MercoPress. South Atlantic News Agency

Microsoft warns governments the latest global cyber-attack is a “wake-up call”

The virus took control of users' files and demanded US$300 payments to restore access. The virus spread slowed over the weekend but it might only be brief

The cyber-attack that has hit 150 countries since Friday should be treated by governments around the world as a “wake-up call”, Microsoft says. The computing giant said software vulnerabilities hoarded by governments had caused “widespread damage”.

 The latest virus exploits a flaw in a version of Microsoft Windows first identified by US intelligence. There are fears of further “ransomware” attacks as people return to work on Monday.

Many firms have had experts working over the weekend to prevent new infections. The virus took control of users' files and demanded US$300 payments to restore access. The spread of the virus slowed over the weekend but the respite might only be brief, experts have warned. More than 200,000 computers have been affected so far.

A statement from Microsoft president and chief legal officer Brad Smith on Sunday criticized the way governments store up information about security flaws in computer systems.

“We have seen vulnerabilities stored by the CIA show up on WikiLeaks, and now this vulnerability stolen from the NSA has affected customers around the world,” he wrote.

“An equivalent scenario with conventional weapons would be the US military having some of its Tomahawk missiles stolen.”

Europol director Rob Wainwright warned that companies must patch their systems before Monday morning. He added: “The governments of the world should treat this attack as a wake-up call.”

Microsoft said it had released a Windows security update in March to tackle the problem involved in the latest attack, but many users were yet to run it.

“As cybercriminals become more sophisticated, there is simply no way for customers to protect themselves against threats unless they update their systems,” Mr. Smith said.

Becky Pinkard, from Digital Shadows, a UK-based cyber-security firm, revealed it would be easy for the initial attackers or “copy-cat authors” to change the virus code so it is difficult to guard against. “Even if a fresh attack does not materialize on Monday, we should expect it soon afterwards,” she said.

In England, 48 National Health Service (NHS) trusts reported problems at hospitals, doctor surgeries or pharmacies, and 13 NHS organizations in Scotland were also affected. Other organizations targeted worldwide included Germany's rail network Deutsche Bahn, Spanish telecommunications operator Telefonica, French carmaker Renault, US logistics giant FedEx and Russia's Interior Ministry.