1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Beware ~WannaCry Ransomware and how to protect yourself from it!

Discussion in 'BlackHat Lounge' started by blackpayman733, May 15, 2017.

  1. blackpayman733

    blackpayman733 BANNED BANNED

    Joined:
    Aug 9, 2009
    Messages:
    5,194
    Likes Received:
    1,232
    Gender:
    Male

    WannaCry Ransomware and how to protect yourself from it


    1.png


    One of the most heinous cybercrime happening today is through a malware targeting Microsoft windows. Hackers use the WannaCry Ransomware to stop all the operations in your computer systems until have paid a ransom-hence the name ransomware. Tablets and smart phones are targeted in this new wave of cybercrime which has paralysed operations in various organisations worldwide.

    How does it happen?

    The first time you are under attack, you will receive an alert that your files have been encrypted. The malware goes ahead to notify you (of course not true) that you will receive your files back upon payment of a specified amount. The payment is demanded in Bit coin.

    mainly targeting browser cookies with paypal/bank details saved accounts, be careful to remove them soon as possible!

    History

    Ransomware originated in the United States some 12 years ago before spreading to the rest of the world. Usually, the hackers will send you an email with an attachment. An online user will open their mail and click on the attachment innocently and instantly, the hard drive will be encrypted. At such point, it will no longer possible for you to control or access anything from the computer. The files, documents, photos and such will be locked to the point that only the hackers will hold the key to unlocking them. So what is the trick? They want you to pay a ransom so that you can regain use of your computer once again.

    The amount of the ransom will usually vary from person or corporation to corporation. For instance, in UK alone, the hackers were demanding £500 3 years ago but the truth of the matter is that you are not guaranteed that your files will be released back to you once you pay the ransom.

    The WannaCry Ransomware is a recent phenomenal, having been discovered only 3 days ago (12th May, 2017). By the time it was discovered, 10,000 organizations and some 200,000 personalities had been impacted worldwide. The National Health Service (NHS) was the first to be attacked. The Ransomware has more than one variation according to researchers and the main target is the Windows XP.

    18447209_1917163915185795_8530409728128176089_n.jpg

    How to protect yourself from the WannaCry Ransomware

    1. Backing of your entire files is the most important thing to do since you will have all your files in tact in the event of an attack.

    2If you notice a mail attachment that is suspicious, the rule of the thumb is that you should not open it: just delete is as quickly as possible.

    3. People are being advised to install an anti-virus. The work of the anti-virus would be doing scan the files before opening them. If there are suspicious programs being downloaded in your system, block them immediately.

    4. Do not pay the ransom if you become a victim of the WannaCry Ransomware attack. Paying the ransom will encourage the cyber crime and even then, you are not assured of getting back your data.

    5. The Ransomware decryption tool would be a safe bet as this would help bypass the Winery Ransomware.

    6. Use the latest software patches by Microsoft to protect your Windows XP.
     
    • Thanks Thanks x 4
  2. Sherbert Hoover

    Sherbert Hoover Jr. Executive VIP Jr. VIP

    Joined:
    Dec 26, 2010
    Messages:
    999
    Likes Received:
    8,064
    Occupation:
    ORM - Branding - Content
    Location:
    United States
    Home Page:
    • Thanks Thanks x 25
  3. sturose

    sturose Jr. VIP Jr. VIP

    Joined:
    Nov 6, 2013
    Messages:
    1,576
    Likes Received:
    1,936
    Gender:
    Male
    Occupation:
    Clicking my own adverts
    Location:
    Stuck in a rut
    • Thanks Thanks x 5
  4. JinxerCraft

    JinxerCraft Regular Member

    Joined:
    Mar 18, 2017
    Messages:
    216
    Likes Received:
    32
    Gender:
    Male
    Nice Thread,Mate
    Many Useful resources you have used in this thread.
    Keep it up :)
     
    • Thanks Thanks x 1
  5. proxygo

    proxygo Jr. VIP Jr. VIP

    Joined:
    Nov 2, 2008
    Messages:
    15,963
    Likes Received:
    9,636
    Occupation:
    PROVIDING PROXIES FOR GSA SCRAPING.
    Location:
    BHW
    Home Page:
    been telling all my family for last few days if u get any emails with attachments BIN THEM.
    if its from some one you no CALL THEM, but still bin any attachment emails to be safe.
     
    • Thanks Thanks x 1
  6. dbanjo

    dbanjo BANNED BANNED

    Joined:
    Dec 4, 2016
    Messages:
    120
    Likes Received:
    48
    Thanks for posting this, I'm a keen global news watcher but seems even they didn't pick it up. Without you I dont know what I would have done to save my computer network.
     
