So I had this post drafted for a while but haven't gotten around to polishing it up before publishing - given the recent WannaCry / WannaCrypt shenanigans it's probably the perfect time to share this. After dealing with a nasty CryptoWall 4.0 outbreak which had a new ransom note and new filename encryption I decided to put … Continue reading CryptoCanary

Stopping the Spread of WannaCry within the LAN

The recent WannaCry outbreak highlighted just how vulnerable machines are within the LAN, even behind the perimeter firewall. The attack took advantage of a vulnerability in SMBv1 but also in the way we traditionally look at network security whereby the things on the outside are untrusted, but everything inside is trusted. This attitude allowed the … Continue reading Stopping the Spread of WannaCry within the LAN