Updated: Large Global Scale Cyber-Attack
14-05-2017, 09:46
|
#46
|
Perfect Soldier
Join Date: Mar 2009
Location: Worthing West Sussex
Age: 66
Services: VM 500M SH3 thingy
in modem mode
XL TV V6 Sony Bravia smart TV and M phone
Posts: 10,997
|
Re: Large Scale Cyber-Attack Hits 40 NHS Hospitals
M$ still support embedded* XP systems (until ~2020) so they're just making public a patch that exists anyway.
*Gaming machines, pub quiz, airport schedule displays etc
__________________
History is much like an endless waltz: The three beats of war, peace and revolution continue on forever.
However history will change with my coronation - Mariemaia Khushrenada
|
|
|
14-05-2017, 09:50
|
#47
|
Inactive
Join Date: Oct 2006
Location: Right here!
Posts: 22,316
|
Re: Large Scale Cyber-Attack Hits 40 NHS Hospitals
Quote:
Originally Posted by papa smurf
if we didn't have progress we would just grind to a halt ,this is the governments fault for not investing in the technology not microsoft's for developing it
|
It's not just government though is it. Far more commercial organisations have been hit.
Maybe MS could just develop products which don't have so many serious vulnerabilities that require patching in the first place.
|
|
|
14-05-2017, 10:04
|
#48
|
Remoaner
Cable Forum Team
Join Date: Mar 2004
Posts: 32,233
|
Re: Large Scale Cyber-Attack Hits 40 NHS Hospitals
XP is a very old operating system at this point and for major architectural changes they need to move on with new releases. XP was supported for 12 years and the British government had a contract for even further support which they, foolishly, cancelled in 2015. How long can Microsoft be expected to continue providing support for an operating system released in 2001? The world has moved on.
As papa smurf said the fault here lies with the Government and the NHS. You simply cannot justify using XP so long after it's release and long past it's generous support window ending. They had more than enough time to to update or commission new software that was dependent on XP. They had more than enough time to update the hardware. Microsoft have been aggressively warning about the end of support for over 5 years.
An XP machine connected to the internet is a recipe for disaster.
|
|
|
14-05-2017, 10:06
|
#49
|
cf.mega poster
Join Date: Sep 2010
Location: Oxfordshire
Services: TV XL ,TiVo X 2,
200Mb Broadband
XL phone
Posts: 1,158
|
Re: Large Scale Cyber-Attack Hits 40 NHS Hospitals
Quote:
Originally Posted by Osem
Maybe MS could just develop products which don't have so many serious vulnerabilities that require patching in the first place.
|
Well you can always use Apple instead
I can remember sitting in front of a terminal and it would go unresponsive. Ah yes the computer is about to crash and restart and thats back in the 1980's.
|
|
|
14-05-2017, 10:07
|
#50
|
Remoaner
Cable Forum Team
Join Date: Mar 2004
Posts: 32,233
|
Re: Large Scale Cyber-Attack Hits 40 NHS Hospitals
Windows 10 is more secure. The nature of software means it's always an arms-race with these things and the nature of the threat evolves.
|
|
|
14-05-2017, 10:10
|
#51
|
Perfect Soldier
Join Date: Mar 2009
Location: Worthing West Sussex
Age: 66
Services: VM 500M SH3 thingy
in modem mode
XL TV V6 Sony Bravia smart TV and M phone
Posts: 10,997
|
Re: Large Scale Cyber-Attack Hits 40 NHS Hospitals
Quote:
Originally Posted by Damien
An XP machine connected to the internet is a recipe for disaster.
|
I beg to differ, my XP SP2 machine is permanently connected to the net, has never been patched since the OS was installed over 10 years ago and does not get infected. The issue is NOT the age of the OS but the stupidity/naivety of the staff using the computers.
This worm affects all versions of windows upto and including W10.
__________________
History is much like an endless waltz: The three beats of war, peace and revolution continue on forever.
