Lessons from the WannaCry Ransomware Attack

The mid-May WannaCry “ransomware” virus affected more than 100 countries, including South Africa. It showed that these types of attacks can be spread incredibly quickly and that we can expect similar incidents in the future. And experts warn that a new cyber-attack (“Adylkuzz”) is already underway.

What should we do to protect ourselves?

Old software like Windows XP is particularly vulnerable (the reason the National Health was shut down in the UK is that their MRI machines run on Windows XP). Windows 10 has to date been unaffected. Use an up-to-date operating system and software (particularly anti-virus software).
Off-site back-ups are now more important than ever – if you can quickly access your backed-up data you only suffer the inconvenience of recapturing the current day’s data. The WannaCry attack only asked for ransom money to unlock files but there are no guarantees you will ever see your data again no matter what you do and the virus is capable of permanently wiping out all of your data.

Directors and management: The significance of vigilance and care as new virus threats emerge

Computers have become integral to our daily activities. It is not surprising that, as the risks posed by Information Technology (IT) grow, it has become a growing focus of Boards and senior management.

In the King Governance Codes, a whole section is dedicated to managing IT. The Companies Act gives directors and senior managers wide powers torun the business but it also makes them accountable. They need to show due care and be informed when managing the company. Civil liabilities can result should these duties not be adequately performed. IT management is important to a business and care and effort need to be exercised.

Computer criminals are getting more brazen and sophisticated, so be prepared.

NOTE FOR ACCOUNTANTS: For some articles on the subject see:

“WannaCry Ransomware Spreads Across the Globe, Makes Organizations Wanna Cry About Microsoft Vulnerability” on SecurityIntelligence.

“The WannaCry attack is a wake-up call” on BusinessLive.

“Another large-scale cyberattack underway: experts” on Daily Maverick.

Cookie	Duration	Description
cookielawinfo-checbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-advertisement	1 year	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Advertisement".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Cookie	Duration	Description
_ga	2 years	This cookie is installed by Google Analytics. The cookie is used to calculate visitor, session, campaign data and keep track of site usage for the site's analytics report. The cookies store information anonymously and assign a randomly generated number to identify unique visitors.
_gat_UA-127752408-1	1 minute	This is a pattern type cookie set by Google Analytics, where the pattern element on the name contains the unique identity number of the account or website it relates to. It appears to be a variation of the _gat cookie which is used to limit the amount of data recorded by Google on high traffic volume websites.
_gcl_au	3 months	This cookie is used by Google Analytics to understand user interaction with the website.
_gid	1 day	This cookie is installed by Google Analytics. The cookie is used to store information of how visitors use a website and helps in creating an analytics report of how the website is doing. The data collected including the number visitors, the source where they have come from, and the pages visted in an anonymous form.

Cookie	Duration	Description
_fbp	3 months	This cookie is set by Facebook to deliver advertisement when they are on Facebook or a digital platform powered by Facebook advertising after visiting this website.
fr	3 months	The cookie is set by Facebook to show relevant advertisments to the users and measure and improve the advertisements. The cookie also tracks the behavior of the user across the web on sites that have Facebook pixel or Facebook social plugin.
IDE	1 year 24 days	Used by Google DoubleClick and stores information about how the user uses the website and any other advertisement before visiting the website. This is used to present users with ads that are relevant to them according to the user profile.
test_cookie	15 minutes	This cookie is set by doubleclick.net. The purpose of the cookie is to determine if the user's browser supports cookies.
VISITOR_INFO1_LIVE	5 months 27 days	This cookie is set by Youtube. Used to track the information of the embedded YouTube videos on a website.
YSC	session	This cookies is set by Youtube and is used to track the views of embedded videos.

Cookie	Duration	Description
CONSENT	16 years 6 months 1 day 5 hours 28 minutes	No description
yt-remote-connected-devices	never	No description available.
yt-remote-device-id	never	No description available.