Check Point Software has registered a new kill-switch domain that would stop the WannaCry ransomware that wrecked havoc around the world. In just hours, Check Point witnessed a rapid hit rate of 1 connection per second, giving an indication of the immense number of this dangerous ransomware out there.
The kill-switch domain works when the WannaCry ransomware code looks for the domain, and when it finds it, it would shut itself down.
“Registering the domain activated the kill-switch, and these thousands of to-be victims are safe from the ransomware's damage,” says the Check Point Threat Intelligence and Research team.
“Our research shows that the kill-switch works the same as in earlier versions, and the rest of the code is similar to the older versions.”
New kill-switch: ayylmaotjhsstasdfasdfasdfasdfasdfasdfasdf[.]com
MD5: 4287E15AF6191F5CAB1C92FF7BE8DCC3