The attack, which locked users out of their systems and networks and demanded a ransom of $300 worth of Bitcoin digital currency, crippled hospitals, businesses and government agencies. The fact that the WannaCry attack has persisted for so long indicates how many people globally refuse to update and protect their systems, despite the risks. And, while the company did issue early fixes for its newer operating systems, patches for older Windows systems were only issued free of charge over the weekend, after the attacks began.
According to the FT, the cost of updating older Windows versions "went from US$200 (RM865.50) per device in 2014, when regular support for XP ended, to US$400 the following year", while some clients were asked to pay heftier fees.
Whenever Microsoft learns of vulnerabilities with its operating systems (OS) it releases a Security Update. "Microsoft knew about this vulnerability - how widely it could get exploited", he said.
While some of the exploits in the possession of the Shadow Brokers have already been patched, the rapid spread of WannaCry underscores how many individuals and institutions are still running laughably outdated software.
Following the flurry of reports of the attack, the chief of global and legal affairs at Iran's Cyber Police warned that the "ransomware", which has affected countless computer systems worldwide, has done the same to some systems inside the country.
The Verizon 2017 Data Breach Investigations Report, the most comprehensive annual survey of security breakdowns, found that it takes three months before at least half of organisations install major new software security patches. Brad Smith, Microsoft's top lawyer, criticized US intelligence agencies for "stockpiling" software code that can be used by hackers.
"We could use a national cybersecurity policy", said Gartner cybersecurity analyst Avivah Litan.
Who is behind the attack? Others subsequently confirmed the Google researcher's work. But in this case, according to Kaspersky Lab, the shared code was removed from the versions of WannaCry that are now circulating, which reduces the likelihood of such a "false flag" attempt at misdirection.
The worst of the WannaCry ransomware attack that started Friday and spread around the world may be over, but there are still variants of the malware roaming the internet, looking for unsuspecting victims.
In April, the hacker collective known as the Shadow Brokers, released a trove of Windows exploits and hacking tools which they claimed to have stolen from the NSA's cyber stockpile. "To keep the world safe these things have to be done". "Occasionally mistakes happen", he added.