Submit a ticketCall us

Announcing NPM 12.2
With NPM 12.2 you can monitor your Cisco ASA firewalls, to monitor VPN tunnels for basic visibility and troubleshooting tunnels. NPM 12.2 also uses the SolarWinds Orion Installer so you can easily install and upgrade one or more Orion Platform products simultaneously.
See new features and improvements.

Home > Success Center > Patch Manager > Patch and fix a WannaCry Ransomware attack

Patch and fix a WannaCry Ransomware attack

Table of contents

Updated May 22, 2017

Overview

This article describes how to apply the latest security update to patch the Wannacry Ransomware vulnerability. 

WannaCry malware is a Trojan virus called Ransomware. It works by encrypting most or even all of the files on a user’s computer. Then, the software demands that a ransom is paid in order to have the files decrypted. 

Environment

All Patch Manager versions

Steps

  1. Synchronize your WSUS with Microsoft Website Catalog to get the latest security update. From the native WSUS console:

    1. Expand Update Services, and then go to Options.

    2. Select Update Source and Proxy Server > Update Source tab, select Synchronize from Microsoft Update, and then click OK.

    3. Select Product and Classifications, go to the Classifications tab, and then select Critical Updates and Security Updates.

    4. Right-click Synchronization in the left pane, and then click Synchronize Now.

  2. When synchronization is complete, search for the specific update such as KB4012598. For example, Windows 2008 Server corresponds to KB4012598. See the Microsoft Security Bulletin MS17-010 - Critical article for reference. (© 2017 Microsoft, available at www.technet.Microsoft.com obtained on May 19, 2017).

  3. Find the correct Microsoft KB corresponding to the operating system that you are trying to patch. 

    1. Right-click and approve the patch. This can be approved through the patch either on WSUS Native console or Patch Manager console.

    2. The approved patch will be displayed in Patch Manager under All Updates and Security Updates.


  4. Right-click the security update, and then click Update Management to deploy the patch to a server or machine. 

  5. Select the security update in the Update Management window, and then click OK.

  6. Click the Browsing computer or Add computer option, select the server, and then click OK to specify the target server.

  7. Click Next on the Task Option Wizard. Continue to run Task Now, and then click Finish.

  8. Click Finish on the Update Management Wizard.

  9. Check the progress under Active Tasks.  

  10. Check the task history if the patch was successfully installed.  

 
Disclaimer: Please note, any content posted herein is provided as a suggestion or recommendation to you for your internal use. This is not part of the SolarWinds software or documentation that you purchased from SolarWinds, and the information set forth herein may come from third parties. Your organization should internally review and assess to what extent, if any, such custom scripts or recommendations will be incorporated into your environment.  You elect to use third party content at your own risk, and you will be solely responsible for the incorporation of the same, if any.

 

Last modified
22:10, 21 May 2017

Tags

Classifications

Public