WanaCrypt0r Ransomworm

On the 12th of May 2017, a number of organisations across the world were subject to a ransomware attack. Discover our Threat Research team's analysis of the WanaCrypt0r Ransomworm.

Wanacrypt0r Ransomworm Background

Since the release of the ETERNALBLUE exploit by ‘The Shadow Brokers’ last month security researchers have been watching for a mass attack on global networks. This came on Friday 12th May when it was bundled with ransomware called WanaCrypt0r and let loose.
Initial reports of attacks were highlighted by Telefonica in Spain but the malware quickly spread to networks in the UK where the National Health Service (NHS) was impacted, followed by many other networks across the world...
BAE Systems, Threat Research Team 17 May 2017