Staff in Information Technology Services is continuing to work to assess potential vulnerabilities of campus systems in the wake of the recent WannaCry ransomware attack. This process has included outreach to various faculties and departments across campus, as well as efforts to coordinate the required updates to campus systems to ensure they remain current.

To assist with this effort, IT Services is recommending that campus users continue to maintain extreme caution when opening emails or attachments that are unexpected, unfamiliar or suspicious in nature. In the event that this type of message is received, please delete it immediately and open a ticket with the ServiceDesk at http://www.uwindsor.ca/itshelp.

As an additional measure, IT Services is encouraging everyone using Windows-based PCs to apply Automatic Updates immediately, as these updates will help to protect University systems against any potential attacks.

How can you protect your PC?

• Apply March Updates (Windows Vista and newer)
• Install Hotfix for Window XP and Windows 2003 (available on ITS Toolbox)
• Run Sophos antivirus which has a WannaCry signature
• Do not open unfamiliar or unexpected email attachments
• Save your files on OneDrive or Novell

What to do if you think your PC is infected?

• Disconnect the network cable and turn off wireless adapter
• Contact the ServiceDesk immediately

Indicators of a potential attack or system compromise include receipt of attachments with names like:

• Copy_[with Random Numbers]
• Document_[with Random Numbers]
• Scan_[with Random Numbers]
• File_[with Random Numbers]
• PDF_[with Random Numbers]

or the display of a ransom notice: