Share of blame: IT professional

[bitheerani93]

The point to consider is that WannaCry raised an alarm worldwide, demonstrating that information security and encryption need to be treated seriously and responsibly and that this should not only be a matter for the private sector, but also for the malta mobile database sector. Fernando Mercês's (Trend Micro) talk, entitled “Myths and Facts About Wannacrypt”, focused on WannaCry and demonstrated how simple it is to investigate, while bringing a slight complexity to the mix of ransomware, an exploit and a worm. He showed his laboratory, with a real infection, and demonstrated how they detected it at Trend Micro to create a signature for the virus and create a vaccine for the malware. When asked about possible innovative measures to educate users to avoid such accidents, Mercês was categorical in saying:

This time the user is not at fault. If we had to hold anyone responsible, it would be the infrastructure technicians responsible for the updates who did not implement the patches made available since March.

With corrections and measures available since March 2017, the global scenario clearly demonstrates that companies still rely on misguided update actions, or even little or no policy addressing information security, and this is dangerous and frightening, since we are talking about people who are in the IT area and should be concerned about data integrity.