How to defend from WannaCry RansomWare?

How to make sure WannaCry RansomWare does not hit you?

Last week we covered NSA-derived ransom ware is shutting down computers globally. Since then we have received numerous customer requests wanting to know how to protect their Windows XP/7/8/10 computers. Today we will cover what you can do to make sure WannaCary ransomware does not hit you.

Install Windows Updates

Windows XP, Windows 7, 8, and 10

It is extremely important that you installed all OS updates to prevent getting exploited by NSA-derived ransomware vulnerability. Any systems running a Windows version that did not receive a patch for this vulnerability should be removed from all networks. If your systems have been affected.

Run Windows updates and make sure all critical updates are installed. To run go to Start > Search > Windows Updates.

Download and install MS17-010 – Critical

Windows 7, 8, and 10

https://technet.microsoft.com/en-us/library/security/ms17-010.aspx?f=255&MSPPError=-2147217396

Download and install KB4012212

Applies To: Windows 7

http://www.catalog.update.microsoft.com/Search.aspx?q=KB4012212

See if the critical patches are already installed.

Applies To: Windows 7

To check click Start > Control Panel > System and Security. Under Windows Update click the View installed updates link. Scan the list (which can be alphabetized by clicking the box marked Name, or sorted by date) to see if you have ANY of these patches:

2017-05 Security Monthly Quality Rollup for Windows 7 (KB4019264)
April, 2017 Preview of Monthly Quality Rollup for Windows 7 (KB4015552)
April, 2017 Security Monthly Quality Rollup for Windows 7 (KB4015549)
March, 2017 Security Monthly Quality Rollup for Windows 7 (KB4012215)
March, 2017 Security Only Quality Update for Windows 7 (KB4012212)

If you have any of those patches, you’re fine. If you have none of those patches, download and install the March, 2017 Security Only Quality Update for Windows 7 (KB4012212) for 32-bit or 64-bit.

Applies To: Windows 8.1

To check click Start > Control Panel > System and Security. Under Windows Update click the View installed updates link. Scan the list (which can be alphabetized by clicking the box marked Name, or sorted by date) to see if you have ANY of these patches:

2017-05 Security Monthly Quality Rollup for Windows 8.1 (KB4019215)
April, 2017 Preview of Monthly Quality Rollup for Windows 8.1 (KB4015553)
April, 2017 Security Monthly Quality Rollup for Windows 8.1 (KB4015550)
March, 2017 Security Monthly Quality Rollup for Windows 8.1 (KB4012216)
March, 2017 Security Only Quality Update for Windows 7 (KB4012213)

If you have none of those patches, download and install the March, 2017 Security Only Quality Update for Windows 8.1 (KB4012213) for 32-bit or 64-bit.

Disable SMB1 & 2

Applies To: Windows XP, Windows 7, 8, and 10

Follow this:

1. Control Panel\Programs\Programs and Features.


2. Remove check Box SMB1.0/CIF Files Sharing Support.


3. You must restart your computer.

Disable SMB2

Link Download direct: SMB2 Tools Disable
1. RUN AS ADMINISTRATOR.


2. When you run the tool it will show if SMB2 is currently enabled or not. If enabled you must disable it.


3. You must restart your computer.

Windows Defender Update

Applies To: Windows 8, 10

Updated Windows Defender definitions as Microsoft has released updates to detect WannaCry worm.

More from our blog

See all posts
No Comments