ebrke Posted May 12, 2017 Share Posted May 12, 2017 Ouch--ransomware attack spreading worldwide: https://www.washingtonpost.com/world/hospitals-across-england-report-it-failure-amid-suspected-major-cyber-attack/2017/05/12/84e3dc5e-3723-11e7-b373-418f6849a004_story.html 2 Quote Link to comment Share on other sites More sharing options...
V.T. Eric Layton Posted May 12, 2017 Share Posted May 12, 2017 Pardon me just a moment while I sit back and gloat. What? You didn't have your network secured? You didn't have access to recently made backups of your data? Your anti-virus/anti-malware wasn't up-to-date? You still allowed telnet into your servers? You weren't using a fire-walled router? Well, that's gonna' SUCK for you, then. 2 Quote Link to comment Share on other sites More sharing options...
onederer Posted May 13, 2017 Share Posted May 13, 2017 Lucky me, I use Linux, so I'm still loose and free to operate. With Windows, I was not able to install Win. 10 when it was free. Never able to complete the entire installation. In spite of using a proxy, and a firewall (ZoneAlarm), I got hit with ransomware. Disgusted, I just left it that way, since last year. I'd have to totally reinstall Win. 7, to overcome the disaster. Actually the only reason that I need to use Windows, is to update my TomTom and Magillan gps devices. Too bad that can't be done via Linux, I could then totally dump Windows. Cheers! 2 Quote Link to comment Share on other sites More sharing options...
raymac46 Posted May 13, 2017 Share Posted May 13, 2017 I also read that a lot of folks affected by this are dumb enough to continue running Windows XP or Windows Server 2003. Microsoft has apparently released patches they do for their Custom Support clients to counteract this problem. It's not much fun for anyone who gets nailed by one of these ransomware worms. I had a friend who was hit and we just scrapped all his data. We were able to get some photos and docs back from his old PC that he still kept in the basement. What bugs me is why would anyone post a known and powerful hacking tool out on the Web for any Black Hat to download and modify. Quote Link to comment Share on other sites More sharing options...
V.T. Eric Layton Posted May 13, 2017 Share Posted May 13, 2017 The dumbest thing of all about this massive ransom campaign is that it's activated (and spread) by the usual method... CLICKING ON UNKNOWN ATTACHMENTS IN EMAILS Can you believe that people still do this? Doesn't anyone know how to right click on an attachment and request that your AV run a scan before opening? How 'bout just NOT clicking on attachments at all? Yeeeesh! This method of infecting systems has been around since they ransomed the 2X2 animal data from Noah's system. C'mon, people! 1 Quote Link to comment Share on other sites More sharing options...
ebrke Posted May 13, 2017 Author Share Posted May 13, 2017 Sadly, there are a lot of people like my mother and her friends who are indeed not capable. Of course, there are others who should be capable but aren't for some reason. 2 Quote Link to comment Share on other sites More sharing options...
raymac46 Posted May 14, 2017 Share Posted May 14, 2017 If you are "not capable" you still have some options assuming you know someone who is capable: Get a good security suite like ESET and keep it up to date. Get Malware Bytes Pro with real time protection. Run Linux. Don't use email if you are too dumb to avoid attachments. Don't connect to the Internet. Play games offline. Don't use a computer at all. There are many times I wish people like Lillian would just take option 6. 2 Quote Link to comment Share on other sites More sharing options...
Dr. J Posted May 14, 2017 Share Posted May 14, 2017 (edited) I came across this a little while ago... seems even "technically competent" people can get sloppy and subsequently hacked... https://forums.gentoo.org/viewtopic-t-1060828.html A little down the thread the poor sod admits to running Firefox as root... that's probably how they got in. Yeah, I'm guilty of running FireFox as root. Shame on me - I should have known better. Edited May 14, 2017 by Dr. J 1 Quote Link to comment Share on other sites More sharing options...
onederer Posted May 14, 2017 Share Posted May 14, 2017 Well, it looks like even Linux has gotten hit by ransomware. This time, Gentoo. Thus far, I've been spared of getting the end of the bad stick. I wonder if it's because I have a layer of IP addresses by using a Zenmate proxy, Clamav, and a Linux defrag program, and a keylogger sniffer? It could also be because I still use PCLinuxOS, because of it's stability. Another thing comes to mind. Have any of you ever heard of any BSD systems being attacked by ransomware? Not that many users would make that OS system a very low peofile target. Cheers! Quote Link to comment Share on other sites More sharing options...
