Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


View this topic in a long page with up to 500 replies per page Create new topic
1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10
1376 posts

Uber Geek


  # 1781795 13-May-2017 21:54
One person supports this post
Send private message

joker97:

 

Are personal computers at risk?

 

How to protect oneself?

 

http://money.cnn.com/2017/05/12/technology/ransomware-attack-nsa-microsoft/index.html

 

 

 

 

Keep your device up to date.


4141 posts

Uber Geek


  # 1781798 13-May-2017 22:17
Send private message

Fred99:

 

 

 

But I think on a vulnerable network/unpatched network, all it would have taken is for one user to stuff up, and you're in big trouble.

 

 

Yeah, it moves around through a hole in SMB, so if you have MS win7+ machines that are not patched, or have XP machine which were (until tonight) unpatchable, it can run riot - which I suspect is what happened in the UK...

 

ttps://blogs.technet.microsoft.com/msrc/2017/05/12/customer-guidance-for-wannacrypt-attacks/


 
 
 
 


2132 posts

Uber Geek


  # 1781800 13-May-2017 22:33
4 people support this post
Send private message

I'm seeing a hell of a lot of judging the average user here, and bugger all good information about this rather serious security issue.




Location: Dunedin

 


gzt

10947 posts

Uber Geek


  # 1781805 13-May-2017 22:46
Send private message

Yep. For the average single windows machine internet user it's basically a non issue. Even the built in XP firewall will prevent an SMB attack vector from the net.

For users on any kind of network with windows file transfer enabled it is is more serious. Could get infected by any other machine on that network.

648 posts

Ultimate Geek


  # 1781808 13-May-2017 22:50
Send private message

It's interesting to see how much of the world is still running XP.

 

I still run XP for broadcast software compatibility. I used to run Linux for a more secure environment until a database crash reveled a bad backup history as well. But XP is still a good workhorse as far as go on holiday for a few months and forget about it.

 

However, I have never had critical machines using Windows SMB full stop. I lived through Nimda years ago to realise that Windows File Sharing given the previous popularity of Windows full stop was a ticking time bomb. Everything is transferred via secure FTP to and from a broadcast automation delivery machine.

 

I'm glad Microsoft have released a patch for this, and perhaps didn't realise exactly how many close to critical systems still run it. Yes everyone should be up to date, however it doesn't change the economic fact many of these systems are still used and now non-supported in favour of driving more sales of software than securing what's still in production.

 

 


21428 posts

Uber Geek

Trusted
Lifetime subscriber

  # 1781810 13-May-2017 22:59
3 people support this post
Send private message

We just sacked a customer who refused to replace 5 of their 15 machines that had XP. They have spent about $3000 with us trying to keep them up and running over 18 months, we have begged, cajoled. They have been hit by about 8 malware including 2 ransomware. I just explained we don't mind being an ambulance at the bottom of the cliff on a very occasional instance, but we aren't interested in a full-time job doing it. 

 

They hired a replacement about 10 days later, who went in to do an audit and walked out without completing the audit and said he wasn't interested in the job. (I know the guy). 

 

 


Lock him up!
10815 posts

Uber Geek

Lifetime subscriber

  # 1781812 13-May-2017 23:25
Send private message

I would need to know a lot more than I do to make an informed comment on this but a couple of things occur to me. First is that a business has every right to be selective about the customers they choose to work for. You are under no obligation to do jobs you don't want to. Also, you are in a fortunate position that you can afford to pick and choose. Second is that the customer is always right. If they are willing to pay for the service, they are fully entitled to it regardless of how you feel about it. Some companies would be grateful to have such customers, who keep generating business by clinging to obsolete technology. I see nothing wrong with that as long as they are happy to pay the price.

 

 





I don't think there is ever a bad time to talk about how absurd war is, how old men make decisions and young people die. - George Clooney
 


 
 
 
 


648 posts

Ultimate Geek


  # 1781815 13-May-2017 23:40
One person supports this post
Send private message

The last place I worked at in broadcasting paid over $25,000 to update 2-3 workstations in an automation product including installation and licensing. Support was on top.

 

A $3,000 repair bill for a few motherboards and new hard disk drives work is not a big bill to pay compared to a full upgrade in that environment.

 

So cost is all relative to what it's being used for. Then there's what it's used for versus industry standard and familiarity to industry staff, and a proven track record for critical reliability.

 

For Joe Bloggs using 10 year old machines at his mechanic's workshop, probably not such a big deal if a new system has a few hick ups along the way.

 

 


1376 posts

Uber Geek


  # 1781819 14-May-2017 01:13
One person supports this post
Send private message

k1w1k1d:

 

I work for a nationwide company with about 15 branches and have only recently had my XP PC replaced with a W7 one. We still have some PC's and service department laptops running XP.

