النسخة العربية

Oman National CERT Towards a safe cyber environment

Oman Threat Hunter 2018

Oman Threat Hunter 2018

“THREAT HUNTER” a national competition that is organized by ITU-Arab Regional Cybersecurity Center (ITU-ARCC) in a partnership with Silensec ...

View
Guide Manual for Reporting Abuse Through Social Media

Guide Manual for Reporting Abuse Through Social Media

This guidance booklet is written to facilitate reporting abuse process through Social Media and afford easy, smooth, and clear way of guidance to report over social media correctly.

View
Cybersecurity Specialized Training Courses

Cybersecurity Specialized Training Courses

Oman National CERT in cooperation with the Arab Regional Cybersecurity Center (ARCC) is conducting a series of specialized training in cybersecurity hosted in Oman.

View
Oman CERT participation in the Safer Internet Day 2018

Oman CERT participation in the Safer Internet Day 2018

Oman CERT is participating in the Safer Internet Day 2018 on 6th of February 2018, under the Theme: Create, connect and share respect: A better internet starts with you

View
Oman Cybersecurity CTF competition

Oman Cybersecurity CTF competition

ARCC in collaboration with Cyber Talents are organizing "Oman Cybersecurity CTF competition" hosted by ITA through Oman National CERT.

View

Share it

Online Incidents Report
Request OCERT Services
Information Security Glossary

Latest Threats & Alerts

WannaCry Ransomware

Published Date:

5/12/2017


Severity:

High


Impact:

A major ransomware attack campaign hit computer systems and the attack appears to have affected a hundreds of private companies and public of organizations in several countries.
This ransomware encrypts the files with strong encryption algorithms which are hard to be decrypted. In order To decrypt and regain access to the files being encrypted, ransomware demands payment from you in the form of a Bitcoin ransom and give instructions on how to buy it, and provides a Bitcoin address to send it to in order to remove the infection from their PCs; otherwise, their files remain locked.


Affected Operating System & Version:

-Microsoft windows XP

-Microsoft windows vista

-Microsoft windows 7

-Microsoft windows 10


Solution(s):

Currently, there is no WannaCry decryption tool or any other solution available, so users are strongly advised to follow prevention measures in order to protect themselves:

• Upon detection of infections of this ransomware, It is recommended to isolate the infected machine from the network where possible to prevent the malware from spreading.
• Maintain up-to-date anti-virus software, and emphasize the awareness among the employees on the importance of using antivirus to scan attachments and files before download or execution .
• Make sure email protection software is exists and activated .
• Keep your operating system and software up-to-date with latest patches.
• Do not follow unsolicited web links in email.
• Use caution when opening email attachments.
• Conduct email security awareness among your employees to avoid being infected by similar malicious emails.
• Conduct routine backups of important files, keeping the backups stored offline.
• Microsoft released a patch for the vulnerability in March (MS17-010), but many users and organizations who did not patch their systems are open to attacks.https://technet.microsoft.com/en-us/library/security/ms17-010.aspx


• You can refer to Oman CERT article on Email security http://www.cert.gov.om/library_articles_details_arabic.aspx?article=1


Reference(s):

1-https://www.microsoft.com/en-us/security/portal/mmpc/shared/ransomware.aspx

2-https://www.microsoft.com/en-us/security/portal/threat/threats.aspx

3-https://twitter.com/OmanCERT