Published on: 14 May 2017
Further to our previous Security Alert (A17-03-03), your urgent step-up actions are called for to ward off the “WannaCry” ransomware attacks and ensure that your computer would not be affected by the attacks. Please act immediately to:
(a) Ensure proper backups of your emails and other data are in place and performed regularly; and
(b) Keep all backups offline and in safe custody to prevent them from online attack or physical loss/theft.
Given the severity and wide outspread of this attack and the possibility of other waves of attack, you are strongly advised to conduct the above measures as soon as possible, preferably before connecting PCs to the Internet so as to minimize any potential impact.
This particular attack exploits the Windows operating system vulnerability which will be patched by the software update released in March 2017 via Microsoft Security Bulletin MS17-010. On 12.5.2017, Microsoft has also published a consolidated guidance (see below) and made broadly available updates for even de-supported Windows XP, Windows 8 and Windows Server 2003 in addition to its currently supported editions.
ALL Windows-based computers shall have the MS17-010 vulnerability fixed as soon as possible. In particular, those standalone PCs running Windows XP, if any, shall also be patched according to the latest guidance provided by Microsoft.
If in any unfortunate case of infection, please disconnect the infected PC(s) from your network immediately and report the case to HKCERT (Tel: 8105 6060, email: hkcert@hkcert.org).