However history will change with my coronation - Mariemaia Khushrenada
Last edited by heero_yuy; 14-05-2017 at 10:10.
Reason: Fixed quotes
|
|
|
14-05-2017, 10:16
|
#52
|
Remoaner
Cable Forum Team
Join Date: Mar 2004
Posts: 32,233
|
Re: Large Scale Cyber-Attack Hits 40 NHS Hospitals
Quote:
Originally Posted by heero_yuy
I beg to differ, my XP SP2 machine is permanently connected to the net, has never been patched since the OS was installed over 10 years ago and does not get infected. The issue is NOT the age of the OS but the stupidity/naivety of the staff using the computers.
This worm affects all versions of windows upto and including W10.
|
XP2 stopped receiving security patches years ago. It may be possible to keep to secure if you know what you're doing but vulnerabilities remain.
I hadn't heard Windows 10 was vulnerable to this. Ars state it's not: https://arstechnica.co.uk/security/2...dows-versions/ whereas previous ones such as Windows 8 and 7 are still in their extended support cycles so should have been patched already. Any Windows 8 or 7 machine that kept up to date would also not be vulnerable.
This post better explains what happened: https://www.troyhunt.com/everything-...pt-ransomware:
Quote:
It's able to do this where the machine supporting the protocol has not received the critical MS-17-010 security patch from Microsoft which was issued on the 14th of March and addresses vulnerabilities in SMBv1 (Microsoft doesn't mention SMBv2 but Kaspersky has stated that WannaCry targets v2 as has Symantec). In other words, you had to be almost 2 months behind in your patch cycle in order to get hit with this. Windows 10 machines were not subject to the vulnerability this patch addressed and are therefore not at risk of the malware propagating via this vector. Likewise, I've seen no commentary suggesting that other SMB implementations such as Samba are impacted.
|
So the flaw in previous versions of Windows allowed this to spread so fast. A single computer might be hit by the negligence of staff but unpatched computers caused to to spread.
Last edited by Damien; 14-05-2017 at 10:58.
|
|
|
14-05-2017, 10:57
|
#53
|
Rise above the players
Join Date: Mar 2008
Location: Wokingham
Services: 2 V6 boxes with 360 software, Now, ITVX, Amazon, Netflix, Lionsgate+, Apple+, Disney+, Paramount +,
Posts: 14,589
|
Re: Large Scale Cyber-Attack Hits 40 NHS Hospitals
Quote:
Originally Posted by Damien
XP is a very old operating system at this point and for major architectural changes they need to move on with new releases. XP was supported for 12 years and the British government had a contract for even further support which they, foolishly, cancelled in 2015. How long can Microsoft be expected to continue providing support for an operating system released in 2001? The world has moved on.
As papa smurf said the fault here lies with the Government and the NHS. You simply cannot justify using XP so long after it's release and long past it's generous support window ending. They had more than enough time to to update or commission new software that was dependent on XP. They had more than enough time to update the hardware. Microsoft have been aggressively warning about the end of support for over 5 years.
An XP machine connected to the internet is a recipe for disaster.
|
It's not the date of release that we should be looking at, but the date it ceased to be sold. I've had to replace my Windows Vista with Windows 10 after only about 7 years' or so use out of it. They should continue to support software for about 15 years at least after the last date they stopped selling it. Not everyone can afford to replace their computer on a regular basis, which is what I had to do.
|
|
|
14-05-2017, 11:35
|
#54
|
Inactive
Join Date: Oct 2006
Location: Right here!
Posts: 22,316
|
Re: Large Scale Cyber-Attack Hits 40 NHS Hospitals
Quote:
Originally Posted by arcimedes
Well you can always use Apple instead
|
lol The NHS would be bankrupt if they did that.
I've managed to stay trouble free since the days of Win 3.1 (touching wood ) so quite happy with with what MS have provided. Then again I don't go surfing dodgy sites and blindly clicking on every email I receive.
