Security researchers just traced Uiwix, a ransomware which is very similar to WannaCry but more dangerous than it

Now-a-days, the word "WannaCry" is very familiar to all of us. This ransomware exploited the vulnerabilities in Microsoft’s Windows operating system (except Windows 10) to hack more than 75,000 computers in more than 150 countries & counting last Friday. Microsoft has recently released the security patches for all versions of Winows including XP to prevent this ransomware. Also numerous security researchers are continuously working to develop a permanent solution. Although a temporary solution called "WannaCry KillSwitch" is already discovered by a british security researcher Marcus Hutchins. He slows down the spreads of WannaCry by registering a domain name "wannacry".

Heimdal Security, a cyber security software company has recently reported that another ransomware called Uiwix, has emerged, which is exploiting the vulnerabilities found in Windows SMB v1 and SMB v2. Wannacry is doing in the same method to spread.

Is Uiwix similar to WannaCry?

A group of security researchers has claimed that they have traced WannaCry in Uiwix. Yet, this does not mean that Uiwix & WannaCry are identical. Unfortunately, unlike WannaCry, Uiwix cannot be stopped from spreading just by registering a domain, the Killswitch of Wannacry. Hence, it's called Uiwix is far far more dangerous than WannaCry. Although even some temporary solutions for Wannacry exists, but, still there is no solution discovered for Uiwix.

How does Uiwix work ?

Uiwix works just like WannaCry. At first it attacks victim's PC, and encrypts important files on it. Then it demands a ransom $200 to get decrypt all the files seized by it. The ransom payment of $218 is demanded in bitcoins with the current exchange rate.

image credit

It is very astonishing to have two similar ransomware exploiting the same vulnerability to show up twice so rapidly. So, that it is said that vulnerabilities in Windows software have not been 100% fixed yet.

How to keep safe yourself from Uiwix ?

Since Uiwix cannot be stopped like WannaCry, the only way to contain the virus is to fix the vulnerability that appears to be present in Windows. According to Andra Zaharia, Heimdal Security (a cyber security software company) :

" Attackers are easily able to exploit these vulnerabilities in a network if it’s enabled because, even when the system uses SMB v2 or v3, if the attacker can downgrade the communication to SMB v1, he can exploit the system. This is where the man-in-the-middle attack of a Windows SMB v1-enabled system can become an issue, even if it’s not being used "

However, Uiwix cannot be stopped as of now, the only way to protect yourself is to take some preventive precautions to avoid any trouble in the future. Following these rules strictly may decrease the chances of hijacking by Uiwix -

1. Do not connect your pc, laptop, tablet etc. to a public WiFi hot spot.

2. Do not open any attachments in email from unknown or, suspicious senders.

3. Do not click any links in emails from unknown senders.

4. Do not download any files attached in email from unknown or, suspicious senders.

5. Try to avoid visiting malicious sites.

6. Do not download or, update software/apps from a third-party website, or store.

7. Do not use any out-dated or, pirated software.

8. Install WOT (web of trust) extension, and visit only reputed websites shows by WOT.

9. Keep your antivirus & windows up to date always.

10. You may use Kaspersky anti-ransomware tool, or, Bitdefender anti-ransomware tool for extra security.

11. Disable SMB v1, SMB v2, SMB v3 on windows via registry editing. How to disable it ? Read below.

12. Periodically set restore point. After attack you may able to use System Restore to get back to a known-clean state.

13. Most Important : Always keep offline backup your data, or, do cloud backups.

image credit

How to disable SMB v1, SMB v2, SMB v3 on windows via registry editing ?

