> One Year after WannaCry

One Year after WannaCry: Protect PC from Ransomware Risk

Summary:

One year after WannaCry: the exploit enabling the rapid spread of WannaCry, known as EternalBlue, continues to threaten unprotected and unpatched systems. Afraid of data loss after ransomware attacks? Now take measures to protect yourself from ransomware. And this post will show you some ways, especially computer backup with professional backup software - MiniTool ShadowMaker.

One Year Anniversary of WannaCry

May 12, 2018, is the one-year anniversary of the WannaCry ransomware outbreak. A year ago, WannaCry, a ransomware cryptoworm, encrypted computer files and demanded ransom payments in the Bitcoin cryptocurrency. It was considered a network worm since it included a "transport" mechanism to automatically spread itself. And this transport code used EternalBlue vulnerability to gain access to Windows operating systems. More seriously, this ransomware had affected more than 200,000 computers across 150 countries, bringing a huge economic loss up to $8 billion. However, a year later, the negative effects of the mass ransomware outbreak still exist.

recommend You may look for: How to Protect Yourself against WannaCry Ransomware

EternalBlue Exploit Is Bigger Than Ever One Year after WannaCry

In spite of WannaCry ransomware outbreak, organizations and individual users lack the safety awareness and believe that they will not be attacked by WannaCry virus. Thus, they don't take corresponding protection measures. But that is not true.

According to ESET Telemetry, EternalBlue had a calmer period immediately after the 2017 WannaCry outbreak. However, the popularity of EternalBlue increased significantly over the past months; even it reached new heights in mid-April 2018. Today, it is still one of the biggest threats because of the continuous virus variants and the vulnerable machines that can be still available online. Besides, the ransomware changes its attack method and pays much attention to the group users. Now, the healthcare organizations, schools, governmental agencies, and small businesses are prime targets for cyber attackers. For example, WannaCry ransomware hit Boeing on March 29, 2018.

In such a serious situation, what should be done to protect the computers with unprotected and unpatched systems? This has been a topic of public concern. In the following, we will walk you through some useful methods to protect against ransomware.

Ransomware Prevention: Keep Your Computer Safe after WannaCry Anniversary

Has been infected by the ransomware and lose important files? Take it easy! Firstly, try the best file recovery software - MiniTool Power Data Recovery to get them back. It is not bad to try this freeware although we don't know how the ransomware encrypts and deletes your files.

Step 1: Run this program to This PC interface. Then, choose the target partition that has lost data and click Scan to the next step.

Step 2: The tool is scanning the select drive. Please wait until the operation completes.

Step 3: Find lost files and recover them to a safe location.

MiniTool Power Data Recovery recovers files after ransomware

solution 1 Needful: Back up Crucial Data Regularly

One year after WannaCry, how to protect yourself from ransomware attacks? What you may have learned is to keep important files backed up. This is quite a reliable solution and many persons recommend it.

When it comes to computer backup, some of you may use the free snap-in backup tool in Windows 10/8/7 to create a backup for the system or files. But according to some feedbacks, some issues may appear during the process, for example, Windows Backup failed not enough disk space, stuck at creating a system image, etc. To get the best backup experience, some of you choose third-party software. Which ransomware protection software is suitable for you? Here, MiniTool ShadowMaker is strongly recommended.

As a piece of professional backup & restore software, MiniTool ShadowMaker provides you with data protection and disaster recovery solution, letting you keep your computer safe without data loss from different cases like virus infection, system crash, mistaken operation, etc. And you are able to use it to back up file, system, partition and disk, clone disk, and create differential & incremental backups to protect your PC against ransomware. Now, don't hesitate to get its Trial Edition (30-day free trial) or Professional Edition to start a backup.

Imaging Backup

How to back up your computer with MiniTool ShadowMaker one year after WannaCry? See the step-by-step guide.

Step 1: Open MiniTool ShadowMaker you have installed on Windows 10/8/7 and it will enter the following interface, demanding you to choose a computer to manage by clicking Connect button in the corresponding section.

local backup or remote backup

Tip: To create a local backup, please enter the left section. If you want to use this backup software to back up the computer on the same LAN by remote control, go to the right section and type its IP to go on.

Step 2: If you haven't created a backup, the Home page will ask you to set up backup. Just go to the Backup page for a backup creation.

Step 3: In the Backup window, you see two sections where you need to specify the backup source and backup storage path.

