Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.




Mad Scientist
18116 posts

Uber Geek
+1 received by user: 2269

Trusted
Lifetime subscriber

Topic # 214466 13-May-2017 07:27
Send private message

Are personal computers at risk?

 

How to protect oneself?

 

http://money.cnn.com/2017/05/12/technology/ransomware-attack-nsa-microsoft/index.html


View this topic in a long page with up to 500 replies per page Create new topic
 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10
2933 posts

Uber Geek
+1 received by user: 676


  Reply # 1780454 13-May-2017 07:56
One person supports this post
Send private message

https://arstechnica.com/security/2017/05/an-nsa-derived-ransomware-worm-is-shutting-down-computers-worldwide/

 

 

 

wcry copies a weapons-grade exploit codenamed Eternalblue that the NSA used for years to remotely commandeer computers running Microsoft Windows. Eternalblue, which works reliably against computers running Microsoft Windows XP through Windows Server 2012, was one of several potent exploits published in the most recent Shadow Brokers release in mid-April. The Wcry developers have combined the Eternalblue exploit with a self-replicating payload that allows the ransomware to spread virally from vulnerable machine to vulnerable machine, without requiring operators to open e-mails, click on links, or take any other sort of action.

 

Microsoft patched the underlying vulnerability in March, exactly four weeks before the Shadow Brokers' April release published the weapons-grade NSA exploit. The rapid outbreak of Wcry may be an indication that many, or possibly all, of the companies hit had yet to install a critical Windows patch more than two months after it was released.

 

 

 

 

 

 


1048 posts

Uber Geek
+1 received by user: 359


  Reply # 1780457 13-May-2017 08:14
Send private message

That is pretty full on stuff and is going to effect a lot of innocent people. Shame on them for doing that it just so wrong on every level.





Ding Ding Ding Ding Ding : Ice cream man , Ice cream man


 
 
 
 


Try Wrike: fast, easy, and efficient project collaboration software
11034 posts

Uber Geek
+1 received by user: 3466

Trusted
Subscriber

  Reply # 1780460 13-May-2017 08:27
2 people support this post
Send private message

"the ransomware exploits a vulnerability in Windows"

How to protect yourself? Hmmmmm.

Hello, welcome to Mac OSX....





11034 posts

Uber Geek
+1 received by user: 3466

Trusted
Subscriber

  Reply # 1780461 13-May-2017 08:31
Send private message

The NHS in the UK is badly affected and turning patients away in some regions.

They have a pretty poor record when it comes to IT. A few years ago they scrapped a new computer system without even using it in anger which had cost them $30 billion equivalent!





nas

351 posts

Ultimate Geek
+1 received by user: 168


  Reply # 1780462 13-May-2017 08:31
2 people support this post
Send private message

I wonder how prolific ransomware would be if bitcoin didn't exist, or any anonymous digital currency for that matter


z2k

277 posts

Ultimate Geek
+1 received by user: 12

Trusted

  Reply # 1780466 13-May-2017 08:36
2 people support this post
Send private message

Geektastic: "the ransomware exploits a vulnerability in Windows"

How to protect yourself? Hmmmmm.

Hello, welcome to Mac OSX....

 

 

 

The NSA leak also contained exploits for Mac OSX. Also, the best way to protect yourself no matter what OS you're on is to apply the latest updates.


800 posts

Ultimate Geek
+1 received by user: 74

Trusted
Lifetime subscriber

  Reply # 1780468 13-May-2017 08:45
One person supports this post
Send private message

Hopefully no Geekzone users computers are affected. That's because we all apply the latest patches from Microsoft as soon as they are released, right? The radio news this morning said Microsoft released a patch for this vulnerability in March.


610 posts

Ultimate Geek
+1 received by user: 255

Subscriber

  Reply # 1780470 13-May-2017 09:07
One person supports this post
Send private message

I survived Sasser in the early 2000s and learned from it. It required ~1800 machines to be visited on sneaker net, patched and cleaned. This current worm would require machines to be rebuilt. Every server, every workstation. It has the potential to be pretty devastating to an organisation.