To enable or disable SMBv1 on the SMB server, configure the following registry key:

Registry subkey: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\LanmanServer\Parameters

Registry entry: SMB1
REG_DWORD: 0 = Disabled
REG_DWORD: 1 = Enabled
Default: 1 = Enabled

To enable or disable SMBv2 on the SMB server, configure the following registry key:

Registry subkey:HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\LanmanServer\ParametersRegistry entry: SMB2
REG_DWORD: 0 = Disabled
REG_DWORD: 1 = Enabled
Default: 1 = Enabled

image credit

references :

https://heimdalsecurity.com/blog/security-alert-uiwix-ransomware/

https://malwaretips.com/threads/security-alert-uiwix-ransomware-is-here-and-it-can-be-worse-than-wannacry.71464/

https://support.microsoft.com/en-in/help/2696547/how-to-enable-and-disable-smbv1,-smbv2,-and-smbv3-in-windows-vista,-windows-server-2008,-windows-7,-windows-server-2008-r2,-windows-8,-and-windows-server-2012

https://www.hackread.com/uiwix-ransomware-like-wannacry-ransomware/

Tags : Security, Hacks, Ransomware, Malware, Windows, Microsoft, Operating System,

This Post Was Published On My Steemit Blog. Please, navigate to steemit and cast a free upvote to help me if you like my post. First Time heard about Steemit ? Click Here To Know Everything About Steemit

Comments

Newslink: Zimbabwe Unleashes New Dollar-Pegged Currency, Should Switch to Bitcoin Instead

Zimbabwe Unleashes New Dollar-Pegged Currency, Should Switch to Bitcoin Instead image credit Zimbabwe has begun printing bond notes, allegedly pegged to the US dollar, as a means to curb inflation, as other countries turn to Bitcoin. In a resurrection of the African country’s currency not seen in seven years, the central bank is attempting to restart a Zimbabwean national currency, while simultaneously preserving its value from inflation. The new bond notes are pegged to the U.S. dollar, allegedly backed by a $200 million bond facility with Afreximbank, as a safeguard against rapidly losing its value to hyperinflation, as was the case with the nation’s last currency. Read full story on cointelegraph website Tags : Bitcoin, Cryptocurrency, Economics, Money, News, Crypto Markets, This Post Was Published On My Steemit Blog . Please, navigate to steemit and cast a free upvote to help me if you like my post. First Time heard about Steemit ? Click He...

A photograph of Victoria Memorial, Kolkata

Today I gonna share a photograph of Victoria Memorial Hall situated in Kolkata. It's a wonderful white marble architecture. It was built between 1906 and 1921 & is dedicated to the memory of Queen Victoria. Camera : Samsung Model : SM-J710F Snap Taken : 19 Nov, 2017 Tags : Photography, Building & Architecture, Travel, India, This Post Was Published On My Steemit Blog . Please, navigate to steemit and cast a free upvote to help me if you like my post. First Time heard about Steemit ? Click Here To Know Everything About Steemit $3 Donation [Fixed] Donate $Any Amount

Ancient alligators which had long legs and run faster than dinosaurs, also ate them

image credit Imagine an alligator with long four legs and runs faster than dogs. Am I crazy ? Probably not. But, this species is now extinct. They lived in the Jurassic Period. The name this amazing creature is Galloping crocodile. It existed 100 million years ago. And also they preyed on dinosaurs! The most attractive features of Galloping crocodiles are their bone structure. After made research on their bones structure scientists said that they were efficient swimmers but that when they clambered ashore they were also capable of galloping across the plains. But, modern crocodiles crawl on their bellies because their legs sprawl out to the side. The fossils of this primitive crocodiles are now discovered in North Africa by a group of fossil hunters. Most of the fossils was discovered in the year of 2001. Hans Larsson , a paleontologist at the University of Montreal, who took part in the expedition which was sponsored by National Geographic, wrote - ...