Backup Source:

This software has selected system related partitions in Source section by default. If you want to back up the entire system disk or some files/folders, please enter the following interface to select the type.

choose a backup type

To protect your computer from continuous WannaCry ransomware, we suggest backing up the entire disk data since you don't know which files will be encrypted and deleted finally after the ransomware attack. Hence, click Disk and Partitions module, select system disk, check all the partitions and click OK to go back to the Backup page.

check all partitions on the system disk

Backup Destination

MiniTool ShadowMaker gives you four options for the backup destination path. Here, we strongly recommend entering Computer window and choose a partition on an external hard drive. Relatively speaking, this is much safe to keep data.

specify a destination path

Step 4: Next, you can click Back up Now button to start the backup. And the backup process can be viewed in Manage page.

start to back up

tip Before the backup, you can take full advantage of Schedule or Scheme option. The former brings much convenience for you to create an automatic backup at a certain time point. See the figure below, and you know four schedule settings: Daily, Weekly, Monthly, and One Event.

specify a certain time point to back up regularly

For an ideal backup solution, incremental and differential backups should be created. MiniTool ShadowMaker supports three backup schemes as shown below. Meanwhile, disk space management is enabled.

choose full, incremental, or differential backup scheme

Importance:

In addition to Scheme and Scheme options, you can enter Manage page and create scheduled, differential or incremental backups after the full backup is completed. Just click Edit Schedule or Edit Scheme to begin the backup setting based on the actual needs.

enter Manage page to make advanced settings for backup

Does ransomware attack your Windows operating system? Now, use the backup image file you have created before the accident to restore your computer to its normal state. As to the recovery related to the system, MiniTool ShadowMaker requires you to do it in WinPE.

Create a bootable disc with Media Builder feature, boot the computer from the disc and launch MiniTool ShadowMaker. Then, choose the target backup image and click Restore to start a recovery.

Related article: How Do You Restore System Image from External Hard Drive?

restore the computer from a backup image

Disk Cloning

In addition to imaging backup, MiniTool ShadowMaker allows you to clone disk for backup. Its Clone Disk feature is designed to create an exact copy of the original disk data and save it on another hard disk. This can effectively keep your disk data safe and avoid data loss after ransomware attack.

Step 1: Run this ransomware protection software in Windows 10/8/7, navigate to Tools and click Clone Disk.

clone disk with MiniTool ShadowMaker

Step 2: In the pop-up window, click the Source section to choose a disk to clone. And it is recommended to choose the system disk as the source disk.

Then enter the Destination section, select a disk that doesn't have important files as the target disk since the cloning process can overwrite the disk data on the target disk. Besides, make sure the target disk has enough disk space to save the source data.

choose source disk and target disk for the cloning

Step 3: Then MiniTool ShadowMaker is performing the cloning operation.

performing the cloning operation

After finishing the cloning, a warning will pop out telling you to disconnect either the source disk or source disk since Windows may mark one offline. Here shut down your computer and remove the target disk. When ransomware hits your computer and causes data loss, you can restore lost files from the target disk containing the entire original disk data.

note In addition to MiniTool ShadowMaker, you can ask another professional hard drive cloning software for help. And that is MiniTool Partition Wizard which can help you to copy partition, clone disk and migrate OS to another hard disk.

To well keep data safe, you had better make a backup for the entire system disk. Migrate OS to SSD/HD and Copy Disk features are suitable. Just run this program in Windows 10/8/7, choose one of the features and start a disk cloning by following the wizards.

recommend You may like: How Can You Free Ghost Hard Drive in Windows 7/8/10?

MiniTool Partition Wizard main interface

Generally speaking, computer backup is quite a reliable method to prevent your computer from data loss due to the ransomware like WannaCry. In case of the accident, the backup you have created can be used to perform a quick disaster recovery. Therefore, it is needful to back up your disk data.

solution 2 One Year after WannaCry: Other Useful Ransomware Prevention Tips

In addition, there are some other methods that can help minimize the impacts of a ransomware attack.

1. Don't click on anything suspicious

  • Don't open websites that are known for illegal or suspicious activity.
  • Don't click any attachment that you think a bit suspicious.
  • Check the authenticity of emails before responding.

2. Run a Windows patch update as soon as possible after a security vulnerability is disclosed and fixed.

3. Install protection programs.

  • Update or install a firewall on your devices.
  • Install the latest software or apps on your PC.
  • Use antivirus software to run a full scan of your system and check for malware infections.

4. Segment your network and make sure the access to different segments is based on a business need.

5. Mount remote file systems on your OS only if needed.

6. If not needed, don't give all users admin privileges.

7. Invest in an advanced persistent threat detection capability which has lateral movement visibility.

8. Disable SMBv1 and ensure SMBv2 is not exposed to the internet.

Bottom Line

The massive ransomware outbreak - WannaCry has passed for one year. When looking back at WannaCry, you know this disaster attacked more than 150 countries with huge data. Even so, many organizations and personal users don't pay much attention to the ransomware prevention. One year after WannaCry, the EternalBlue exploit is a big threat to the computer without unpatched systems. If you are afraid of being the next victim, now it is time to take measures to protect yourself from ransomware, especially back up the disk data with MiniTool programs.

On the other hand, please tell us if you have any questions during the backup process or any suggestions of the ransomware protection tips. It is OK to leave a comment below or contact [email protected].