Be aware of many Ransomware infections reported

Take steps to help avoid becoming a victim

May 2017

The United States Computer Emergency Readiness Team (US-CERT) has received multiple reports of “WannaCry” ransomware infections in many countries around the world. Some of the observed attacks use common phishing tactics including malicious attachments.

What to Know

  • Ransomware is a type of malicious software that infects a computer and restricts users’ access to it until a ransom is paid to unlock it.
  • Individuals and organizations are discouraged from paying the ransom, as this does not guarantee access will be restored.
  • Consumers are at risk if their operating system updates and security applications are not current.
  • KeyBank has technical controls in place to mitigate this exploit and is closely monitoring the situation.

What to Do

  • Immediately deploy the security update associated with Microsoft Security Bulletin MS17-010, if you have not done so already. If you have automatic updates enabled or have deployed this update, you are already protected from the vulnerability these attacks are trying to exploit.
  • Increased vigilance is required to recognize potentially suspicious emails from untrusted or unknown sources; always stop and think before clicking an email link or an attachment.
  • Use these additional tips provided by the National Cyber Security Alliance to help prevent ransomware infections:
    • Keep clean machines: Prevent infections by updating critical software as soon as patches or new operating system versions are available. This includes mobile and other internet-connected devices.
    • Lock down your login: Strong authentication — requiring more than a username and password to access accounts — should be deployed on critical networks to prevent access through stolen or hacked credentials.
    • Conduct regular backups of systems: Systems can be restored in cases of ransomware and having current backup of all data speeds the recovery process.
    • Make better passwords: In cases where passwords are still used, require long, strong and unique passwords to better harden accounts against intrusions.
  • Please report any ransomware incidents to the Internet Crime Complaint Center (IC3).
  • For Key clients or businesses, if you responded to a suspicious email and have detected any suspicious activity on your KeyBank account, immediately contact Key’s Fraud & Disputes Hotline at 800-433-0124.
  • For non-Key Clients: If you responded to a suspicious email and have concerns regarding your personal or account-related information, immediately contact your financial institution.

This material is presented for informational purposes only and should not be construed as individual advice.

KeyBank does not provide legal advice.