newslink til steemitnews https://steemit.com/wilt/@royalmacro/what-i-learnt-today-darkweb-raises-funds-for-assassinating-both-donald-trump-and-mike-pence But, my post is visible in only one section in “wilt”. Other tags are not working anymore. I searched frequently in the following sections which I tagged – https://steemit.com/created/news https://steemit.com/created/newslink https://steemit.com/created/til https://steemit.com/created/steemitnews My post is invisible in the above sections. It’s only visible in - https://steemit.com/created/wilt Update : I just found a solution. I used 4 tags instead of 5. Now, my post is visible to all 4 sections. Tags : Blockchain, Bugs, Cryptocurrency, Steemit,  This Post Was Published On My Steemit Blog . Please, navigate to steemit and cast a free upvote to hel

One Black & White Photograph Daily for 30 days - Day #25

green yard - behind of my village home Camera : Xiaomi Model : 2014818 Location : Bongaon, West Bengal, India Snap Taken : 14 March 2016 Tags : Black & White Photography, Flowers & Plants photography, Landscape photography, Nature, Photography,  This Post Was Published On My Steemit Blog . Please, navigate to steemit and cast a free upvote to help me if you like my post. First Time heard about Steemit ? Click Here To Know Everything About Steemit  $3 Donation [Fixed] Donate $Any Amount

Earn Bitcoin by playing free fun games (non gambling)

To earn bitcoin by playing free games is very exciting. Here I give a list of all games I searched on Google. 1.  SatoshiQuiz  :SatoshiQuiz is a quiz website where users win bitcoin for correctly answering questions from various categories.. You can earn 100 to 1000 satoshi per winning quiz.  Try the new android app and get 5000 satoshis.  Download   Min withdrawal amount is 11000 satoshis & Processed once every week on Sunday.1000 satoshi fees deducted per withdrawal to prevent abuse. Premium account fees is 100000 satoshis per month.   2.  Bitcoin Riddles  :Solve riddles presented in YouTube videos and if you are the first to get the correct answer you win a prize in BTC! Minimum withdrawal is 100 bits. After signup you will get free 10 bits.  3.  Sparkprofit  : Spark Profit aims to be the world's most rewarding app! It teaches you how to profitably trade on the financial markets, and pays you cash rewards when you do well. Platform : Windows, Mac, Android &

Visiting deep inside the Sundarbans & spent days with Bawali - Episode #16

In the last October-November I visited Sundarbans, the world's one of the largest mangrove forest. It was also declared as world heritage site by UNESCO in 1997. In this forest a numerous wildlife species exist - birds, reptiles, fishes, amphibians and also the king of the forest "Royal Bengal Tiger". The ganges dolphins & crocodiles are also living in the canals of Sundarbans. Chital is a one kind of spotted deer living in this forest. The rural life in the area of this coastal forest is also very attractive. They basically maintain their lives by collecting honey, woods and fishes. In the native language they are called as Bawali. I spent some days with them. Here I share some of my tour photographs of Sundarbans and Bawali -- Kewra, one kind of mangrove tree grows in Sunderbans Main Mangrove trees in Sundarbans (from left)- Gewa (Excoecaria agallocha L.) , Kewra (Pandanus odoratissimus), Sundori (Heritiera littoralis) and Golpata (Nypa fruticans) Camera :

One day at the Zoo -Episode #26

Two weeks ago I visited "Alipore Zoological Gardens" in Kolkata which is mostly known as "Alipore Zoo". It was founded in the year of 1875 in British India. And it was established by Edward VII, and then The prince of wales. This zoo is the biggest attraction of the tourists in the "City of Joy". However, the Alipore Zoo has some notable historical value as it's the most old zoological garden in India. The zoo was also famous for the home of "Aldabra giant tortoise". But, in 2006 the tortoise died at the age of almost 250. There are now over 1266 animals of 108 species are living in the Alipore Zoo. And annual visitors of the zoo is about 3 millions. **I captured some photos, but, due to the obstacle of the fence I couldn't take them very clearly. * Freshwater crocodile Nilgai Zebra To be continued ... Episode #1 ,  Episode #2 ,  Episode #3 ,  Episode#4 ,  Episode#5 ,  Episode#6 ,  Episode#7 ,  Episode#8 ,  Epis

Stuffed Animals Shots from Chennai Museum

Last month I visited Chennai Government Museum. There I gained a lot of experience. I’ll make a travel post soon about my museum tour. However today I’m going to share two photographs of the museum, These two photographs are stuffed body of African lion & hippo, Bengal tiger, Indian sambar deer, Indian Mouse Deer (very rare) and the masterpiece Indian leopard & boar. So, enjoy it – Stuffed body of  African Lion Stuffed body of  Hippopotamus Stuffed body of  Royal Bengal Tiger Stuffed body of  Indian Sambar Deer & Mouse Deer (very rare creature) Stuffed body of  Indian Leopard & Indian Wild Boar Tags : Animals, Museum, Photography,  This Post Was Published On My Steemit Blog . Please, navigate to steemit and cast a free upvote to help me if you like my post. First Time heard about Steemit ? Click Here To Know Everything About Steemit  $3 Donation [Fixed] Donate $Any Amount

My original abstract art is here "terrorism and violence on the earth"

Today here I share one of my abstract art "terrorism and violence on the earth" Hope you may enjoy :D Tags : Abstract, Art, Drawing, Painting,  This Post Was Published On My Steemit Blog . Please, navigate to steemit and cast a free upvote to help me if you like my post. First Time heard about Steemit ? Click Here To Know Everything About Steemit  $3 Donation [Fixed] Donate $Any Amount

two photographs of "white china rose"

I took these photographs of  white china rose  from my balcony where I have a miniature flower garden. The scientific name of this flower is  Hibiscus rosa-sinensis . In the autumn season the white china rose trees are showing up their new leaves with young buds. This young buds will become flowers later. This flower has a marvelous look … a closeup shot . Tags : Flowers, Flowers & Plants photography, Nature, Photography, Macro Photography,  This Post Was Published On My Steemit Blog . Please, navigate to steemit and cast a free upvote to help me if you like my post. First Time heard about Steemit ? Click Here To Know Everything About Steemit  $3 Donation [Fixed] Donate $Any Amount
Back to Top