Skip to main content

WannaCry Ransomware Cyber Attack : How to Protect Your Systems from WannaCry Ransomware Attack

WannaCry virus targets the Microsoft Windows operating system on 12th May and infects more than 2,50,000 computers in 150 countries and demanding ransom payments in the cryptocurrency bitcoin in 28 languages. This was one the largest ever cyber attack in the world. WannaCry or WannaCrypt or Wanna Decryptor is a ransomware programme that targets only Microsoft Windows operating system. This ransomware virus WannaCry locks / encrypts files on a computer and demands payments $300 to $600 to unlock the system.

This ransomware spreads by using a vulnerability in implementations of Server Message Block (SMB) in Windows systems. This exploit is named as EternalBlue and this particular malware known as WannaCry was called "unprecedented" by Europol. When your computer is attacked by WannaCry, you will get the below screen which demand payment to decrypt or unlock your computer. Before WannaCry reach your computer you must take some precaution to secure your computer. Read also : Quick Heal total security antivirus for Windows Computer.


How to Protect Your Computer from WannaCry?

There is some guidelines to protect your computer from WannaCry. Below is the crucial steps to protect your systems from WannaCry virus.

  • Since WannaCry targets Microsoft Windows operating system, users are advised to update the Microsoft security patch for this particular flaw with the latest one as mentioned in Microsoft Security Bulletin MS17-010. Go to  the Microsoft's official website with the link  https://technet.microsoft.com/library/security/MS17-010 and download the security patches according to your operating systems.
  • Block / disable SMB Ports on your computer
  • Disable NetBIOS on your computer.
  • Always take backup of your important files so that you can restore the data if your attacked.
  • Make sure your antivirus is up-to date and scan your system for any malicious programs on daily basis. At least use trial version anti virus in your computer.
  • Check for your Windows update regularly and update the computer when it is available for update.
  • Turn on your Windows firewall setting.
  • Do not click any attached file or links that comes to your email till your are not confirm.
  • Do not download any attached file that comes to your email till you are not confirm.
  • Do not download any files / software from an untrusted sites.
  • Follow strict policy for external devices such as pendrive or external hard disk.Do not open any pendrive or external device without scanning.
  • Enable file extensions in your windows so that you can detect what type of file you are going to use. Otherwise you may be trapped by file icon also.
  • Disable remote Desktop Connections, employ least-privileged accounts.
  • Follow safe practices when browsing the web. Ensure the web browsers are secured enough with appropriate content controls.

All the above options are extremely advised to protect your computers from WannaCry ransomware cyber attack. Read also : How to setup page level AdSense ad.

How Block / Disable SMB Ports

Microsoft support page guide you to enable / disable SMB (Server Message Block) ports. Visit https://support.microsoft.com/en-us/help/2696547 to get all the commands for Microsoft Operating System.

To to enable or disable SMB protocols on the Windows Vista, Windows Server 2008, Windows 7, Windows Server 2008 R2, Windows 8, and Windows Server 2012 follow the below steps to run the following commands.

To disable SMBv1 on the SMB client, run the following commands :

1. sc.exe config lanmanworkstation depend= bowser/mrxsmb20/nsi
2. sc.exe config mrxsmb10 start= disabled

To disable SMBv2 and SMBv3 on the SMB client, run the following commands :

1. sc.exe config lanmanworkstation depend= bowser/mrxsmb10/nsi
2. sc.exe config mrxsmb20 start= disabled


Block TCP Port 139 and 445 and and UDP Port 137 and 138 for Extra Security

Blocking TCP Port 139 and 445 and UDP Port 137 and 138 could also help you to stop WannaCry to infect your computer. To disable TCP Port 139 and 445 and UDP Port 137 and 138 do the below steps.

Step 1. click Start button and type firewall.cpl in the search programs and files.

Step 2. Right click on firewall.cpl and select Run as Administrator


Step 3. After that click Advanced Settings 


Step 4. Now select Inbound Rule.. in the left side pane and then click New Rule in the right side pane.


Step 5. Now click Port and then click Next


Step 6. Choose either TCP or UDP and then enter the port number in the against Specific local ports and then click Next. For TCP enter port number 139 and 445 and for UDP enter port number 137 and 138. Read also : How to decorate text with shadow effects.


Step 7. Now click Block the connection and then click Next twice


 
Step 8. Finally, type the name and then click Finish.



How to Disable NetBIOS

To disable NetBIOS over TCP/IP follow the below steps.

Step 1. Go to Control Panel and then open Network and Sharing Center.

Step 2. Click Local Area Connection

Step 3. Now click Properties

Step 4. Select Internet Protocol Version 4 (TCP/IPv4) and then click Properties

Step 5. Now click Advanced..

Step 6. Now you will find three tabs namely IP Settings, DNS and WINS. You need to click WINS and then click Disable NetBIOS over TCP/IP. Read also : How to add AdSense ad inside blog post.


Step 7. After that click OK > OK > Close > Close

How to Enable File Extension

File extension helps you to identify the file type of any file / document and also help you to open an unwanted file. There are many ways to enable file extension. I am just showing you one of it. To enable file extension just perform the below steps.

Step 1. Open My Computer in your Windows 7

Step 2. Click Organize in the top left corner and then select Folder and search options

Step 3. Now click View tab and uncheck Hide extensions for known file types


Step 4. Finally, click Apply and then click OK.

Disable USB Device Auto Open

Disabling USB device auto run / auto open also protect your computer from viruses. You can stop auto open USB device just pressing Shift key on the keyboard after inserting USB device in the USB port. To disable all media and device to auto open in Windows 7 and Windows 8 follow the below steps. Read also : How to make money online from home without investment.

Step 1. Go to Control Panel and click Hardware and Sound.

Step 2. Now click AutoPlay and then uncheck Use AutoPlay for all media and devices.

Step 3. After that click Save button to change the settings.


Once you perform the above all the steps your computer will be protected from WannaCry ransomware virus. Feel free to share this post on social network and also don't forget to subscribe this blog.


Comments