WannaCry RansomWorm: The Next Expected Waves


Subsequent to our advisory on the cache of tools leaked from the NSA by the group ShadowBrokers, a cybercriminal group has incorporated one of the exploits, EternalBlue, into a worm-propagated ransomware, hence termed as RansomWorm which has been spreading and infecting at very high pace to over 100 countries as of today. Named WannaCry or WCry, over 45,000 attacks have been logged in the past few days, and there may currently be close to 38,000 potentially vulnerable, public, internet-facing systems in the Arab World and High-Risk Asian countries, with c. 700 of those situated in the GCC. This figure increases significantly if non-internet facing systems are taken into consideration.

Share this post

back to top