The WannaCrypt0r Ransomware Attack

Digital security (or cyber security) is important for numerous businesses.As a business that provides professional ecommerce solutions we understand that security is very important.

The recent ransomware attacks that affected organisations such as the National Health Service and FedEx have served as a wakeup call for many with regards to cyber security. However, what can you do to protect yourself and/or your business? Sadly there is no way to 100% defend against all threats, however there are measures you can take to defend yourself against online threats.

First, What Is Ransomware?

Ransomware is terrifying type of malicious software (malware) that holds your files or computer to ransom. There are two main types of ransomware, the lockout type and the encryption type.

The lockout type of ransomware prevents you from accessing your computer. This can sometimes pretend to be a law enforcement organisation, claiming that you have committed a serious crime and in order to avoid arrest; you must pay a fine.

The Encryption type of ransomware is perhaps even more terrifying! This type of malware encrypts the data on your computer. After being infected by this type of malware, the attacker will demand money in order to provide you with the encryption key. If your business has been infected with this type of malware, this could be devastating! Especially if you do not have any backups!

Some people and businesses are confused regarding if they should pay the ransom or not. However it is important to remember that the people responsible for the attack are anonymous and could easily take your money and simply not give you the key. In fact, the National Crime Agency writes “We encourage the public not to pay any ransom demand."

They have also given the following advice on a post from the 15 ^th of May.

1. Keep security software up to date

2. Run anti-virus software

3. Make multiple backups in different locations. This includes offline!

4. Don't open unknown email attachments, or clicking on any links in spam emails.

5. Report any cases of fraud to Action Fraud

What Is WanaCrypt0r And Why Is It So Dangerous?

There are numerous reasons why WannaCrypt0r (also known as WannaCry, WannaCrypt or WannaDecryptor) is so terrifying. Firstly, it's a type of encryption ransomware; however that isn't the only reason why it is so dangerous and so scary.

This type of ransomware is very scary because according to the Malwarebytes blog it is spread using a vulnerability that came from a set of leaked NSA exploits. Additionally, this blog also writes that the encryption is next to impossible to decrypt.

If that wasn't bad enough, it gets worse. The initial component appears to be a worm, which runs the ransomware, spreading itself from computer to computer. It is believed to do this using an exploit known as Eternal Blue exploit.

However, there is some good news. This exploit was patched earlier this year by Microsoft, so if your Microsoft operating software is up to date with the latest windows update, you should be protected from the exploit. However, it is still advisable that you backup your important data!

If you'd like to see what happens WannaCrypt0r is on a computer, The PC Security Channel has a video showing what happens when the ransomware is installed on a computer.

Security Options For Ecommerce Businesses?

If you're a business, the National Cyber Security Centre , writes that you should “back up the data that matters to you, because you can't be held to ransom for data you hold somewhere else."

However, the sad truth is that there are numerous cyber threats for businesses. For example, ecommerce businesses need to consider cybersecurity regarding customer payment. If you're searching for ecommerce solutions that take the threat of cyber security very seriously, talk to Advansys. We are a PCI DSS Level 1 compliant ecommerce supplier.

With regards to our ecommerce solutions, we take the risk of lost/stolen credit card data very seriously. We have achieved the highest level of PCI DSS compliance. This means that all of our business processes and infrastructures meet the highest level of security!

Additionally any company at level 2, 3 or 4 completes a self assessment questionnaire. However, a company that meets level 1 compliancy must have yearly on-site reviews by an internal auditor. Additionally a network scan by an approved scanning vendor is also required.

Are you comfortable with placing your trust in 'self-assessment'? Are you prepared to run the risk?

If you would like to learn more information regarding Advansys and PCI DSS compliance, you can visit this page regarding payment security .

Ecommerce Solutions From Advansys!

There are numerous different ecommerce solutions available from Advansys. For example, we can provide responsive ecommerce web design services. This type of website can adapt to run on a variety of platforms. This way your customers can have a pleasant user experience on your website from whatever device they are using, desktop computer, mobile, tablet, etc.

Interested? Contact The Advansys Team Today!

Over 20 years of ecommerce experience we have designed and built many beautiful websites for our clients that both look fantastic and provide their users with a great user experience. If you're interested in learning more about our ecommerce solutions, please do not hesitate to contact ourfriendly and dedicate team. You can reach our team by telephone by calling 0845 838 2700, our lines are open Monday to Friday 9am to 5:30pm.

If you would like to meet our team in person, please feel free to contact our team to make an appointment. Our team is based in Wokingham, Berkshire; the centre of the UK's tech hub. However, we also have a northern office which is based in Greater Manchester.

Alternatively you can contact our team online: by using the chat feature inthe bottom right of your screen, by sending our team an email at sales@advansys.com or by filling out our contact form.

You could also find us on social media by following us on Twitter, @advansysuk