On Friday, May 12, countless organizations around the world began fending off attacks from a ransomware strain variously known as WannaCrypt, WanaDecrypt and Wanna.Cry. Ransomware encrypts a victim’s documents, images, music and other files unless the victim pays for a key to unlock them.

The Ransomware uses Microsoft Vulnerability MS17-010 also known as “ETERNALBLUE” ,A patch for this vulnerability was issued by Microsoft on March 14th.Only those who did not patch their systems would be susceptible to the vulnerability/’

We now have detection against known variations, Please make sure the Endpoints are upto date and the patch is applied.

Reference Microsoft article:


Please click here for best practices to prevent ransomware attacks in the organization.