Microsoft's lawyer says governments should "report vulnerabilities" that they discover to software companies, "rather than stockpile, sell, or exploit them".
The latest virus exploits a flaw in a version of Microsoft Windows first identified by U.S. intelligence.
Europol executive director Rob Wainwright had warned on Sunday the situation could worsen when workers return to their offices on Monday after the weekend and logged on.
Although there have been no incident reported from Sri Lanka so far about the global cyber-attack, the Computer Emergency Readiness Team (CERT) advised users to keep their Windows systems updated with a backup as a precautionary measure.
Russia, Ukraine, India and Taiwan were the most seriously affected countries, according to cyber security company Kaspersky Lab.
"We have seen vulnerabilities stored by the Central Intelligence Agency show up on WikiLeaks, and now this vulnerability stolen from the NSA has affected customers around the world", he wrote. He finds the threat so severe as to liken it to "the US military having some of its Tomahawk missiles stolen" and points to the need for something like a.
Overall, Smith's statement is an urgent call for a united front - the tech sector, customers, and governments - against cyberattacks, but the biggest wake-up call is by far the message to government agencies such as the NSA and CIA.
The latest malware, called WannaCrypt or WannaCry, is spread by taking advantage of a Windows vulnerability that Microsoft released a security patch for in March. That's wrong, says Mr. Smith.
Becky Pinkard, from Digital Shadows, a UK-based cyber-security firm, revealed it would be easy for the initial attackers or "copy-cat authors" to change the virus code so it is hard to guard against.
"The recent attack is at an unprecedented level and will require a complex global investigation to identify the culprits", the European police agency added.
In England, 48 National Health Service (NHS) trusts reported problems at hospitals, doctor surgeries or pharmacies, and 13 NHS organizations in Scotland were also affected.