Security researchers just traced Uiwix, a ransomware which is very similar to WannaCry but more dangerous than it

Now-a-days, the word "WannaCry" is very familiar to all of us. This ransomware exploited the vulnerabilities in Microsoft’s Windows operating system (except Windows 10) to hack more than 75,000 computers in more than 150 countries & counting last Friday. Microsoft has recently released the security patches for all versions of Winows including XP to prevent this ransomware. Also numerous security researchers are continuously working to develop a permanent solution. Although a temporary solution called "WannaCry KillSwitch" is already discovered by a british security researcher Marcus Hutchins. He slows down the spreads of WannaCry by registering a domain name "wannacry".

Heimdal Security, a cyber security software company has recently reported that another ransomware called Uiwix, has emerged, which is exploiting the vulnerabilities found in Windows SMB v1 and SMB v2. Wannacry is doing in the same method to spread.

Is Uiwix similar to WannaCry?

A group of security researchers has claimed that they have traced WannaCry in Uiwix. Yet, this does not mean that Uiwix & WannaCry are identical. Unfortunately, unlike WannaCry, Uiwix cannot be stopped from spreading just by registering a domain, the Killswitch of Wannacry. Hence, it's called Uiwix is far far more dangerous than WannaCry. Although even some temporary solutions for Wannacry exists, but, still there is no solution discovered for Uiwix.

How does Uiwix work ?

Uiwix works just like WannaCry. At first it attacks victim's PC, and encrypts important files on it. Then it demands a ransom $200 to get decrypt all the files seized by it. The ransom payment of $218 is demanded in bitcoins with the current exchange rate.

image credit

It is very astonishing to have two similar ransomware exploiting the same vulnerability to show up twice so rapidly. So, that it is said that vulnerabilities in Windows software have not been 100% fixed yet.

How to keep safe yourself from Uiwix ?

Since Uiwix cannot be stopped like WannaCry, the only way to contain the virus is to fix the vulnerability that appears to be present in Windows. According to Andra Zaharia, Heimdal Security (a cyber security software company) :

" Attackers are easily able to exploit these vulnerabilities in a network if it’s enabled because, even when the system uses SMB v2 or v3, if the attacker can downgrade the communication to SMB v1, he can exploit the system. This is where the man-in-the-middle attack of a Windows SMB v1-enabled system can become an issue, even if it’s not being used "

However, Uiwix cannot be stopped as of now, the only way to protect yourself is to take some preventive precautions to avoid any trouble in the future. Following these rules strictly may decrease the chances of hijacking by Uiwix -

1. Do not connect your pc, laptop, tablet etc. to a public WiFi hot spot.

2. Do not open any attachments in email from unknown or, suspicious senders.

3. Do not click any links in emails from unknown senders.

4. Do not download any files attached in email from unknown or, suspicious senders.

5. Try to avoid visiting malicious sites.

6. Do not download or, update software/apps from a third-party website, or store.

7. Do not use any out-dated or, pirated software.

8. Install WOT (web of trust) extension, and visit only reputed websites shows by WOT.

9. Keep your antivirus & windows up to date always.

10. You may use Kaspersky anti-ransomware tool, or, Bitdefender anti-ransomware tool for extra security.

11. Disable SMB v1, SMB v2, SMB v3 on windows via registry editing. How to disable it ? Read below.

12. Periodically set restore point. After attack you may able to use System Restore to get back to a known-clean state.

13. Most Important : Always keep offline backup your data, or, do cloud backups.

image credit

How to disable SMB v1, SMB v2, SMB v3 on windows via registry editing ?

To enable or disable SMBv1 on the SMB server, configure the following registry key:

Registry subkey: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\LanmanServer\Parameters

Registry entry: SMB1
REG_DWORD: 0 = Disabled
REG_DWORD: 1 = Enabled
Default: 1 = Enabled

To enable or disable SMBv2 on the SMB server, configure the following registry key:

Registry subkey:HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\LanmanServer\ParametersRegistry entry: SMB2
REG_DWORD: 0 = Disabled
REG_DWORD: 1 = Enabled
Default: 1 = Enabled

image credit

references :

https://heimdalsecurity.com/blog/security-alert-uiwix-ransomware/

https://malwaretips.com/threads/security-alert-uiwix-ransomware-is-here-and-it-can-be-worse-than-wannacry.71464/

https://support.microsoft.com/en-in/help/2696547/how-to-enable-and-disable-smbv1,-smbv2,-and-smbv3-in-windows-vista,-windows-server-2008,-windows-7,-windows-server-2008-r2,-windows-8,-and-windows-server-2012

https://www.hackread.com/uiwix-ransomware-like-wannacry-ransomware/

Tags : Security, Hacks, Ransomware, Malware, Windows, Microsoft, Operating System,

