Attack overview WannaCry and its copycat attacks work by exploiting the Microsoft Windows SMB Server critical vulnerability (MS17-010). Patched Windows machines are safe while any unpatched Windows machine is at risk. The WannaCry campaign threatens internet facing as well as internal networks, since a compromised laptop/server in the network will try to propagate and infect […]
https://www.guardicore.com/wp-content/uploads/2017/05/wannacry-cover-image.png 178 686 Daniel Goldberg https://www.guardicore.com/wp-content/uploads/2019/02/guardicore-logo-white-space.png Daniel Goldberg2017-05-18 11:32:032019-02-25 10:28:30Detecting and Mitigating WannaCry and Its Copycats Using GuardiCore Centra Platform
https://www.guardicore.com/wp-content/uploads/2017/05/Ransomware-wannacry.png 187 686 Sharon Besser https://www.guardicore.com/wp-content/uploads/2019/02/guardicore-logo-white-space.png Sharon Besser2017-05-17 08:13:102019-02-25 10:30:37Musing on Ransomware and Other Sophisticated Attacks
Everyone has something to write about ransomware. One can not open a mobile device or a news site without getting notification about some new ransomware-related content. There’s a good reason: The recent events, media attention and to a certain degree, the public’s panic around the WannaCry ransomware attack are driving a lot of interest and even increase the […]
https://www.guardicore.com/wp-content/uploads/2017/05/the-bondnet-army3.jpg 444 1440 Ravit Greitser https://www.guardicore.com/wp-content/uploads/2019/02/guardicore-logo-white-space.png Ravit Greitser2017-05-11 05:05:382019-02-23 08:57:02The Bondnet Army: Questions & Answers
Last week we announced the discovery of Bondnet, a new botnet that was uncovered by GuardiCore Labs. The originator of Bondnet had installed a cryptocurrency miner and backdoor in thousands of servers of varying power and conscripted them into a botnet – a group of computing devices that can be centrally controlled for malicious purposes.