 

I am working at a place where the IT team have not experienced a worm outbreak, I hope they never have to.








283 posts

Ultimate Geek
+1 received by user: 47

Subscriber

  Reply # 1780473 13-May-2017 09:15
One person supports this post
Send private message

I continue to be amazed at the number of major NZ organizations, including universities, still running Win7.  The larger the number of computers in an organization, the further behind they seem to be on OS software -- too hard basket?





gml


164 posts

Master Geek
+1 received by user: 91


  Reply # 1780475 13-May-2017 09:20
Send private message

"Weapons grade exploit" first time I ever heard that in use. Wouldn't a exploit the same as a consumer version?


11034 posts

Uber Geek
+1 received by user: 3466

Trusted
Subscriber

  Reply # 1780512 13-May-2017 09:32
Send private message

cruxis:

 

"Weapons grade exploit" first time I ever heard that in use. Wouldn't a exploit the same as a consumer version?

 

 

 

 

in the same way that a 'weather bomb' used to be a 'storm'...






2933 posts

Uber Geek
+1 received by user: 676


  Reply # 1780514 13-May-2017 09:34
One person supports this post
Send private message

cruxis:

 

"Weapons grade exploit" first time I ever heard that in use. Wouldn't a exploit the same as a consumer version?

 

 

No, it comes with added Michael Bay and Jerry Bruckheimer explosions and it turns your IT department into something resembling NCIS or CSI ....... :)


610 posts

Ultimate Geek
+1 received by user: 255

Subscriber

  Reply # 1780517 13-May-2017 09:40
One person supports this post
Send private message

cruxis:

 

"Weapons grade exploit" first time I ever heard that in use. Wouldn't a exploit the same as a consumer version?

 

 

They are meaning Eternal Blue was coded by professional NSA coders for nation state hacking, rather than by a dude living in his parent's basement.

 

 










Mad Scientist
18116 posts

Uber Geek
+1 received by user: 2269

Trusted
Lifetime subscriber

  Reply # 1780519 13-May-2017 10:03
Send private message

If my org runs Windows 7 company-wide, i probably shouldn't connect remotely to it over the weekend I gather? Is therea safe way to connect?

2140 posts

Uber Geek
+1 received by user: 643

Subscriber

  Reply # 1780521 13-May-2017 10:06
4 people support this post
Send private message

mdav056:

 

I continue to be amazed at the number of major NZ organizations, including universities, still running Win7.  The larger the number of computers in an organization, the further behind they seem to be on OS software -- too hard basket?

 

 

 

 

It's not exactly a cheap, quick or simple exercise to upgrade OS at mid-large business level. W7 is still under support until 2020.


 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10
View this topic in a long page with up to 500 replies per page Create new topic



Twitter »

Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

TCF and Telcos Toughen Up on Scam Callers
Posted 23-Apr-2018 09:39


Amazon launches the International Shopping Experience in the Amazon Shopping App
Posted 19-Apr-2018 08:38


Spark New Zealand and TVNZ to bring coverage of Rugby World Cup 2019
Posted 16-Apr-2018 06:55


How Google can seize Microsoft Office crown
Posted 14-Apr-2018 11:08


How back office transformation drives IRD efficiency
Posted 12-Apr-2018 21:15


iPod laws in a smartphone world: will we ever get copyright right?
Posted 12-Apr-2018 21:13


Lightbox service using big data and analytics to learn more about customers
Posted 9-Apr-2018 12:11


111 mobile caller location extended to iOS
Posted 6-Apr-2018 13:50


Huawei announces the HUAWEI P20 series
Posted 29-Mar-2018 11:41


Symantec Internet Security Threat Report shows increased endpoint technology risks
Posted 26-Mar-2018 18:29


Spark switches on long-range IoT network across New Zealand
Posted 26-Mar-2018 18:22


Stuff Pix enters streaming video market
Posted 21-Mar-2018 09:18


Windows no longer Microsoft’s main focus
Posted 13-Mar-2018 07:47


Why phone makers are obsessed with cameras
Posted 11-Mar-2018 12:25


New Zealand Adopts International Open Data Charter
Posted 3-Mar-2018 12:48



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.