WARNING: Ransomware attack on computers in progress; do not pay the ransom

Last Updated on Friday, 12 May 2017, 22:30 by Denis Chabrol

Guyana National Cybersecurity Incident Response Team (GNCIRT) confirms that a global ransomware attack is currently in progress.

The self-spreading ransomware, known as ‘Wanna Cry’ or ‘Wanna Decryptor’, exploits a vulnerability in Microsoft’s Windows operating system. It is believed that this ransomware is spread through phishing emails, malicious adverts on websites, and questionable apps and programs.

IT Leaders are advised to inform their users to be extremely cautious in their online activities.

Network or system administrators are strongly advised to apply the latest Microsoft patch to all computer systems (please see Microsoft’s Security Bulletin MS17-010)

In the event that a Government computer becomes infected with the ‘Wanna Cry’ ransomware, take the following steps:
• Disconnect and quarantine the infected system by removing it from your network

• Do NOT pay the ransom • Immediately inform GNCIRT

For further information and support, please contact GNCIRT at 231-8820 ext. 221 or 222; or e-mail

We are currently notifying all Government IT Leaders and the public; and are actively monitoring the situation. Future updates will be provided as more information becomes available.