I love GREEN [My Original Work] - XV

I love green, I love tree, I love nature --- [Series XV] : Green in Town beside the green field two palm trees Tags : Nature, Photography, Landscape photography, Flowers & Plants photography, This Post Was Published On My Steemit Blog . Please, navigate to steemit and cast a free upvote to help me if you like my post. First Time heard about Steemit ? Click Here To Know Everything About Steemit $3 Donation [Fixed] Donate $Any Amount

Great Festival Durga Puja 2017 Episode 02

Today I am going to share some amazing sculptures which were used to decorate pandals of Durga Puja. Most of them were made with mud, thermocol, rope & cloth. These decorative sculptures were looking so gorgeous that I could not control me to capture them. The first photo represents an example of the Bengali culture. This is a shelf contains some very commonly used tools in Bengali rural areas. Like as iron made pan, palm leaf fan, mirror and sindur case, wooden comb, brass plate, kulo (bamboo tray) and shil nora (mortar & pestle). The following images show the motherly affection and family bonding. Now-a-days family bonding is a very important thing to us. [To be continued...] Previous Episodes : Episode#1 Tags : Art, Durga Puja, Festival, Photography, Religion, Sculptures, India, This Post Was Published On My Steemit Blog . Please, navigate to steemit and cast a free upvote to help me if you like my post. First Time hear...

The Real Face Of India - Episode 40

The Real Face Of India - Episode#40 I believe that India is the most beautiful country in the world. In this series I show the real face of beautiful India. Half Dozen Photos of Natural Beauties Banana Trees Sunbeam beyond the jungle Snap taken : 19 June 2017 Camera : Helio, Model : S-2 Other Episodes : Episode#01 , Episode#02 , Episode#03 , Episode#04 , Episode#05 , Episode#06 , Episode#07 , Episode#08 , Episode#09 , Episode#10 , Episode#11 , Episode#12 , Episode#13 , Episode#14 , Episode#15 , Episode#16 , Episode#17 , Episode#18 , Episode#19 , Episode#20 , Episode#21 , Episode#22 , Episode#23 , Episode#24 , Episode#25 , Episode#26 , Episode#27 , Episode#28 , Episode#29 , Episode#30 , Episode#31 , Episode#32 , Episode#33 , Episode#34 , Episode#35 , ...

Pumpkin Flower Blooming

I shoot it at exact time when this flower was blooming Camera : samsung Model : SM-A310N0 Location : Kolkata, West Bengal, India Snap Taken : 18 March 2018 Tags : Photography, Flowers & Plants photography, Flowers, Macro Photography, Nature, This Post Was Published On My Steemit Blog . Please, navigate to steemit and cast a free upvote to help me if you like my post. First Time heard about Steemit ? Click Here To Know Everything About Steemit $3 Donation [Fixed] Donate $Any Amount

My original abstract art -- "Sunrise"

Today here I share one of my abstract art "Sunrise" Hope you may enjoy :D Tags : Abstract, Art, Drawing, Painting, This Post Was Published On My Steemit Blog . Please, navigate to steemit and cast a free upvote to help me if you like my post. First Time heard about Steemit ? Click Here To Know Everything About Steemit $3 Donation [Fixed] Donate $Any Amount

The Sand

Tags : Nature, Photography, Landscape photography This Post Was Published On My Steemit Blog . Earned : $04.58 SBD Converted to USD @0.8939$ Rate = $4.0940 USD . First Time heard about Steemit ? Click Here To Know...

The Real Face Of India - Episode 130

The Real Face Of India - Episode#130 I believe that India is the most beautiful country in the world. In this series I show the real face of beautiful India. Half Dozen Photos of Natural Beauties Snap taken : 18 Mar 2018 Camera : SAMSUNG, Model : SM-A310N0 Other Episodes : Episode#01 , Episode#02 , Episode#03 , Episode#04 , Episode#05 , Episode#06 , Episode#07 , Episode#08 , Episode#09 , Episode#10 , Episode#11 , Episode#12 , Episode#13 , Episode#14 , Episode#15 , Episode#16 , Episode#17 , Episode#18 , Episode#19 , Episode#20 , Episode#21 , Episode#22 , Episode#23 , Episode#24 , Episode#25 , Episode#26 , Episode#27 , Episode#28 , Episode#29 , Episode#30 , Episode#31 , Episode#32 , Episode#33 , Episode#34 , Episode#35 , Episode#36 , Episod...

Search This Blog