Over 28,000 Chinese Organizations May WannaCry After Being Infected by Ransomware



(Yicai Global) May 14 -- Computer systems in China have been attacked by the ransomware program WannaCry. Internet security monitoring agencies found that more than 28,000 Chinese organizations were affected by the blackmail bug. The economically developed provinces of Jiangsu, Zhejiang and Guangdong had the largest number of infections.

The 360 Security Monitoring and Response Center rated this event as critical. As of 7.00 p.m. yesterday, 28,388 domestic groups had been hit, Sina Technology reported, citing 360 data. Jiangsu, Zhejiang and Guangdong were home to 15.7, 14.8 and 10.3 percent of the attacks recorded by 360, respectively.

Starting on May 12, WannaCry suddenly broke out, infecting more than 100,000 computers across the globe. The software exploits a known vulnerability in Microsoft’s implementation of the Server Message Block protocol, encrypts files and demands USD300 worth of bitcoin be paid as ransom within three days.

Unlike many other malware viruses that must be manually implanted (possibly by a user clicking on something), WannaCry will track vulnerable computers and infect them once it enters a network, security experts said.

Follow Yicai Global on Facebook @yicaiglobal and Twitter @yicaichina.