Our teams are continuously monitoring and taking steps to prevent cyber-attacks, like the May 12, 2017 attack that has impacted thousands of businesses worldwide. This widely publicized cyber-attack was documented by several names, including: “Wanna Decryptor”, “WannaCry Ransomware”, “WannaCry”, and “WCry”. Please be aware that we were not affected by the current version of this ransomware.
This most recent ransomware exploited a specific vulnerability in the Microsoft Server Message Block (SMB) server that allows remote execution of code on machines. This would enable an individual to deliver files and code to a computer without local intervention. This vulnerability was discovered in March of 2017, and a critical security update was released by Microsoft (KB4013389). All Windows computers with automatic updates enabled would have applied the update on their own during their next patch cycle.
CaterTrax has automatic updates enabled for Microsoft. Therefore, the patch for this ransomware was applied as part of our standard update schedule on April 2, 2017. We have not identified any disruption of our production or headquarters environments. We have confirmed that all computers and servers in our network at CaterTrax headquarters have received the critical security patch, eliminating the current vulnerability that ransomware leverages. Additionally, we have enterprise-level firewalls at CaterTrax headquarters and our hosting provider with several layers of security scanning and filtering to remove high-risk traffic.
CaterTrax is taking as many preventive measures as possible to protect and maintain our technology platform and employee networks to provide the best possible service for your business needs. We will continue to keep you informed with key updates like this as they arise.