This Post Was Published On My Steemit Blog. Please, navigate to steemit and cast a free upvote to help me if you like my post. First Time heard about Steemit ? Click Here To Know Everything About Steemit

Comments

South Africa is participating in largest and most advanced HIV vaccine trial program; makes its own history

image credit A big step for mankind - South Africa is participating in HIV (Human Immunodeficiency Virus) vaccine program. This vaccine could prevent HIV infection. The drug trial began last month. This program is called HVTN 702 . About 5400 adults are participating in this HIV vaccine trial. Scientists say that this HIV vaccine program is the largest and most advanced trial program in South Africa. “If deployed alongside our current armoury of proven HIV prevention tools, a safe and effective vaccine could be the final nail in the coffin for HIV,” said Anthony Fauci, director of the National Institute of Allergy and Infectious Diseases (NIAID), which falls under the American National Institutes of Health (NIH), a co-funder of the trial. “Even a moderately effective vaccine would significantly decrease the burden of HIV disease over time in countries and populations with high rates of HIV infection, such as South Africa.” image credit Dr Glenda Gray is

A short article on "flying dinosaurs"

image credit We are all familiar to Pterodactyl, the flying dinosaur. But, actually there existed so many flying dinosaurs. The common name of all this “flying dinosaurs” is Pterosaurs. There are about 130 genus of Pterosaurs existed in the jurassic period. Here I listed some of them — 1. Pterodactyl The Pterodactyls had a couple of very wide wings up to 40 feet long. But, these wings are not similar to modern bird’s wings. There were no feathers , their wings were made of a leathery substance. They lived near the sea in the cave & trees. They ate sea fish, large insects & other small dinosaurs. We found their fossils in Europe, North America, Australia, and Africa. Pterodactyl image credit Pterodactyl Fossil image credit 2. Petinosaurus Petinosaurus wings were formed by membranes of skin and other soft tissues. And also there were no feathers on their wings. These types of flying dinosaurs are small in size than Pterodactyl. Food habit is the same as Pt

The Real Face Of India - Episode 133

The Real Face Of India - Episode#133 I believe that India is the most beautiful country in the world. In this series I show the real face of beautiful India. Half Dozen Photos of Natural Beauties Snap taken : 21 Mar 2018 Camera : SAMSUNG, Model : SM-A310N0 Other Episodes : Episode#01 , Episode#02 , Episode#03 , Episode#04 , Episode#05 , Episode#06 , Episode#07 , Episode#08 , Episode#09 , Episode#10 , Episode#11 , Episode#12 , Episode#13 , Episode#14 , Episode#15 , Episode#16 , Episode#17 , Episode#18 , Episode#19 , Episode#20 , Episode#21 , Episode#22 , Episode#23 , Episode#24 , Episode#25 , Episode#26 , Episode#27 , Episode#28 , Episode#29 , Episode#30 , Episode#31 , Episode#32 , Episode#33 , Episode#34 , Episode#35 , Episode#36 , Episode#37 , Episode#38 , Episode#39 , Episode#40 , Episode#41 , Episode#42 , Episode#43 , Episode#44 , Episode#45 , Episode#46 , Episode#47 , Episode#48 , Episode#49 , Episode#50 ,

Before A Heavy Rainfall

I clicked at the exact time ; after about 5 minutes rain started Location : Dakshineswar, Kolkata Snap taken : 02 August 2016 Camera : Xiaomi ; model - 2014818 Tags : Photography, Nature, Landscape photography, Flowers & Plants photography, Sky, This Post Was Published On My Steemit Blog . Please, navigate to steemit and cast a free upvote to help me if you like my post. First Time heard about Steemit ? Click Here To Know Everything About Steemit $3 Donation [Fixed] Donate $Any Amount

