Q3. What are some examples of #cyberattacks that were able to take advantage of an unpatched system?

What are some examples of #cyberattacks that were able to take advantage of an unpatched system? (Q3 from #GCAchat 21 May 2020)

(@SBRC_Scotland) A good example would be EternalBlue, an extremely powerful cyber attack that can allow a hacker to take complete control of an unpatched computer. EternalBlue was used to devastating effect around 2016 where thousands of businesses collectively lost over $10 Billion to attacks.

(@EMEA_GCA) WannaCry Ransomware in 2017 affected unsupported Windows XP and newer but unpatched Windows devices - 150 countries impacted within hours, millions of devices affected. If you’d applied the patch you were safe.

(@Cyber_Readiness) Response: WannaCry and NotPetya are two of the most significant and broad-reaching examples of cyber attacks that took advantage of unpatched systems. Also, the ransomware attack against Baltimore in 2019 also took advantage of an unpatched system - the patch for that vulnerability had been issued a couple of years beforehand.

(@Tech4GS) Response: The examples are almost endless. Big time #cyberattacks like NotPetya are the most well known, with billions of dollars in losses.

Here is a quick look at some insights from @TrendMicro

The problem isn’t new. In 2003 the Slammer worm infected over 75,000 computers worldwide in 10 minutes. And there were significant events long before that.