Academic Integrity: tutoring, explanations, and feedback — we don’t complete graded work or submit on a student’s behalf.

Please help! SHow step and explain! 2-12. [4 marks Ransomware such as WannaCry u

ID: 3604982 • Letter: P

Question

Please help!

SHow step and explain!

2-12. [4 marks Ransomware such as WannaCry uses encryption to encrypt the files on a victim's computer, then demands that they pay a ransom to be able to decrypt their files. Read about how WannaCry's encryptions works in the "Ransomware Analysis" section of the Wikipedia article about WannaCry: https://en.wikipedia.org/ wiki/WannaCry_ransomware_attack a) Explain what cryptographic operations happen after the WannaCry malware is installed. What term did we use in class for when different types of encryption are used together in this way? (b) Why should the design of the system make it impossible for users to decrypt the files without paying the ransom? (c)According to the "Defensive response" section of the Wikipedia article, re- searchers were able to create a tool that allowed some users to be able to decrypt their files. What was the flaw in the WannaCry malware that enableod this tool to be successful?

Explanation / Answer

Wannacry also called as wanacrrptor malware

-> This wannacry malware will spreads vulnerability through internal networks over the internet
-> once this malware entered into our system or PC it get installed by our one cick then it can encryp all our data with .wcry extention.
-> For decrypting of the encrypted data hackers demands nearly $300 or &600 through bitcoin.


-> The wannacry ransomeware had enterd into arround 120 countries and china japan already got effected by this issue
-> Thousands of machines in 10,000 companies lost data because of wannacry
-> If we want to decrypt the data we need a decryption key.
-> If the malwatre is running in our machine it will create a asymmetric key. so in a an organisation each machine needs a unique key to decrypt the data.
-> This wannacry malware have two components or two hardcoded keys one is for encrypt the data and another is for decryption.which is differ for each machine.
-> once malware got installed it will lock all oue official data.
-> even if we have did patching work for windows OS then also malware effect will be there.
-> If anothere machines are in your networh and they didn't have protection or havn't patched those systems also will get effected
-> The malware will enter into other machines from effected machine through ports.
-> sometimes the anti virus also get failed to detect the malwares.

suppose in a machin in an organisation wannacry is attcked it will generate a key into the machine and this demo key will encrypt the files.
->To decrypt the data we need a decryption key and we need to get it by money in the form of bitcoins
->Data security anlysers and data engineers have analysed and they got a tool, which can decrypt the few files But we cannot decrpt the entire data only the data which is encrypted by demo key can be decrypted.

Related Questions

Please help! Needing good program that will compile. Thank You! You have been co
Question #3659971
Please help! No idea what this question is asking! Here are three pairs of half-
Question #695155
Please help! Nobody has solved this problem yet and it\'s really important. Plea
Question #2409671
Please help! Not sure about these questions..thanks QUESTION 1 An example of an
Question #322805
Please help! Not sure about these questions..thanks Which can cross the phosphol
Question #319573
Please help! Number 4 Number 5 HW Score: 10%, 10 of 100 pts 4 of 10 (1 complete)
Question #2791381
Please help! Number 8 Number 9 Number 10 Score: 0 of 10 pts 8 of 10 (1 complete)
Question #2791384
Please help! Ocean currents are important in studies of climate change, as well
Question #3309219

Navigate

Previous
Please help! Retrieve the Form 10-K for American Eagle Outfitters for the fiscal
Next
Please help! Show all steps fully. Part b only. I will rate :) In the figure bel