Headline: Security Notice – Statement on “WannaCry ransomware” attacks
On May 12, 2017, a ransomware named “WannaCry ransomware” appears on the Internet, which targets at Windows by exploiting multiple Windows SMB vulnerabilities (CVE-2017-0143, CVE-2017-0144, CVE-2017-0145, CVE-2017-0146, and CVE-2017-0148) disclosed by Microsoft on March 14. The corresponding Microsoft security notice is MS17-010.
Huawei immediately launched investigation (including the remote code execution vulnerability in the malware defense engine disclosed by Microsoft, i.e., CVE-2017-0290 ). The investigation is still ongoing. Huawei PSIRT will keep updating the SN and will give related views as soon as possible. Please stay tuned.