Article Content
| Article Number | 000035166 |
| Applies To | RSA Product Set: All RSA Products |
| CVE ID | CVE-2017-0143, CVE-2017-0144, CVE-2017-0145, CVE-2017-0146, CVE-2017-0147, CVE-2017-0148 |
| Article Summary | On Friday, 12th May 2017, a ransomware threat known as “WannaCry” or “Wanna Decryptor”, and more recently "Petya" and "GoldenEye", was launched impacting many organizations across the globe. The scale of this attack, together with this specific ransomware family, is unique in that it has worm-like capabilities leveraging an exploit against vulnerable Microsoft Windows® operating systems. |
| Link to Advisories | https://technet.microsoft.com/en-us/library/security/ms17-010.aspx |
| Resolution | RSA has completed an initial investigation of the Microsoft Security Bulletin MS17-010 which discloses a number of vulnerabilities that are currently being exploited by multiple ransomware attacks such as WannaCry, Petya, and GoldenEye. For RSA products that run on a Microsoft Windows® operating system impacted by MS17-010, RSA recommends that customers follow the Microsoft Recommendations, which are found here, to patch the underlying hosts. See additional guidance on the Petya ransomware attacks from Microsoft here.
RSA recommends that all customers review their products Security Configuration Guide (https://community.rsa.com) in addition to following best practices in securing internal networks and protecting systems from unauthorized physical access.
|
| Notes | For status of Dell EMC products, refer to the following article: https://support.emc.com/kb/499808 For status of Dell products, refer to the following article: http://www.dell.com/support/article/us/en/19/SLN306320/windows-smb-vulnerability-impact-status-on-dell-products-and-software?lang=EN |
Disclaimer
Read and use the information in this RSA Security Advisory to assist in avoiding any situation that might arise from the problems described herein. If you have any questions regarding this product alert, contact RSA Software Technical Support at 1- 800 995 5095. RSA Security LLC and its affiliates, including without limitation, its ultimate parent company, EMC Corporation, distributes RSA Security Advisories in order to bring to the attention of users of the affected RSA products, important security information. RSA recommends that all users determine the applicability of this information to their individual situations and take appropriate action. The information set forth herein is provided 'as is' without warranty of any kind. RSA disclaims all warranties, either express or implied, including the warranties of merchantability, fitness for a particular purpose, title and non-infringement. In no event, shall RSA, its affiliates or suppliers, be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if RSA, its affiliates or suppliers have been advised of the possibility of such damages. Some jurisdictions do not allow the exclusion or limitation of liability for consequential or incidental damages, so the foregoing limitation may not apply.
