Avid has qualified Microsoft update 017-010 which addresses current issue with WannaCrypt ransomware.

Avid has qualified Microsoft update 017-010 which addresses current issue with WannaCrypt ransomware.

 

Avid has qualified Microsoft update 017-010 which addresses current issue with WannaCrypt ransomware. As this patch has been released already in March and all updates from March and April have been qualified, you are safe to install this update on all Avid Video, Storage and Broadcast products, including Interplay and ISIS System Directors and all Windows based clients. We are still waiting for engineering qualification of May updates, we expect these to be completed early this week. This update package may contain further fixes for this issue.

As always, Avid publishes Security Guidelines and Best Practices document on the Knowledgebase and we encourage customers to subscribe to this article to get notification when it is being updated. Avid also recommend keeping your clients and servers on latest Avid and Microsoft updates.

As the test cycle for all Avid products takes approximately a week and Microsoft releases updates on second Tuesday of the month, we estimate our test cycle to be finished on third Tuesday of the month. When the qualification has been completed, we will publish the qualification of that month’s patches and also the exceptions e.g. the patches that cause issues. We do not explicitly publish each individual patches which have passed qualification.

More details can be found from following links:

Security guidelines and Best Practices (see MS SecBulletin doc):
http://avid.force.com/pkb/articles/en_US/Troubleshooting/en239659

https://blogs.technet.microsoft.com/msrc/2017/05/12/customer-guidance-for-wannacrypt-attacks/
https://technet.microsoft.com/en-us/library/security/ms17-010.aspx