Newly discovered vulnerability raises fears of another WannaCry

SINGAPORE (Reuters) - A newly found flaw in widely used networking software leaves tens of thousands of computers potentially vulnerable to an attack similar to that caused by WannaCry, which infected more than 300,000 computers worldwide, cybersecurity researchers said on Thursday.

The U.S. Department of Homeland Security on Wednesday announced the vulnerability, which could be exploited to take control of an affected computer, and urged users and administrators to apply a patch.  

Rebekah Brown of Rapid7, a cybersecurity company, told Reuters that there were no signs yet of attackers exploiting the vulnerability in the 12 hours since its discovery was announced. 

But she said it had taken researchers only 15 minutes to develop malware that made use of the hole. "This one seems to be very, very easy to exploit," she said. 

Rapid7 said it had found more than 100,000 computers running vulnerable versions of the software, Samba, free networking software developed for Linux and Unix computers. There are likely to be many more, it said in response to emailed questions. 

Most of the computers found are running older versions of the software and cannot be patched, said Brown. 

Some of the computers appear to belong to organizations and companies, she said, but most were home users. 

The vulnerability could potentially be used to create a worm like the one which allowed WannaCry to spread so quickly, Brown said, but that would require an extra step for the attacker.

Cybersecurity researchers have said they believe North Korean hackers were behind the WannaCry malware, which encrypted data on victims' computers and demanded bitcoin in return for a decryption key.      

(Reporting and writing By Jeremy Wagstaff; Editing by Michael Perry)

Related News

GE, Boeing, Oracle form coalition to support Republican border tax

Feb 3, 2017

US-USA-TRUMP-COMPANIES-TAX:GE, Boeing, Oracle form coalition to support Republican border tax

Iowa moves to cut Medicaid funding for Planned Parenthood

Feb 3, 2017

US-IOWA-PLANNEDPARENTHOOD:Iowa moves to cut Medicaid funding for Planned Parenthood

SpaceX says fix underway for rocket turbine wheel cracking

Feb 2, 2017

US-SPACE-SPACEX:SpaceX says fix underway for rocket turbine wheel cracking

Must Read

GE, Boeing, Oracle form coalition to support Republican border tax

Feb 3, 2017

US-USA-TRUMP-COMPANIES-TAX:GE, Boeing, Oracle form coalition to support Republican border tax

Oil pushes higher on Iran sanctions, jobs data

Feb 3, 2017

US-GLOBAL-OIL:Oil pushes higher on Iran sanctions, jobs data

Japan to push back if Trump meddles with BOJ independence: sources

Feb 3, 2017

US-USA-TRUMP-JAPAN-FOREX:Japan to push back if Trump meddles with BOJ independence: sources

Obserworld delivers the most accurate and up-to-date world news for the global audience with a thorough research and in-depth interviews. Discover the world through Obserworld.

Contact us: sales@obserworld.com