Site icon Novalis

A guide to “WannaCry Ransomware”

Another name for WannaCry is “Wcry or Wannacrypt”. It is a ransomware worm that spread quickly from one computer to others by using Eternal blue. When it infects a computer network, it reaches the hard drive and encrypts files which become impossible for the user to access. To decrypt the files, a hefty payment is demanded in bitcoin.

This ransomware consists of multiple components including an application for encryption and decryption, files with encryption keys, and a copy of Tor.

Now, the question arises- Is paying the only option to decrypt the infected files?

Well, it depends.

If all the files which are affected are linked to any backup, then you can easily restore them without paying.

Files which are saved on the desktop, documents, or any other removable drive are encrypted and their original copies are destroyed. Thus, there is no chance to recover these files.

However, files without any backup can be restored if they are saved at other places in computer. Their original copies are just deleted which can be recovered with the help of “undelete tool”.

What are the different ways to secure any system/organization from WannaCry?

For more great content like this, subscribe to our monthly newsletter:

[newsletter]

Exit mobile version