raymac46 Posted May 14, 2017 Share Posted May 14, 2017 I think that any Linux user could get hacked if they browse the Internet as root. Quote Link to comment Share on other sites More sharing options...
onederer Posted May 14, 2017 Share Posted May 14, 2017 That's questionable, because the file system of Linux is different than Windows. Odds are that the ransomware was designed to attack Microsoft's baby. After all, Windows is the favorite target because there are so many users worldwide. That makes it very tempting for jerks that purvey their malware. I suppose that there are a few worms floating around the Internet just looking for Linux users, and those could be disastrous for some poor users. Quote Link to comment Share on other sites More sharing options...
ebrke Posted May 14, 2017 Author Share Posted May 14, 2017 If you are "not capable" you still have some options assuming you know someone who is capable: Get a good security suite like ESET and keep it up to date. Get Malware Bytes Pro with real time protection. Run Linux. Don't use email if you are too dumb to avoid attachments. Don't connect to the Internet. Play games offline. Don't use a computer at all. There are many times I wish people like Lillian would just take option 6. Well, I have my mother utilizing your steps 1 and 2 and she uses a limited user account--doesn't even know the admin password. She usually asks me if she gets any attachments because she can't figure out how to access them. She's 89 now. 1 Quote Link to comment Share on other sites More sharing options...
raymac46 Posted May 14, 2017 Share Posted May 14, 2017 That's questionable, because the file system of Linux is different than Windows. Odds are that the ransomware was designed to attack Microsoft's baby. After all, Windows is the favorite target because there are so many users worldwide. That makes it very tempting for jerks that purvey their malware. I suppose that there are a few worms floating around the Internet just looking for Linux users, and those could be disastrous for some poor users. You can still get hacked through things like Flash if you are dumb enough to run as root. Maybe not this particular thing but the Gentoo guy was infected and that's Linux. Don't assume you are totally immune if you don't practice safe computing. 1 Quote Link to comment Share on other sites More sharing options...
V.T. Eric Layton Posted May 14, 2017 Share Posted May 14, 2017 3. Run Linux. That's the one! Of course, option 6 wasn't a bad idea either. 1 Quote Link to comment Share on other sites More sharing options...
abarbarian Posted May 15, 2017 Share Posted May 15, 2017 This is a really disgusting attack. Several freiends have been caused a great deal of trouble due to the NHS being compromised. Find the culprits and hang em high. Naturally you would need to hang the NHS techs for setting up th NHS system so sloppily. Oh and it might be a good idea to hang all the MP's past and present who allowed such a shoddy computer system to be built and run. I think I will stand for Prime Minister at the upcoming elections with the policy outlined above. recon I would stand a decent chance of election. 2 Quote Link to comment Share on other sites More sharing options...
V.T. Eric Layton Posted May 15, 2017 Share Posted May 15, 2017 Don't forget to hang all those fatcat Microsoft folks. Quote Link to comment Share on other sites More sharing options...
raymac46 Posted May 15, 2017 Share Posted May 15, 2017 Thanks to the action of a security geek in the UK who activated a domain in the code, WannaCry 1.0 was shut down via a kill switch. However looks like WannaCry 2.0 is already out there without the kill switch provision. So stay tuned. https://www.neowin.net/news/wannacry-ransomware-evolves-to-combat-kill-switch 2 Quote Link to comment Share on other sites More sharing options...
V.T. Eric Layton Posted May 16, 2017 Share Posted May 16, 2017 Have I mentioned lately that I LOVE Linux? 1 Quote Link to comment Share on other sites More sharing options...
Dr. J Posted May 16, 2017 Share Posted May 16, 2017 I just found out that my local library got hit over the weekend... All of their public machines were running Windows 7, but god knows what was keeping their network up in the background. Oddly enough, I had previously noticed LibreOffice on the public machines instead of the MS variant... If they'll ever switch over to Ubuntu LTS on those, I guess it'll happen now... Quote Link to comment Share on other sites More sharing options...
Corrine Posted May 16, 2017 Share Posted May 16, 2017 That means that the library's public Windows 7 machines had not received the March MS17-010 security update. 2 Quote Link to comment Share on other sites More sharing options...
abarbarian Posted May 17, 2017 Share Posted May 17, 2017 Don't forget to hang all those fatcat Microsoft folks. Well they are not really at fault in this instance. Quote Link to comment Share on other sites More sharing options...
V.T. Eric Layton Posted May 17, 2017 Share Posted May 17, 2017 So? Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.