WannaCry cyberattacks are still happening. Just ask Honda
- Author: Arturo Norris Jun 22, 2017,
Jun 22, 2017, 10:42
Honda learned late Sunday evening that "computer systems in several plants across the world were affected by the ransomware virus Wannacry", the auto maker said in a statement, forcing the company to briefly halt production at its factory in Sayama, Japan.
Rival automakers Renault SA RENA.PA and Nissan Motor Co 7201.T were also affected by the virus last month, when the automaking alliance companies stopped production at plants in Japan, Britain, France, Romania and India. Problems at another carmaker's plant are only surprising because of the timing - weeks after the original outbreak.
WannaCry began its spread last month, infecting hundreds of thousands of computer systems around the world in a matter of just days. Cyber-security experts specialized in ransomware infections have not reported seeing new WannaCry versions.
Gavin Millard, technical director at Tenable, said: "That the exploitation of MS17-010 through WannaCry [pt] and other derivatives is still causing a problem is hardly surprising. If that is the case then compensating controls must be put in place and proper, risk-based decisions must be made".
WannaCry was created to gain purchase on systems by targeting a flaw in Windows server message block - SMB - functionality that Microsoft patched in March for supported operating systems, and on May 12 for several outdated ones.
The virus took advantage of weaknesses in Windows 10 software, which many public and private sector organisations still use.
There's no confirmation that the group claiming responsibility was actually behind the attack, of course, but in a tweet, the group said next in its sights is Steam, the game distribution platform.
If there was one factor that contributed most to the success of WannaCry, it was the malware's ability to spread quickly.