  7. proxygo

    proxygo Jr. VIP Jr. VIP

    Joined:
    Nov 2, 2008
    Messages:
    15,963
    Likes Received:
    9,636
    Occupation:
    PROVIDING PROXIES FOR GSA SCRAPING.
    Location:
    BHW
    Home Page:
    you can avoid this if your careful problem is when a user is infected the software emails
    everyone on your email contacts list spreading it further and further
    which is why even if i got an email with an attachment from a close friend or relative
    today ide bin it, then call them. not worth the risk
     
  8. elavmunretea

    elavmunretea BANNED BANNED

    Joined:
    May 14, 2016
    Messages:
    1,579
    Likes Received:
    2,092
    eligal hacked malware infested infected machines controlled by a hacker
    isnt something ide call handy, to each there own, u wont be so smart 1
    day when its your system compramised, shows your level of integrity
    oh i forgot, you post shows u have none

    i would refrain from re-setting passwords the hacker made it clear that
    this a direct quote from the hacker from the lounge - be careful

    "Dear member from blackhatworld.com
    i am hack it and hava backup all when i sent mass mail and i can decode all password of you
    , today i search and see the website blackhatworld.com
    Today i have sent email to all customer and share free acount vip from"
     
  9. JustUs

    JustUs Power Member

    Joined:
    May 6, 2012
    Messages:
    626
    Likes Received:
    582
    Wanna Cry. I was infected - in a dream.

    People are making a lot of hay out of this. There is no reason to, excepting that you failed to install MS17-010 when it came out last month, unless you're running W10 which is not affected. If you cannot afford an updated OS, there are many valid copies available and the legit pirate means to activate them.

    Perhaps your PC is just old enough that you cannot install anything more current than XP, though with the proper level of skill that is not a valid reason.

    I bill each month via email. In each email I include and attachment. The body of the email describes what is attached and summarizes the amount owed. Follow the advise given of binning the email because it has an attachment, then you better telephone me to inform me why you are not reading the billing statement and paying me. I give a 30 day grace for payment and then stop providing service. So in the frame that I conduct business be careful of whose advise you follow.
     
    • Thanks Thanks x 2
  10. satyawrat

    satyawrat Jr. VIP Jr. VIP

    Joined:
    Jul 8, 2009
    Messages:
    1,112
    Likes Received:
    1,387
    Occupation:
    Hustler
    Location:
    Gurgaon
    Home Page:
    i run Linux on my critical systems and have backups.


    the windows vps for automation tools are not that important data wise.
    so I dont give a shit about it. I can always reset the whole darn tHung if infected.

    Linux is the future, methinks.
     
    • Thanks Thanks x 3
  11. JustUs

    JustUs Power Member

    Joined:
    May 6, 2012
    Messages:
    626
    Likes Received:
    582
    While MS is moving to Linux compatibility, and they are mostly there, I would not count on Linux being the OS of the future.
     
    • Thanks Thanks x 1
  12. cave master

    cave master Newbie

    Joined:
    Oct 1, 2015
    Messages:
    18
    Likes Received:
    2
    Gender:
    Male
    nice thread man, really helpful
     
    • Thanks Thanks x 1
  13. blackpayman733

    blackpayman733 BANNED BANNED

    Joined:
    Aug 9, 2009
    Messages:
    5,194
    Likes Received:
    1,232
    Gender:
    Male
    look man i was giving detail about WannaCry Ransomware , not about other problem with one mistake how can you judge other's life ? like you guys never learn never help people, always trying to get down and talk gossip instead of good things,.
     
  14. blackpayman733

    blackpayman733 BANNED BANNED

    Joined:
    Aug 9, 2009
    Messages:
    5,194
    Likes Received:
    1,232
    Gender:
    Male
    what ever be careful in here most of then got effected !
     
    • Thanks Thanks x 1
  15. Nut-Nights

    Nut-Nights Jr. VIP Jr. VIP

    Joined:
    Jun 20, 2013
    Messages:
    5,052
    Likes Received:
    3,216
    Location:
    Hell
    Home Page:
  16. lilmasta

    lilmasta Elite Member

    Joined:
    May 21, 2009
    Messages:
    2,468
    Likes Received:
    1,137
    Gender:
    Male
    Location:
    192.168.0.1
    • Thanks Thanks x 2
  17. cnick79

    cnick79 Jr. VIP Jr. VIP

    Joined:
    Jun 10, 2010
    Messages:
    686
    Likes Received:
    369
    Location:
    Google's SandBox
    I heard this virus was stopped when someone registered the domain the malware would try connecting to.

    I'm now looking for the proverbial "what's my domain worth?" thread with someone here trying to sell it.
     
  18. kitrobbyd007

    kitrobbyd007 Newbie

    Joined:
    Mar 30, 2017
    Messages:
    15
    Likes Received:
    1
    Gender:
    Male
    It really scares me because all my important data is on my pc
     
  19. MisterF

    MisterF Jr. VIP Jr. VIP

    Joined:
    Nov 29, 2009
    Messages:
    6,311
    Likes Received:
    4,824
    Occupation:
    Conference Organiser, Business Advisor.,
    Location:
    JADIP
    Home Page:
    And so your next move is ?
     
    • Thanks Thanks x 1
  20. blackpayman733

    blackpayman733 BANNED BANNED

    Joined:
    Aug 9, 2009
    Messages:
    5,194
    Likes Received:
    1,232
    Gender:
    Male
    better to disconnected the internet then, you feel like lives in jungle :D
     
    • Thanks Thanks x 1