WannaCry Vulnerability Test

Contents

WannaCry Vulnerability Test

Description

Advanced template pack
This pack is provided as-is as a template which must be updated with the help of Nexthink Professional Services or by a certified Nexthink partner.

In this case, the Microsoft KBs containing the security update MS17-010 must be added to the appropriate "Unpatched [Windows Version] devices" metrics.

You can find these KBs on this page from Microsoft: https://support.microsoft.com/en-us/help/4023262/how-to-verify-that-ms17-010-is-installed


WannaCry (WCry) Ransomware is spreading across many organizations around the globe halting different business functions.

This module will help you to identify endpoints and servers potentially vulnerable to the WannaCry ransomware. Vulnerable endpoints are those missing the security updates discussed in Microsoft Security Bulletin MS17-010 or other KBs published at a later date that are replacing them.

Note: Windows 10 Version 1703 and later are not vulnerable to the WannaCry ransomware. While we do not, at present, detect the exact version of Windows 10, we can detect endpoints that are running any of the Windows 10 Version 1703 KBs and are, therefore, running Windows 10 Version 1703. These KBs are: KB4016251, KB4015583, KB4016240 and KB4016871.

Platforms

  • Windows only

License modules

  • None

Compatibility

  • Nexthink v6.9 and later