The spread of the virus have been suspended after registering a meaningless domain name iuqerfsodp9ifjaposdfjhgosurijfaewrwergwea.com.
Security specialist, who leads Twitter @MalwareTechBlog, found that the virus accesses that domain and decided to register it to monitor program activity.
As it turned out, in the code of the virus it was noted that if this domain is successful, the infection should cease; if not, continue.
Immediately after the domain registration came to him tens of thousands of queries.
Sam @MalwareTechBlog admitted that when he registered the domain didn’t know that it will help to stop the spread of a dangerous virus.
However, to re-start the infection, attackers need to modify a few lines of code, which refers to domain iuqerfsodp9ifjaposdfjhgosurijfaewrwergwea.com.
We will remind, on may 12, computers worldwide began to attack virus-вымогательWannaCrypt, which blocks access to data, and to unlock it – you have to pay the ransom. Ukraine also was among the victims of the virus.
© 2017, paradox. All rights reserved.
France must open a debate on building up a pan-European defense capability, to include rethinking…
Ukraine is having a hard time fighting Russia, the commander-in-chief of the nation’s armed forces,…
A large part of Western aid to Kiev is being embezzled by Ukrainian officials, despite…
Russia repelled a wave of attempted Ukrainian drones strikes on oil refineries and energy infrastructure…
Antony Blinken traveled to China this week to warn Beijing about sanctions for supplying military…
The Ukraine conflict is Washington’s doing and the US is deliberately trying to prolong the…