In a baffling turn of events, computers at Boeing have allegedly been infected with the WannaCry Ransomware. According to the Seattle Times, a memo was sent out by a Boeing employee that states that systems have been affected and that their were concerns the ransomware would "spread to airplane software".

The Seattle Times reports that this memo was sent out by Mike VanderWel, chief engineer at Boeing Commercial Airplane production engineering, that states:

“It is metastasizing rapidly out of North Charleston and I just heard 777 (automated spar assembly tools) may have gone down,” VanderWel wrote, adding that he’s concerned the virus will hit equipment used in functional tests of airplanes ready to roll out and potentially “spread to airplane software.”

While WannaCry is still spotted occasionally trying to spread, for the most part this ransomware was effectively stopped by security researcher Marcus "MalwareTech" Hutchins registered a domain that acted as a kill switch for the ransomware component.

That is why it is so baffling that almost a year later, with all the patches that were released, almost all AV software detecting it, and all the media attention that WannaCry generated that Boeing would become infected with this ransomware in 2018.

At this time, the ransomware has not been 100% confirmed as WannaCry and it could very well be an imitation as we have seen those released in the past. If anyone works for Boeing and can share a screenshot or a sample, it could be readily confirmed if this was the original Wannacry.

I have reached out to Boeing for comment, but have not heard back at the time of this publication.

Update 3/28/18 7:33 PM EST:

The Boeing Twitter account has made a statement that the infection was not as bad as reported:

 

Related Articles:

A First Look at the North Korean Malware Family Tree

WannaCry Déjà Vu: Petya Ransomware Outbreak Wreaking Havoc Across the Globe

Blackmail Campaign Pretending to be WannaCry Is Really Just WannaSpam