WannaCry, which has become the celebrated ransomware ever, infected worldwide computers in May, 2017. Many victims claimed that they knew nothing about what happened, but were encrypted by ransomware. WannaCry is differ from the past ransomware, which patches with exploits leaked by the Shadow Brokers, spreading through the Server Message Block protocol version 1. Taiwan has suffered from WannaCry, and caused the damage. Although Taiwan occupies an important role in IT industry, organizations and client users still lack of acknowledge dealing with ransomware. In this article, we will explain the background of the WannaCry, and how it spreads worldwide. We will give an example of Institute of Nuclear Energy Research how defensing WannaCry. At last, we will give some suggestions of how defensing ransomware for organizations.