We’ve been hearing the famous WannaCry ransomware all week, and it seems everyone is now an IT security expert. That’s why from the pause and the perspective that gives me a little time has passed, I would like to analyze why this malware has affected so many computers and why it would never be possible to spread in this way in Android.
Why has WannaCry infected so many computers?
It’s a good question many people ask, and the answer is not very complicated. Sometimes large corporations are the least update their software. People would be astonished to see the amount of state estates that are still using archaic operating systems like Windows XP or Windows 7. And this is not a post where I’m going to blame Microsoft, not because I want to defend Microsoft, but because this time they’re not to blame.
So, whose fault is it? Very simple, the fault lies with companies that do not update their software, just as simple. Today we still use ATMs with Windows XP operating systems and things like that, when it is assumed that these machines should use proprietary software without security fissures.
Even so, Microsoft has released security patches for these operating systems that already have support. The problem of using an operating system as well known as Windows XP, Vista or Windows 7, is that everyone has it, everyone can access it and therefore it is very easy for a hacker to find an exploit in the code and use This time the security problem if it had been patched by Microsoft, but it is not the Redmond giant’s fault that the users of this software do not install the security patches. And the strange thing is that there are no more similar problems.
Many companies or government departments have certain “options” of the operating system “capadas”, and among them are usually software updates. From time to time, and with luck, the root of shift is in charge of updating it, but in other occasions the operating system is not touched unless it fails and there is no other choice.
Taking into account the previous scenario it is easy to conclude why most of the people affected by the WannaCry ransomware have not been private individuals, but companies. I would dare to say that in most companies the computer security is lower than any user can have at home.
Why a virus like WannaCry will never affect Android?
Because of the type of architecture of Android, and badly that some developers who insist on saying that Android is not Linux, Android uses a former kernel of Linux as core for its functioning. This, in addition to granting greater stability as an operating system, also affects the permissions system has nothing to do with Windows.
In Android for an application to have control of the operating system you need to have root rights, which can only be reached in two ways. One of them would be with a terminal previously rooted by the user and the other would be with a malicious application that rootease the terminal taking advantage of a vulnerability not patched.
On the other hand, for a malicious application to be installed on an Android mobile phone, it is most usual for the user to skip the restrictions imposed by the operating system, and enable installation from unknown sources instead of the Play Store. And although malware has been detected in the Play Store itself, it has nothing to do with the possibilities of installing a ransomware that has a user in Windows.
Am I fully protected with Android?
Against the malware definitely not, and the examples can be seen simply by taking a look at this blog, but it is also true that on Android you are the one who chooses the permissions that you give to an application, none The application can infect the number and in most cases the viruses are eliminated simply by accessing the secure mode of the phone and uninstalling the malicious application.
Even so, and that’s a personal opinion, Android’s biggest danger is that security updates do not reach all phones and there are many mobile phones on the market that have outdated and non-updated versions. security patches. My advice is that you choose a mobile phone where your company is responsible for keeping it updated for at least a couple of years and that you also accompany this with a good antivirus that protects it on a day to day basis.