Tektronix WannaCry/WannaCrypt Mitigation information
Overview
Many modern Test and Measurement products use Microsoft Windows operating systems. A number of Tektronix products use the Windows 7 operating system. Recent global cyber-attacks highlighted a specific vulnerability within Windows operating systems. Attackers using this vulnerability have loaded a ransomware software known as “WannaCry” or “WannaCrypt” on thousands of systems worldwide. To protect your Windows-based products from this potential threat, Tektronix recommends you take the following actions appropriate to your product’s Windows version.
Windows 7 Ultimate or Windows 7 Professional, 32-Bit or 64-Bit
· Check if your system has any of these updates installed: KB4012212, KB4012215, KB401552, KB4019263, and KB4019264. If one or more of these updates is present, your system is protected against the vulnerability used in the attack.
To do this check, simply click: Start -> Windows Update -> View Update History, and scroll through the list looking for one of these KB patches. They will be named something like “March, 2017 Security Monthly Quality Rollup… (KB…)”.
· If none of these KB patches are installed, download and install one either through Windows Update or as a standalone software package directly from Microsoft. If you download directly from Microsoft, select the correct version for your system: choose x86 version for a 32-Bit system or x64 version for a 64-Bit system.
Windows XP with Service Pack 3
· Check if you have the update KB4012598 installed on your system. If it is installed, your system is protected.
To do this check click: Start -> Windows Update -> View Update History, and scroll through the list looking for this KB patch.
· If KB4012598 is not installed on your system, download it directly from Microsoft and install.
Windows XP without Service Pack 3
· Download and install Windows XP Service Pack 3 for 32-Bit systems
· Download and install update KB4012598 on your system
Known Workarounds and additional information
If you are uncertain what version and type of Windows you have, you can find out by going to:
Start -> Control Panel -> System and Security -> System.
Your version and service pack will show in the Windows edition entry. System entry also shows System type, which indicates 32-Bit or 64-Bit operating system.
For Windows 7 systems, if you are unable to install one of the recommended patches, you can implement another workaround step. This step requires disabling the SMB1.0/CFIS File Sharing Support feature within the Windows features option of the Control Panel application.
To disable this feature, please visit this website and follow the instructions appropriate for your operating system version:
For additional information and links to resources to address this potential threat, visit this website:
https://blogs.technet.microsoft.com/msrc/2017/05/12/customer-guidance-for-wannacrypt-attacks/
Either of the two updates listed below are sufficient to patch this vulnerability and are the minimum recommended patches to be installed.
The March Security Only patch information for Windows 7 OS’s:
MSRC Number: MS17-008
MSRC severity: Critical
KB article numbers: 4012212
More information:
http://support.microsoft.com/kb/4012212
The March Cumulative Security package for Windows 7 OS’s:
MSRC Number: MS17-006
MSRC severity: Critical
KB article numbers: 4012215
More information:
http://support.microsoft.com/kb/4012215