More than half of IT environments still contain WannaCry/NotPetya vulnerabilities

A new report from cloud-native network detection and response company ExtraHop shows that on the fourth anniversary of the WannaCry attack a high percentage of IT environments are still running known vulnerabilities. It shows the continuing use of ill-advised and insecure protocols, including Server Message Block version one (SMBv1), which was exploited by the WannaCry ransomware variant to encrypt nearly a quarter of a million machines worldwide, and is still found in 67 percent of environments. In early 2021, the ExtraHop threat research team looked at the prevalence of insecure protocols in enterprise environments, specifically SMBv1, Link-Local Multicast Name Resolution… [Continue Reading]