WannaCry” has been reportedly used in more than 45,000 attacks across approximately 100 countries, details are available in the Cylance blog post.
CYLANCE PREVENTS THIS RANSOMWARE, INCLUDING OFFLINE SYSTEMS
WHAT YOU SHOULD KNOW
CylancePROTECT predicts and prevents the WannaCry ransomware for WINDOWS, MAC AND LINUX endpoints both online and offline AND EMBEDDED WINDOWS.
The WannaCry ransomware encrypts files on endpoints and appends the affected files with the file extension “.WCRY”.
The attack leverages an SMBv2 remote code execution exploit, codenamed ETERNALBLUE, against Microsoft Windows that was made available in the Shadowbrokers dump in mid-April of this year.