When WannaCry hit around the world in mid-May, it has been mentioned many times that the extensive use of the old operating system Windows XP helped spread the infection very quickly.
The UK's National Health Service was one of the most high-profile victims of the attack – and many of its bespoke systems are still running Windows XP. THE Microsoft if you remember he rushed to release a security update for the long unsupported operating system.
And while Windows XP systems were among those hit by WannaCry, later an analysis showed that 98 percent of the victims used Windows 7.
But that does not mean that WannaCry did not work for the purposes used by Windows XP. According to a new report by Kryptos researchers, while this operating system was by far the most dangerous to fall victim to ransomware, many attacks simply led to system crashes and the appearance of the "blue screen of death." After that the system needed to be restored.
The researchers tested WannaCry ransomware on a number of operating systems in a test environment: Windows XP with Service Pack 2, Windows XP with Service Pack 3, Windows 7 x64bit with Service Pack 1, and Windows Server 2008 with Service Pack 1.
While Windows 7 attacks successfully installed WannaCry, after many attempts, supposedly vulnerable Windows XP was much more resistant to ransomware than expected, and the operating system running the 2 Service Pack was not infected at all.
However Windows XP with SP 2 was affected, but instead of being infected with WannaCry and requesting ransom σε αντάλλαγμα για τα κλειδωμένα αρχεία, το σύστημα εμφάνισε την μπλε οθόνη του θανάτου (blue-screen of death) and were constantly restarting.
The phenomenon was undoubtedly disappointing for organizations that found their systems to make continuous restarts but at least were not infected by ransomware.
This does not mean that Windows XP is not vulnerable, as this operating system remains a popular target for cyber criminals who are trying to exploit the weaknesses of unaware systems.
WannaCry caused chaos across the globe, and the identity of the attackers remains unknown. Security companies such as Symantec and Kaspersky have linked the attack with the Lazarus team, which is believed to have acted for North Korea.
Meanwhile, the linguistic analysis of ransom notes that appeared to victims of malware suggests that the writer or at least the one who wrote the ransom note was Chinese.