Skip to main content

Security researchers just traced Uiwix, a ransomware which is very similar to WannaCry but more dangerous than it

Now-a-days, the word "WannaCry" is very familiar to all of us. This ransomware exploited the vulnerabilities in  Microsoft’s Windows operating system (except Windows 10) to hack more than 75,000 computers in more than 150 countries & counting last Friday. Microsoft has recently released the security patches for all versions of Winows including XP to prevent this ransomware. Also numerous security researchers are continuously working to develop a permanent solution. Although a temporary solution called "WannaCry KillSwitch" is already discovered by a british security researcher Marcus Hutchins. He slows down the spreads of WannaCry by registering a domain name "wannacry".
Heimdal Security, a cyber security software company has recently reported that another ransomware called Uiwix, has emerged, which is exploiting the vulnerabilities found in Windows SMB v1 and SMB v2. Wannacry is doing in the same method to spread.

Is Uiwix similar to WannaCry?

A group of security researchers has claimed that they have traced WannaCry in Uiwix. Yet, this does not mean that Uiwix & WannaCry are identical. Unfortunately, unlike WannaCry, Uiwix cannot be stopped from spreading just by registering a domain, the Killswitch of Wannacry. Hence, it's called Uiwix is far far more dangerous than WannaCry. Although even some temporary solutions for Wannacry exists, but, still there is no solution discovered for Uiwix.

How does Uiwix work ?

 Uiwix works just like WannaCry. At first it attacks victim's PC, and encrypts important files on it. Then it demands a ransom $200 to get decrypt all the files seized by it. The ransom payment of $218 is demanded in bitcoins with the current exchange rate.

It is very astonishing to have two similar ransomware exploiting the same vulnerability to show up twice so rapidly. So, that it is said that vulnerabilities in Windows software have not been 100% fixed yet.

How to keep safe yourself from Uiwix ?

 Since Uiwix cannot be stopped like  WannaCry, the only way to contain the virus is to fix the vulnerability  that appears to be present in Windows. According to Andra Zaharia, Heimdal Security (a cyber security software company)  :
Attackers are easily able to exploit  these vulnerabilities in a network if it’s enabled because, even when  the system uses SMB v2 or v3, if the attacker can downgrade the  communication to SMB v1, he can exploit the system. This is where the  man-in-the-middle attack of a Windows SMB v1-enabled system can become  an issue, even if it’s not being used "
 However, Uiwix cannot be stopped as of now, the  only way to protect yourself is to take some preventive precautions to  avoid any trouble in the future.  Following these rules strictly may decrease the chances of hijacking by Uiwix -
1. Do not connect your pc, laptop, tablet etc. to a public WiFi hot spot.
2. Do not open any attachments in email from unknown or, suspicious senders.
3. Do not click any links in emails from unknown senders.
4. Do not download any files attached in email from unknown or, suspicious senders.
5. Try to avoid visiting malicious sites.
6. Do not download or, update software/apps from a third-party website, or store.
7. Do not use any out-dated or, pirated software.
8. Install WOT (web of trust) extension, and visit only reputed websites shows by WOT.
9. Keep your antivirus & windows up to date always.
10. You may use Kaspersky anti-ransomware tool, or, Bitdefender anti-ransomware tool for extra security.
11. Disable SMB v1, SMB v2, SMB v3 on windows via registry editing. How to disable it ? Read below.
12. Periodically set restore point. After attack you may able to use System Restore to get back to a known-clean state.
13. Most Important : Always keep offline backup your data, or, do cloud backups. 

How to disable SMB v1, SMB v2, SMB v3 on windows via registry editing ? 

To enable or disable SMBv1 on the SMB server, configure the following registry key:
Registry subkey: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\LanmanServer\Parameters
Registry entry: SMB1
REG_DWORD: 0 = Disabled
REG_DWORD: 1 = Enabled
Default: 1 = Enabled
To enable or disable SMBv2 on the SMB server, configure the following registry key:
Registry subkey:HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\LanmanServer\ParametersRegistry entry: SMB2
REG_DWORD: 0 = Disabled
REG_DWORD: 1 = Enabled
Default: 1 = Enabled

references :


Tags : Security, Hacks, Ransomware, Malware, Windows, Microsoft, Operating System,

This Post Was Published On My Steemit Blog. Please, navigate to steemit and cast a free upvote to help me if you like my post. First Time heard about Steemit ? Click Here To Know Everything About Steemit 







Comments

Popular Posts (Last 7 Days)

What I Learnt Today : 10 Unknown Amazing Facts About Animals - Part CXXXIII

  image credit (1) Japanese Macaques make snowballs for fun. (2) The chevrotain is an animal that looks like a tiny deer with fangs. (3) Turritopsis nutricula Immortal jellyfish is the only species known to live forever. (4) One million stray dogs and 500,000 stray cats live in New York City metropolitan area. Turritopsis nutricula Immortal jellyfish   image credit (5) Nine-banded armadillos always give birth to identical quadruplets. (6) The flying frog uses flaps of skin between its toes to glide. (7) It takes a sloth two weeks to digest its food.   Nine-banded armadillo   flying frogs   image credit (8) A narwhal tusk is actually an exaggerated front left tooth, and unlike most teeth, it's soft and sensitive on the outside with a tough interior. (9) Humpback whales create the loudest sound of any living creature. (10) The slowest mammal on earth is the tree sloth. It only moves at a speed of 6 feet (1.83 meters) per minute. sloth narwhal tusk   i

