WannaCry, a ransomware program that has hit hundreds of thousands of machines in the past week, leverages a Windows exploit used by the NSA that was leaked to the internet in April 2017. The attack works by using a flaw in Windows' SMB (server message block) protocol, allowing nefarious packets to make it to a machine undetected.
A vulnerability that huge was bound to be taken advantage of, and WannaCry did so to great effect. Here's a list of the 10 biggest organizations that were hit by WannaCry and what they've said about it.
The UK's National Health Service (NHS)
Hundreds of clinics were reportedly hit by WannaCry, as were several hospitals. The incident forced surgery delays, cancelled appointments, and generally made a mess of healthcare for several days.
There are no specifics on which US hospitals, or how many, were affected, but a Forbes source provided images of WannaCry on the screen of a radiology machine. Bayer, the manufacturer of the machine, says it received reports of infections on two of its radiology machines at different facilities.
FedEx was hit bad enough that it actually reported interference caused by WannaCry. What that means is anyone's guess--have you had any package delays due to the ransomware attack?
Banks, telecom providers, the Russian railway system, and even the interior ministry were all hit by WannaCry. Word on the extent of the damage to Russian computer systems has been unsurprisingly nonexistent, but it's been bad by most accounts.
French automobile manufacturer Renault, which is associated with Nissan, Daimler, Samsung, and other automotive companies, fell victim to the attack as well, though the company didn't report the extent of the damage.