New Kill-Switch, New Sinkhole
Check Point Threat Intelligence and Research team has just registered a brand new kill-switch domain used by a fresh sample of the WannaCry Ransomware.
In the last few hours we witnessed a stunning hit rate of 1 connection per second.
Registering the domain activated the kill-switch, and these thousands of to-be victims are safe from the ransomware’s damage.
Our research shows that the kill-switch works the same as in earlier versions, and the rest of the code is similar to the older versions.
New kill-switch: ayylmaotjhsstasdfasdfasdfasdfasdfasdfasdf[.]com
MD5: 4287E15AF6191F5CAB1C92FF7BE8DCC3
You may also like
When Your AI Agent’s Memory Becomes a Security Liability
Key Findings: Check Point Research identified a critical vulnerability chain in LangGraph, an open-source framework ...
Global Cyber Attacks Ease in May 2026, But Ransomware Surges 48% As Threats Reorganize
Attack Volumes Pull Back, But the Bigger Picture Tells a ...
The Server Seizure That Affects Also Iran’s Cyber Operations
On May 22, 2026, Dutch financial-crime investigators walked into data ...
AI Attacks Are No Longer Experimental: Key Findings from the March-April 2026 AI Threat Landscape
Between late December 2025 and mid-February 2026, Gambit found that ...