NetDocuments has been closely monitoring the developments surrounding the WannaCry Ransomware since its discovery and spread beginning May 12, 2017.
According to the United States Computer Emergency Readiness Team (US-CERT) bulletin TA17-132A, the WannaCry campaign “is gaining access to enterprise servers either through Remote Desktop Protocol (RDP) compromise or through the exploitation of a critical Windows SMB vulnerability. Microsoft released a security update for the MS17-010 vulnerability on March 14, 2017. According to open sources, one possible infection vector is via phishing emails.”
NetDocuments has confirmed that all endpoint computers and laptops within its corporate environment have had the Microsoft MS17-010 security update successfully applied to their operating systems. It is through endpoint computers that the WannaCry campaign most likely gains access to enterprise servers.
The Production environments within the NetDocuments Service regions are each highly secure with very limited access. The ability for the WannCry campaign to even reach a NetDocuments Production environment is highly remote, and active monitoring together with multi-tiered controls and protections further protect these Production infrastructures from being compromised. NetDocuments engineers are actively monitoring the Production networks and are implementing additional controls and changes as needed to ensure the utmost protection for the NetDocuments Service.
We are often asked what would happen to the NetDocuments Service if a user actually uploaded an infected document into the Service. Because each document uploaded into the Service is immediately encrypted with AES 256 encryption before it is saved, this effectively “mummifies” each document. Any embedded virus is completely frozen by the encryption process, making it impossible for the virus to deploy or to even infect any other files. This means there is no way for an infected file uploaded by one customer to have any impact on the files of other customers.
NetDocuments is committed to providing industry-leading security to customer documents. To learn more about the many different security features built into the NetDocuments Service, visit www.netdocuments.com or contact a NetDocuments representative.