 

All the company computers have full admin rights, and UAC is turned off.

 

Most of the company PC's and laptops also have automatic updates turned off by the IT Dept. This is so they don't have Windows Update "hassles".

 

I can't even get them to update IE10 to IE11 on our server. Get quite a few unsupported browser notices, so have to jump back to IE11 or Firefox on the PC to get access.

 

I guess all of the above makes us a likely candidate for an attack?

 

 

 

We did have one of our salesmen open an attachment on his laptop which encrypted one of the server drives. Luckily they were able to stop it before it got to any of the others. Drive had to be formatted and reloaded from the previous night's backup.

 

 

 

 

 

 

That "IT Dept" should all be fired for incompetence, and to answer your question, it's only a matter of time unfortunately.


4697 posts

Uber Geek


  # 1781826 14-May-2017 07:23
Send private message

kiwirock:

 

The last place I worked at in broadcasting paid over $25,000 to update 2-3 workstations in an automation product including installation and licensing. Support was on top.

 

 

 

 

NexGen?


Stu

Hammered
5293 posts

Uber Geek

Moderator
Trusted
Lifetime subscriber

  # 1781838 14-May-2017 08:45
7 people support this post
Send private message

Rikkitic: ....... Second is that the customer is always right........

Sorry, but I disagree. Especially when it comes to IT.




Keep calm, and carry on posting.

 

 

 

Click to see full size Click to see full size


2917 posts

Uber Geek


  # 1781849 14-May-2017 10:13
Send private message




Common sense is not as common as you think.


69 posts

Master Geek


  # 1781850 14-May-2017 10:15
Send private message

Seems ironic to me that the writers of this crypto malware neglected to encrypt the string containing the domain name.

 

I guess that next time they'll know to obsfucate the critical strings in their code?

 

 

 

 


4141 posts

Uber Geek


  # 1781869 14-May-2017 11:28
One person supports this post
Send private message

vexxxboy:

 

Researcher finds kill switch

 

 

Yeah, but sinkholing the domain only stops this variant, it doesn't stop someone else rolling another version that checks a different Domain ( one that this time they control)-

 

Everyone needs to make sure that they are have the MS17-010. patch for current Win releases,

 

https://technet.microsoft.com/en-us/library/security/ms17-010.aspx

 

or this one for XP etc

 

http://www.catalog.update.microsoft.com/Search.aspx?q=KB4012598

 

along with having good backups and computing practices

 

 


1739 posts

Uber Geek


  # 1781877 14-May-2017 11:53
Send private message

MickeyD:

 

Seems ironic to me that the writers of this crypto malware neglected to encrypt the string containing the domain name.

 

I guess that next time they'll know to obsfucate the critical strings in their code?

 

 

 

Is that how it was detected?  I assumed someone analysed a victim PC's traffic


1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10
View this topic in a long page with up to 500 replies per page Create new topic



Twitter and LinkedIn »



Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

Microsoft launches first Experience Center worldwide for Asia Pacific in Singapore
Posted 13-Nov-2019 13:08


Disney+ comes to LG Smart TVs
Posted 13-Nov-2019 12:55


Spark launches new wireless broadband "Unplan Metro"
Posted 11-Nov-2019 08:19


Malwarebytes overhauls flagship product with new UI, faster engine and lighter footprint
Posted 6-Nov-2019 11:48


CarbonClick launches into Digital Marketplaces
Posted 6-Nov-2019 11:42


Kordia offers Microsoft Azure Peering Service
Posted 6-Nov-2019 11:41


Spark 5G live on Auckland Harbour for Emirates Team New Zealand
Posted 4-Nov-2019 17:30


BNZ and Vodafone partner to boost NZ Tech for SME
Posted 31-Oct-2019 17:14


Nokia 7.2 available in New Zealand
Posted 31-Oct-2019 16:24


2talk launches Microsoft Teams Direct Routing product
Posted 29-Oct-2019 10:35


New Breast Cancer Foundation app puts power in Kiwi women's hands
Posted 25-Oct-2019 16:13


OPPO Reno2 Series lands, alongside hybrid noise-cancelling Wireless Headphones
Posted 24-Oct-2019 15:32


Waikato Data Scientists awarded $13 million from the Government
Posted 24-Oct-2019 15:27


D-Link launches Wave 2 Unified Access Points
Posted 24-Oct-2019 15:07


LG Electronics begins distributing the G8X THINQ
Posted 24-Oct-2019 10:58



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Support Geekzone »

Our community of supporters help make Geekzone possible. Click the button below to join them.

Support Geezone on PressPatron



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.