How to Apply the Windows Update that Patches the EternalBlue SMB Exploit

save
Share and earn Cybytes
Facebook Twitter LinkedIn Email

The first step in protecting any computer against WannaCry, Uiwix and other ransomware campaigns is to apply the critical patch that Microsoft released in March 2017 (Microsoft Security Bulletin MS17-010).

Step 1: Check this list to see if your system is exposed

This is the list of Windows software which need the update in order to close the vulnerabilities in SMBv1 and SMBv2:

  • Microsoft Windows Vista SP2
  • Microsoft Windows Server 2008 SP2 and R2 SP1
  • Microsoft Windows 7
  • Microsoft Windows 10
  • Microsoft Windows 8.1
  • Microsoft Windows RT 8.1
  • Microsoft Windows Server 2012 și R2
  • Microsoft Windows Server 2016
  • Microsoft Windows XP
  • Microsoft Windows Server 2003.

Step 2: Download and install the update

In order to counteract the limit the widespread threat that WannaCry and Uiwix are posing, Microsoft released new Security Updates packages so that all systems will be protected against the exploit, including unsupported systems, such as Windows XP or Windows Vista.

We’ve chosen to illustrate each step by using the update for Windows 7, since it’s the operating system with the highest number of users at the moment.

  1. Go to the Microsoft Security bulletin where you’ll find links to all the links for the security update packages.
  2. Scroll down to the operating system that you are using. In our example, it was Windows 7 64bits.
  3. Click on the package you need. In our example, we used Windows 7 for x64-based Systems Service Pack 1 (4012215) Monthly Rollup. Make sure it’s the Monthly Rollup link that you choose!
  4. windows patch guide wannacry ransomware step (1)

  5.  A new window will open. Select the update for the windows version that you have and press Download.
  6. windows patch guide wannacry ransomware step (2)

  7. Click on the link that will appear after you press the Download button:
  8. windows patch guide wannacry ransomware step (3)

  9. After the download is complete, run it as you would run any other setup.
  10. It will ask you if you want to install the Windows software update. Press Yes and this will initialize the installation setup:
  11. windows patch guide wannacry ransomware step (4)

    windows patch guide wannacry ransomware step (5)

  12. At the end of the installation it will ask you to restart the computer. Restart it.
  13. To check if the installation was successful, you can go to Control Panel > Windows Updates > View update History (on the left side) and see if the Security Update for Windows is installed. It should have the current date in the Date Installed column.

windows patch guide wannacry ransomware step (6)

IMPORTANT!

If the update has already been applied or installed, then you will receive a message informing you about it.

windows patch guide wannacry ransomware step (7)

Also, make sure you follow the security alerts for WannaCry ransomware attacks and the Uiwix ransomware threat. We will keep these alerts updated at all times.

Share this post and earn Cybytes
Facebook Twitter LinkedIn Email
Follow
138 Followers
About Heimdal Security
We protect users and companies from cyber-criminal actions, by keeping confidential information and intellectual property safe. We build products focused on proactive cyber security and we dedicate a big part of our efforts to cyber security education for everyone.
Promoted Content
Expert Roundup: Is Internet Security a Losing Battle?
A while ago, one of our readers asked us to answer the following questions: Is Internet security a losing battle? How come companies are always 1-2 steps behind the fight? How can the bad guys respond so fast?That reader is certainly not the only one with this issue on his mind. Many Internet users feel discouraged by the current state of cyber crime and its consequences, and the rest don’t yet understand why they should care about it. We wanted to do something to change this.Naturally, users like you and me are not the only ones who wrestle this dilemma. Within the industry, cyber security experts are deeply involved in studying the causes and changes which have brought us to this point so they can create better solutions. Each of these experts brings a different perspective to the discussion, because no single person can ever claim to have the full picture.That is why we reached out to some of the most experienced cyber security specialists in the field to gather their thoughts on the topic. We believe that the questions we received are justified and they deserve an honest answer. And you will find plenty of them in the article!

Our Revolution

We believe Cyber Security training should be free, for everyone, FOREVER. Everyone, everywhere, deserves the OPPORTUNITY to learn, begin and grow a career in this fascinating field. Therefore, Cybrary is a free community where people, companies and training come together to give everyone the ability to collaborate in an open source way that is revolutionizing the cyber security educational experience.

Cybrary On The Go

Get the Cybrary app for Android for online and offline viewing of our lessons.

Get it on Google Play
 

Support Cybrary

Donate Here to Get This Month's Donor Badge

 
Skip to toolbar

We recommend always using caution when following any link

Are you sure you want to continue?

Continue
Cancel