Computers worldwide have been attacked by WannaCry ransomware, malicious software that encrypts a victim's hard drive and demands a ransom be paid in order to decrypt the contents. Although the initial wave of attacks was stopped, recent reports indicate that a new round of attacks is imminent. Initial infections occurred through phishing, but are now promulgating as a worm through networks worldwide, preying on vulnerabilities in unpatched computers. NO USER INTERACTION required to be infected.
As a matter of standard operating practice, WPI ITS takes these actions to minimize impact for the WPI Community: Timely distribution of current patches to ITS-managed computers. (Unpatched Microsoft systems are vulnerable to the WannaCry ransomware variant.) Timely distribution of updated virus definitions (DATs). Ongoing monitoring of current threats and execution of appropriate response procedures.
Cybersecurity and protecting WPI is a responsibility we all must share. Individuals are the best first line of defense against cyber threats. Being a good digital citizen means remaining aware of current threats and how to protect against them. Additional information about WannaCry is available to view in Actions. Individuals should take recommended action below to prepare computers that are not managed by WPI ITS for ransomware attacks.