One Black & White Photograph Daily for 30 days - Day #25

green yard - behind of my village home Camera : Xiaomi Model : 2014818 Location : Bongaon, West Bengal, India Snap Taken : 14 March 2016 Tags : Black & White Photography, Flowers & Plants photography, Landscape photography, Nature, Photography,  This Post Was Published On My Steemit Blog . Please, navigate to steemit and cast a free upvote to help me if you like my post. First Time heard about Steemit ? Click Here To Know Everything About Steemit  $3 Donation [Fixed] Donate $Any Amount

Before A Heavy Rainfall

I clicked at the exact time ; after about 5 minutes rain started Location : Dakshineswar, Kolkata Snap taken : 02 August 2016 Camera : Xiaomi ; model - 2014818 Tags : Photography, Nature, Landscape photography, Flowers & Plants photography, Sky,  This Post Was Published On My Steemit Blog . Please, navigate to steemit and cast a free upvote to help me if you like my post. First Time heard about Steemit ? Click Here To Know Everything About Steemit  $3 Donation [Fixed] Donate $Any Amount

Steemit bug found in “TAG”

Steemit bug found in “TAG” image credit I just found a serious bug on steemit TAG. Today I published a news cum TIL post with 5 tags - wilt news newslink til steemitnews https://steemit.com/wilt/@royalmacro/what-i-learnt-today-darkweb-raises-funds-for-assassinating-both-donald-trump-and-mike-pence But, my post is visible in only one section in “wilt”. Other tags are not working anymore. I searched frequently in the following sections which I tagged – https://steemit.com/created/news https://steemit.com/created/newslink https://steemit.com/created/til https://steemit.com/created/steemitnews My post is invisible in the above sections. It’s only visible in - https://steemit.com/created/wilt Update : I just found a solution. I used 4 tags instead of 5. Now, my post is visible to all 4 sections. Tags : Blockchain, Bugs, Cryptocurrency, Steemit,  This Post Was Published On My Steemit Blog . Please, navigate to steemit and cast a free upvote to hel

destitution - [An Original Abstract Art] - #09

Here I share my latest work on Abstract Art “destitution” – [ Series #09 ] destitution Tags : Abstract, Art, Drawing, Painting,  This Post Was Published On My Steemit Blog . Please, navigate to steemit and cast a free upvote to help me if you like my post. First Time heard about Steemit ? Click Here To Know Everything About Steemit  $3 Donation [Fixed] Donate $Any Amount

macro photography of a strawberry

Tags :   Food, Fruits, Macro Photography, Photography, Fruits photography, Food photography This Post Was Published On My Steemit Blog .  Earned : $00.00 SBD Converted to USD @0.8943$ Rate = $00.00 USD .  First Time heard about Steemit ? Click Here To Know...

Road To My Village Home

Tags : India, Landscape photography, Nature, Photography, Travel, Flowers & Plants photography,  This Post Was Published On My Steemit Blog . Please, navigate to steemit and cast a free upvote to help me if you like my post. First Time heard about Steemit ? Click Here To Know Everything About Steemit  $3 Donation [Fixed] Donate $Any Amount

Samsung SDS Invests in Blockchain Startup

An IT affiliate of South Korean electronics and manufacturing giant  Samsung announced today that it has invested in a blockchain startup. Samsung SDS  said  that it had invested in  Blocko ,  a firm also based in South Korea, as well as a cybersecurity startup  called Darktrace. The investment amount was not disclosed. ......................................  [read full story] Tags :   Blockchain, Business, News, Technology, Investments, Samsung This Post Was Published On My Steemit Blog .  Earned : $1.08 SBD Converted to USD @0.9578$ Rate = $1.0344 USD .  First Time heard about Steemit ? Click Here To Know...

Announcement : The Autoupvote from Curation Trail is now postponed

Hello all followers of "royalmacro" trail, Due to recent Hard Fork, all auto upvotes are now postponed until I reset my voting power percentage. Please, be patient until it'll be again enabled :) Current Voting Power : 71% Possible decrease may apply :) Tags : Steemit, Cryptocurrency, Social Networks,  This Post Was Published On My Steemit Blog . Please, navigate to steemit and cast a free upvote to help me if you like my post. First Time heard about Steemit ? Click Here To Know Everything About Steemit 

Black Panther - My 3D modeling with poser [Download free this 3D model Here] Series #02

Today here I share one of my 3D model "Black Panther". I created this 3D object with the help of Poser Pro 2014. You may also download free this 3D model in different formats - 3D studio, lightwave, wavefront object etc. If this 3D model will be popular here then I'll make another posts for sharing my 3D models free. You may use this model in 3D animation, Game etc. absolutely free. Here is also a preview video of this 3D model Now Download this 3D model :  Download Free  I hope you enjoy this :) Tags : 3D Models, Art, Graphics, Poser,  This Post Was Published On My Steemit Blog . Please, navigate to steemit and cast a free upvote to help me if you like my post. First Time heard about Steemit ? Click Here To Know Everything About Steemit  $3 Donation [Fixed] Donate $Any Amount
Back to Top