Wanna Decryptor (WannaCry) Ransomware Explained & Recommended Actions

Wanna Decryptor, also known as WannaCry, Wannacrypt, WNCRY, and Wanna Decryptor 2.0 is a ransomware attack affecting countries and organizations globally. 

We've compiled the following resources to help you take immediate action to prepare for and defend against the “ransomworm.” This page will continue to be updated as more information and resources become available. 

For specific questions or further assistance, please contact us at +1–866–7RAPID7 (Toll Free) or +1–617–247–1717. Get international contact information here.  

Wanna Decryptor Resources

[WEBCAST: WEDNESDAY, MAY 17 2PM ET / 11AM PTWanna Decryptor (WNCRY) Ransomware Explained
Join Tas Giakouminakis, Rapid7's Co-Founder and CTO, and Bob Rudis, Rapid7's Chief Security Data Scientist as they take us through the recent Ransomware disclosure, "WannaCrypt"/"WannaCry" and open the floor for a live Q&A. 

[BLOG] Wanna Decryptor (WNCRY) Ransomware Explained
What is involved in the attack, what weakness(es) and systems does it exploit, and what can you do to prevent or recover from this attack? Get the details and learn how to mitigate the impact from future attacks.

[BLOG] Scanning and Remediating WannaCry in InsightVM and Nexpose
Read this post for a step-by-step guide on using InsightVM to scan your network for WannaCry vulnerabilities. 

[PODCAST] Security Nation Episode 26: WannaCry Ransomware Explained
On this special edition of Security Nation, host Kyle Flaherty sits down with Josh Feinblum, VP of Information Security at Rapid7, to break down the noise and discuss what happened, what is still happening now, why folks need to take this seriously, and the personal decision that is paying the ransom. 

[BLOG] Using Threat Intelligence to Mitigate Wanna Decryptor (WannaCry)
It's not all about indicators of compromose (IOCs). Learn what threat intelligence approaches you can take to deal with WannaCry and prepare yourself for the future. 

[PRESENTATION TEMPLATE] CISOs Guide to Communicating WNCRY
Download this editable presentation to help communicate WannaCry to your company and stakeholders.  

Ransomware Resources

Preventing and Detecting Ransomware Attacks 
Ransomware is malicious software which covertly encrypts your files – preventing you from accessing them – then demands payment for their safe recovery. Like most tactics employed in cyberattacks, ransomware attacks can occur after clicking on a phishing link or visiting a compromised website.

[PODCAST] Understanding Ransomware
The swift rise of ransomware has led many companies to evaluate the risk it presents to their business. In this episode, host Kyle Flaherty explores some of the more common concerns around this attack vector and discusses with Tod Beardsley, Rapid7 security research manager, and returning guest Wade Woolwine.

[VIDEO] Whiteboard Wednesday: Server Ransomware
Watch this week’s Whiteboard Wednesday to learn more about how attackers are using open MongoDB, CouchDB, and Elasticsearch servers, and then check out Bob’s blog post for more on “The Ransomware Chronicles: A DevOps Survival Guide.

[ON-DEMAND WEBCAST] Ransomware: Don't Believe the Hype of Vendors
In this webcast, learn about snake oil sales techniques around ransomware, the best ways to protect your organization from this threat, disaster recovery processes to have in place, and more.

[BLOG] Ransomware FAQ: Avoiding the latest trend in malware

[BLOG] Prepare Yourself for Ransomware – No More Snake Oil, Please

[BLOG] I have ransomware and I didn’t back up! What do I do now??

 

 

Scan for WannaCry with InsightVM

Get your free 30-day trial now.

All fields are mandatory

Work Email Only – No Free or ISP Email Addresses
企業のメール・アドレスを入力してください(フリーのメール・アドレスやインターネット・サービス・プロバイダのメール・アドレスは利用できません)
Nur berufliche E-Mail – Keine kostenlosen oder ISP-E-Mail-Adressen

To prevent software license abuse, this field requires an email address from a domain you or your employer owns, such as a company, university, or personal domain. Email addresses from internet service providers or free mail providers are not accepted. Please enter a valid email address to ensure proper delivery of the license key.

ソフトウェア・ライセンスの悪用を防止するために、企業や大学などの組織、または個人が所有するドメインのメール・アドレスが必要です。インターネット・サービス・プロバイダやフリーのメール・プロバイダが提供するメール・アドレスは利用できません。ライセンス・キーを適切に受け取るために、有効なメール・アドレスを入力してください。

Um Software-Lizenz-Missbrauch zu verhindern, muss in dieses Feld eine E-Mail-Adresse aus einer Domäne, die Sie oder Ihr Arbeitgeber besitzt, eingetragen werden, wie beispielsweise die einer Firma, Universität oder persönlichen Domain. E-Mail-Adressen von Internet Service Providern oder kostenlose E-Mail-Anbieter werden nicht akzeptiert. Bitte geben Sie eine gültige E-Mail-Adresse ein, um eine ordnungsgemäße Übermittlung der Lizenzschlüssel sicherzustellen.

Accepted
有効なアドレスの例
Akzeptiert
  • jon@mycompany.com
  • jon@myuniversity.com
  • jon@myname.com
Not Accepted
無効なアドレスの例
Nicht akzeptiert
  • jon@gmail.com
  • jon@aol.com
  • jon@t-online.com

If you do not have an acceptable email address, please send an email to info@rapid7.com

有効なメール・アドレスを所有していない場合は、info@rapid7.comまでメールでお問い合わせください。

Wenn Sie nicht über eine qualifizierte E-Mail-Adresse verfügen, senden Sie bitte eine E-Mail an info@rapid7.com



Sorry your request cannot be completed at this time. Please reach out to sales at +1-XXX-XXXX or at email@rapid7.com.