The Anti-virus Times

Monday, June 5, 2017

Employees of anti-virus company PR and marketing departments will long remember the week following the WannaCry attack (which started on May 12, a Friday). People asked lots of questions. In particular, some asked why Russia suffered the most from the attack.

It's hard to argue with statistics, and experts have come up with all sorts of explanations as to why so many machines in Russia were infected.

The first reason has to do with the level of software piracy. Everyone knows that software piracy is a common phenomenon in Russia. And people who use software illegally are very reluctant to install updates because they are afraid that their computers will be blocked.

The second reason is the low salaries of system administrators. Their employers just can't afford to pay them more. This, too, is understandable: many companies can't afford to hire competent system administrators.

The third reason is the inadequate organization of business processes, specifically with regards to outdated software being used on corporate computers and no updates being installed.

Here, I think we can stop listing the problems we have in Russia and start exposing the truth.

While going about its work, WannaCry sends queries to a certain URL. The security expert known as MalwareTech registered the corresponding domain, and as a result Kryptos Logic, which controls the domain now, was able to analyse queries coming from the ransomware.

How did the enlightened USA outperform Russia? Because of a lower level of software piracy? The professionalism of system administrators? Or the quality of business procedures? We are waiting to hear what the experts have to say.