Home
Tech info
Technology
Science
Life
Application
Electric
Program
Mobile
Windows 10
Windows 11Windows SMB users should close some ports to prevent WannaCry
In early May 2017, terrorists who attacked Arianna Grande concert in Manchester and the world became victims of the WannaCry ransomware attack.
WannaCry has infected more than 230,000 computers in 150 countries. It made the British medical service deadlock, causing a blockage of telephone networks in Spain and loss of railroads in Germany. Overall, this is one of the worst cyber attacks the world has to go through.
Now, after 3 months, errors or holes still make ransomware easily spread.
Without super-high technology, WannaCry can easily infect using EternalBlue. It is an exploit developed by NSA of the SMB protocol (Windows Server Message Block).
Microsoft has created patches for millions of computers, including unsupported operating systems like Windows XP. Theoretically, these patches closed the EternalBlue SMB vulnerabilities.
- Prevent WannaCry variants by turning off this Windows 10 installation
- How to recover data encrypted by WannaCry malicious code
However, in reality, it seems they don't work very well. At the annual DEF CON conference last July, security researchers found another security hole. This vulnerability is called SMBLoris and is a remote denial of service attack. It can crash a computer or a server and only use no more than 20 lines of code.
Microsoft believes that this vulnerability should be automatically blocked by the firewall.
So how to protect yourself from ransomware?
SMBLoris affects all SMB types, meaning you must remove SMBv1 from the system completely. You need to block all incoming connections on ports 445 and 139.
You can block ports on the router but there is an easier way - using the Windows Firewall tool. Visit the Control Panel> Windows Firewall> Advanced Settings , right-click on Inbound Rules and select New Rule .
On the next screen, select Port, then select Next. Now, you need to select Specific Local Ports . Enter 445, 139 in the box. Click Next again.
Finally, select Block the Connection , name the new rule and click Finish.
If you want to protect your computer from ransomware, follow the steps above!
Lesley MontoyaYou should read it
- How to use Kaspersky Anti-Ransomware Tool for Business
- All about WannaCry, Ransomware has been confusing for the past few days
- Enable ransomware Controlled Folder Access on Windows 10
- How to remove / fix ransomware WannaCry
- Microsoft will turn off SMBv1 in Windows Starting this fall
- How to block or unblock programs on Windows Firewall?
- Protect your computer right before the return of two extremely dangerous ransomware
- Instructions to remove WannaCry Ransomware from your computer
May be interested
- The hero preventing WannaCry faces 10 penalties related to malicious code
marcur hutchins, a british security expert who once set up a bar to prevent the spread of wannacry virus last year, now faces allegations of malicious code. - Microsoft released an emergency patch to prevent ransomware from attackingmicrosoft has released an emergency patch for windows versions to prevent further attacks by wannacry ransomware (microsoft flagged as ransom: win32 / wannacrypt).
- 2 effective and free ways to check WannaCryyou are worried whether your computer is infected with wannacry ransomware, how to know if there are any vulnerabilities in the system as well as how to check wannacry malware. how to check wannacry or check ransomware wannacry effectively and for free with bkav checkwancry and vnist scanner tools will help you do that.
- WannaCry is not dead yet, it just attacked Honda and Australia's traffic camera systema month has passed since wannacry caused chaos around the world, we are starting to mention it as a phrase of the past, but ... wannacry hasn't died yet ...
- The more dangerous WannaCry version 2.0 has appeareddespite being stopped by a 22-year-old hero, the wannacry 2.0 version will be a new challenge for heroes.
- How to Open a Gatein this article, tipsmake will guide you through opening firewall ports on a router or firewall on a windows computer. by default, key ports in the firewall are closed to prevent intrusion; opening ports can help you solve connection problems between the device and the router, between the program and the device, but it also increases the risk of network and computer attacks.
- How to Tell if Your Computer Has USB 2.0 Portssome external peripherals, or usb devices are only compatible for use with usb 2.0 ports. you can verify whether your computer has usb 2.0 ports by reviewing system specifications on your windows or mac computer. click on the 'start'...
- How to remove / fix ransomware WannaCryif unfortunately a victim of ransomware is stirring up many countries, this is how you handle wannacry and protect your computer and your data.
- Network security researcher claims to find a way to decode WannaCryransomware wannacry has infected hundreds of thousands of computers around the world. recently, a cyber security researcher said he had found a way to defeat it.
- A hacker in the United Kingdom found a way to temporarily encrypt the WannaCry malwarehow can fantastic hackers get back stolen data without a penny?
Attack the network
- Hackers have deciphered Apple's Secure Enclave security chip
- Ad Tracker on e-commerce site can flip the Bitcoin transaction mask
- Igexin advertising API brings spyware to steal user information
- Trojan banks surpass the malware defense of Google Play
- New malware-digging tool on Linux devices
- New variant of ransomware Arena Crysis appeared
Hackers have deciphered Apple's Secure Enclave security chip
Ad Tracker on e-commerce site can flip the Bitcoin transaction mask
Igexin advertising API brings spyware to steal user information
Trojan banks surpass the malware defense of Google Play
New malware-digging tool on Linux devices
New variant of ransomware Arena Crysis appeared