|Name||WannaCry and Petya ransomware spreading globally|
|First Publish Date||15-May-17|
|Date of Current Status||28-Jun-17|
|Next Planned Update||7-Jul-17|
|Description||WannaCry and Petya are malware that attack unpatched Windows systems, encrypt the files and demand a ransom to decrypt them.|
|What You Need To Know?||WannaCry and Petya take advantage of a weakness in the SMB file sharing protocol on Windows systems. Microsoft issued a patch, MS17-010, earlier in the year to address this vulnerability but a significant number of systems either did not install it or had the patch only partially installed. This has resulted in hundreds of thousands of systems being rendered unusable. Xerox office products are not affected by this but some production systems will need to be checked to confirm the Microsoft patch has been installed.|
|What is Xerox Doing About This?||
IT security is a priority at Xerox for our business, for the connected technology which we enable, and for the services we provide to our clients globally. The recent ransomware attack, which has affected thousands of organisations worldwide, is a sharp reminder of why this is critical. These threats reinforce our practice of continually monitoring our IT infrastructure and ensuring security updates are applied immediately.
We want to inform you of the steps we have taken following the most recent ransomware outbreak. Xerox Global Security Services immediately issued a directive to patch every computer system within Xerox to ensure continued protection of our IT environment. Over the weekend we completed the patching of all our environments. We will continue to monitor the situation and act accordingly to protect our provisions of services to you both now and in the future.
For our systems that support our customers, we began efforts to address in a timely fashion external computer systems and environments shared with customers.
|Impact||This ransomware prevents affected systems from operating and can spread rapidly in an organization.|
|What Should You Do?||
Products that use a FreeFlow Print Server or EFI Fiery server with the Windows operating system or Wide Format products with the Windows operating system or users of Xerox software that run on Windows operating systems: