WannaCry blackmail malware is making the world crazy, Vietnam is also on the list of countries attacked by this blackmail malware. Therefore, Windows users need to quickly prevent WannaCry, before they attack their system.
First, it is necessary to immediately update the version of the operating system being used, the anti-virus programs to the latest version. Be cautious when opening emails with attachments, strange links on social networks, chat tools. Absolutely do not open links with .hta extension or links with no clear structure, shortened links. Invite you to follow the article below to know how to prevent this malicious WannaCry.
How to prevent malicious code from blackmail WannaCry
Install the latest security patch
Install the latest security patch from Microsoft, released March 14 except for Windows XP. You can CLICK HERE to see the affected Windows versions and download the EternalBlue patch ( MS17-010). Users should note that all machines that do not install the MS17-010 patch may be affected at any time.
Regularly check for updates
Moreover, it is necessary to regularly check for updates on Windows Update to ensure the computer is updated with the latest versions, patches. How to do it is quite simple just go to Settings> Update & Security , then click on Check for updates.
Do not click on strange links
Absolutely do not click on strange links, links with .hta extension or links with unclear structure, shortened links. WannaCry extortion malware often targets the following format groups:
- The usual office file extensions (.ppt, .doc, .docx, .xlsx, .sxi).
- Office formats are less common and specific to the nation (.sxw, .odt, .hwp).
- Storage formats, media files (.zip, .rar, .tar, .bz2, .mp4, .mkv).
- Email and email databases (.eml, .msg, .ost, .pst, .edb).
- Database files (.sql, .accdb, .mdb, .dbf, .odb, .myd).
- Developer source code and project files (.php, .java, .cpp, .pas, .asm).
- Encryption keys and certificates (.key, .pfx, .pem, .p12, .csr, .gpg, .aes).
- Graphic design authors, authors and photographers (.vsd, .odg, .raw, .nf, .svg, .psd).
- Virtual machine files (.vmx, .vmdk, .vdi).
Create file to block Ransomware WannaCry
Open Notepad, copy the content below:
Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows NT \ CurrentVersion \ Image File Execution Options \ taskdl.exe]
"Debugger" = "taskkill / IM / F taskdl.exe"
[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows NT \ CurrentVersion \ Image File Execution Options \ taskse.exe]
"Debugger" = "taskkill / IM / F taskse.exe"
[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows NT \ CurrentVersion \ Image File Execution Options \ wannacry.exe]
"Debugger" = "taskkill.exe / IM / F wannacry.exe"
[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows NT \ CurrentVersion \ Image File Execution Options \ mssecsvc.exe]
"Debugger" = "taskkill.exe / IM / F mssecsvc.exe"
[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows NT \ CurrentVersion \ Image File Execution Options \ tasksche.exe]
"Debugger" = "taskkill.exe / IM / F tasksche.exe"
[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows NT \ CurrentVersion \ Image File Execution Options \ taskhsvc.exe]
"Debugger" = "taskkill.exe / IM / F taskhsvc.exe"
Then press Ctrl + S , select All Files . In Section Save as type , file name BlockWC.reg . Then right-click on this file, select Run as administrator to open it as Administrator.
Backup data to the cloud
To avoid "losing" data, users should back up data to Dropbox , Google Drive or any cloud service before unfortunately being "infected" with this ransomware.
Turn on 2-layer security for all apps
After infiltrating the computer, Ransomware WannaCry not only locks the device, steals important data, but also appropriates the right to use Facebook , Skype , Gmail accounts ... stored on the machine. Then, masquerading as a user, send a message that spreads malicious links to friends in the phonebook. Therefore, users need to set up 2-layer security for Facebook , Gmail , Dropbox ... right away.
Install anti-malware WannaCry
Install WannaCry anti-malware software, currently there are many companies launching this anti- ransomware tool such as Cybereason RansomFree , HitmanPro ... Please install WannaCry anti-malware tool right away to protect safety. exposes computers to the risk of an outbreak of infection. In addition, you can download Bkav CheckWanCry , VNIST Scanner to check for WannaCry malware.
WannaCry blackmail malware is spreading very strongly in more than 90 countries around the world, including Vietnam. Therefore, all users need to be alert, not subjective because they can attack us at any time.
I wish you successful implementation!