Ransomware: Who’s Affected and Why
In part: Customers who are running supported versions of the operating system (Windows Vista, Windows Server 2008, Windows 7, Windows Server 2008 R2, Windows 8.1, Windows Server 2012, Windows 10, Windows Server 2012 R2, Windows Server 2016) will have received the security update MS17-010 in March. If customers have automatic updates enabled or have installed the update, they are protected. For other customers, we encourage them to install the update as soon as possible.
This decision was made based on an assessment of this situation, with the principle of protecting our customer ecosystem overall, firmly in mind.
Some of the observed attacks use common phishing tactics including malicious attachments. Customers should use vigilance when opening documents from untrusted or unknown sources. For Office 365 customers we are continually monitoring and updating to protect against these kinds of threats including Ransom:Win32/WannaCrypt. More information on the malware itself is available from the Microsoft Malware Protection Center on the Windows Security blog. For those new to the Microsoft Malware Protection Center, this is a technical discussion focused on providing the IT Security Professional with information to help further protect systems.
We are working with customers to provide additional assistance as this situation evolves, and will update this blog with details as appropriate.
Phillip Misner, Principal Security Group Manager Microsoft Security Response Center
From Dyfed Loesche with Statista:
Ransomware can make you want to cry. A malicious program called “WannaCry” has affected 200.000 people or organizations in 150 countries since Friday.
Data by Symantec shows that almost every industrial sector has been affected by ransomware in recent years. However, some types of companies are more vulnerable or more often targeted by cybercriminals trying to extort money for data than others. The analysis shows that the services sector was by far most affected by ransomware in 2016.
Data by Datto shows that, according to managed service providers, most often it’s human carelessness that makes these attacks possible. Opening the wrong email can get you or your company infected.
You can find more statistics at Statista