Hundreds of thousands of systems across the globe were compromised last week by WannaCry, a ransomware attack that with unprecedented speed and scale. But why were so many organizations left so vulnerable to the attack?
"Ransomware continues to succeed in part because organizations remain susceptible to many common vectors of attack, from propagation through phishing, that lead to users executing an exploit, to the lack of preventive controls, as well as limited awareness and ability to respond when a compromise is in progress."
Scott Crawford and Patrick Daly, 451 Research, "When the state of security makes you WannaCry," May 15, 2017
Take a deeper dive into understanding which gaps in security were exploited, what this means for the future, and what you can do to prepare for the next attack.
ExtraHop Blog: What happened with WannaCry, what we learned, and how customers tapped the power of ExtraHop to respond.
WannaCry Supplemental Bundle: Directly Detect EternalBlue Portion of WannaCrypt
Ransomware Bundle: A trigger to detect ransomware in real time.