A new variant of the Wanna Decryptor (Wana Decrypt0r 2.0 ) ransomware infection, also reffered to as WCry ransomware has been discovered and reported to cause massive outbreak and infect personal computers as well as bring enterprises down to their knees. The ransom being paid so far is massive and users are left with nothing but to wonder how to restore their files.
Wana Decrypt0r 2.0 Spread Massively In Spain
The Spanish corporation Telefonica has warned all their employees to immediately Shut Down their computers, since the outbreak attacks via sophisticated malware that aims for one thing only – to infect whole networks and bring them down to their knees.
Virus Came Out In Several Versions
Multiple different iterations of Wana Decrypt0r 2.0 virus have come out so far. The first version uses the .wcry file extension and was not initially as spread as the newer version of this ransomware.
However with the Wana Decrypt0r version 2.0 everything has changed. The Wana Decrypt0r 2.0 ransomware came out in a massive blow in 12th of May, spreading globally and infecting more victims in hours than the most popular viruses discovered in may did in a week.
Researchers cannot discover the exact origin of the virus and it’s distribution campaign, but it is possible that it is spread via:
- E-mail Spam
- Exploit Kits
- RDP Attacking
The company Telefonica has already sent multiple memos as well as other messages, urging employees to shut down their computers.
The Wana Decrypt0r 2.0 virus was believed to initially infect central servers after which spread to computers of the employees of the company.
The virus uses the following file extension:
It also has an intimidating ransom note and the crooks are nasty enough to put FAQ on it: