Newly found flaw raises fears of another WannaCry
SINGAPORE: A newly found flaw in widely used networking software leaves tens of thousands of computers potentially vulnerable to an attack similar to that caused by WannaCry, which infected more than 300,000 computers worldwide, said cybersecurity researchers.
The United States Department of Homeland Security announced the vulnerability, which could be exploited to take control of an affected computer, and urged users and administrators to apply a patch.
Rebekah Brown of Rapid7, a cybersecurity company, said yesterday that there were no signs yet of attackers exploiting the vulnerability in the 12 hours since its discovery was announced.
But she said it had taken researchers only 15 minutes to develop the malware that made use of the hole.
“This one seems to be very, very easy to exploit,” she said.
Rapid7 said it had found more than 100,000 computers running vulnerable versions of the software, Samba, free networking software developed for Linux and Unix computers. There are likely to be many more, it said in a statement.
Most computers found are running older versions of the software and cannot be patched, said Brown.
Some of the computers appear to belong to organisations and companies, she said, but most were home users.
The vulnerability could potentially be used to create a worm like the one which allowed WannaCry to spread so quickly, Brown said, but that would require an extra step for the attacker.