One Black & White Photograph Daily for 30 days - Day #25

green yard - behind of my village home Camera : Xiaomi Model : 2014818 Location : Bongaon, West Bengal, India Snap Taken : 14 March 2016 Tags : Black & White Photography, Flowers & Plants photography, Landscape photography, Nature, Photography, This Post Was Published On My Steemit Blog . Please, navigate to steemit and cast a free upvote to help me if you like my post. First Time heard about Steemit ? Click Here To Know Everything About Steemit $3 Donation [Fixed] Donate $Any Amount

What I Learnt Today : 10 Unknown Amazing Facts About Animals - Part CXXXIII

image credit (1) Japanese Macaques make snowballs for fun. (2) The chevrotain is an animal that looks like a tiny deer with fangs. (3) Turritopsis nutricula Immortal jellyfish is the only species known to live forever. (4) One million stray dogs and 500,000 stray cats live in New York City metropolitan area. Turritopsis nutricula Immortal jellyfish image credit (5) Nine-banded armadillos always give birth to identical quadruplets. (6) The flying frog uses flaps of skin between its toes to glide. (7) It takes a sloth two weeks to digest its food. Nine-banded armadillo flying frogs image credit (8) A narwhal tusk is actually an exaggerated front left tooth, and unlike most teeth, it's soft and sensitive on the outside with a tough interior. (9) Humpback whales create the loudest sound of any living creature. (10) The slowest mammal on earth is the tree sloth. It only moves at a speed of 6 feet (1.83 meters) per minute. sloth narwhal tusk i

great barrier reef

Tags : Landscape photography, Nature, Ocean, Photography, Great barrier reef, Coral reef This Post Was Published On My Steemit Blog . Earned : $00.04 SBD Converted to USD @1.32$ Rate = $0.0528 USD . First Time heard about Steemit ? Click Here To Know...

What I Learnt Today : 10 Unknown Amazing Facts About Animals - Part IX

image credit (1) There is an average of 50,000 spiders per acre in green areas. (2) Male dogs will raise their legs while urinating to aim higher on a tree or lamppost because they want to leave a message that they are tall and intimidating. Some wild dogs in Africa try to run up tree trunks while they are urinating to appear to be very large. (3) Dumbledore isn’t only the Headmaster of Hogwarts; in fact a dumbledore is an old English term for a type of bee. (4) Goats and octopus’ pupils of their eyes are rectangular. image credit (5) Frogs cannot swallow without blinking. (6) Ailurophobia is the fear of cats. (7) Butterflies have their skeletons on the outside of their bodies, this is known as the exoskeleton. image credit (8) Hippos attract mates by urinating and defecating. (9) Crocodiles have brains no larger than a cigar. (10) The Big Five is a group of animals of Africa: cape buffalo, elephant, leopard, lion and rhino. image credit Previous Episodes

Top 10 Bitcoin Price Predictions for 2018 to 2022

image credit Although many Bitcoin price analyzer says "Bitcoin price is truly unpredictable", but, there are always some price specialists who love to make their own price predictions in various ways. Here are top 10 Bitcoin price predictions for 2018 to 2022 : 10. $20,000 By December 2018 :: Predicted by Pantera Capital's 9. $25,000 By December 2018 :: Predicted by Fundstrat Global Advisors 8. $28,000 By April 2018 :: Max Keiser 7. $35,000 – $60,000 By Next Block Reward Halving ( ETA date: 30 May 2020 ) :: Alistair Milne 6. $50,000 By December 2018 :: Anthony Pompliano 5. $75,000 By December 2018 :: John Pfeffer 4. $100,000 By December 2018 :: Kay Van-Petersen 3. $250,000 By 2022 :: Brian Kelly 2. $250,000+ By December 2022 :: Tim Draper 1. $1,000,000 By December 2020 :: John McAfee Source : bitcoinist Tags : Bitcoin, Cryptocurrency, Crypto Markets, Money, Economics, News, This Post Was Published On My Steemit Blog . Ple

beauty beholds in the eye of the beholder #01

I started a new series photography “beauty beholds in the eye of the beholder”. In this series I’ll share photographs of my country face. Every episode has two photographs only. beauty beholds in the eye of the beholder PART #01 . beauty of poverty : Daily income of this two old women is only about 60-70 rupees (less than $1 USD). But, they are 100% honest persons. Tags : India, Life, Photography, Portrait photography, This Post Was Published On My Steemit Blog . Please, navigate to steemit and cast a free upvote to help me if you like my post. First Time heard about Steemit ? Click Here To Know Everything About Steemit $3 Donation [Fixed] Donate $Any Amount

Search This Blog