I know personal responsibility seems to be going out of fashion in some areas of our lives but maybe HMG should launch a new public information campaign. How about :
THINK before you CLICK!!
Last edited by Osem; 14-05-2017 at 11:44.
|
|
|
14-05-2017, 11:47
|
#55
|
Bah Humbug!!
Join Date: Feb 2004
Location: Glasgow
Age: 43
Services: Sky Q 2Tb, Sky Q mini, boxsets and Sports & Movies HD, Sky Fibre unlimited
Posts: 13,803
|
Re: Large Scale Cyber-Attack Hits 40 NHS Hospitals
Now over 200,000 people affected in 150 countries.
Cyber-attack threat escalating - Europol - http://www.bbc.co.uk/news/technology-39913630
__________________
AMD Ryzen 7 7700 | 32GB DDR5 6000 | RADEON 7900XT | WD 2TB NVME
|
|
|
14-05-2017, 11:53
|
#56
|
Guest
|
Re: Large Scale Cyber-Attack Hits 40 NHS Hospitals
I actually saw on a gaming forum someone admitting they were now opening any email so they could see what this does and it was ok because if anything happened to his laptop he would get his dad to sort it out. Suddenly made it clear to me how these things spread so quick.
|
|
|
14-05-2017, 11:58
|
#57
|
Inactive
Join Date: Oct 2006
Location: Right here!
Posts: 22,316
|
Re: Large Scale Cyber-Attack Hits 40 NHS Hospitals
Quote:
Originally Posted by RizzyKing
I actually saw on a gaming forum someone admitting they were now opening any email so they could see what this does and it was ok because if anything happened to his laptop he would get his dad to sort it out. Suddenly made it clear to me how these things spread so quick.
|
There really are some very simple//stupid people out there and no matter what HMG (or anyone else for that matter) does they can't really prevent naive idiots or even dangerous individuals with terrorist sympathies from doing such things.
|
|
|
14-05-2017, 13:54
|
#58
|
Remoaner
Cable Forum Team
Join Date: Mar 2004
Posts: 32,233
|
Re: Large Scale Cyber-Attack Hits 40 NHS Hospitals
Quote:
Originally Posted by Osem
lol The NHS would be bankrupt if they did that.
I've managed to stay trouble free since the days of Win 3.1 (touching wood ) so quite happy with with what MS have provided. Then again I don't go surfing dodgy sites and blindly clicking on every email I receive.
I know personal responsibility seems to be going out of fashion in some areas of our lives but maybe HMG should launch a new public information campaign. How about :
THINK before you CLICK!!
|
Yup.. Although you can also get infected from visiting mainstream sites. There are cases where someone manages to place malicious code into those ad networks which in turn exploits a bug in the browser or OS to install itself and then game over man, game over.
|
|
|
15-05-2017, 08:22
|
#59
|
vox populi vox dei
Join Date: Mar 2007
Location: the last resort
Services: every thing
Posts: 13,739
|
Re: Large Scale Cyber-Attack Hits 40 NHS Hospitals
Smurf-mad IT expert who saved the world from ransomware virus now helping GCHQ prevent new attacks
http://www.telegraph.co.uk/news/2017...e-virus-lives/
__________________
To be or not to be, woke is the question Whether 'tis nobler in the mind to suffer. The slings and arrows of outrageous wokedome, Or to take arms against a sea of wokies. And by opposing end them.
|
|
|
15-05-2017, 08:29
|
#60
|
Perfect Soldier
Join Date: Mar 2009
Location: Worthing West Sussex
Age: 66
Services: VM 500M SH3 thingy
in modem mode
XL TV V6 Sony Bravia smart TV and M phone
Posts: 10,997
|
Re: Large Scale Cyber-Attack Hits 40 NHS Hospitals
Quote:
Originally Posted by Damien
Yup.. Although you can also get infected from visiting mainstream sites. There are cases where someone manages to place malicious code into those ad networks which in turn exploits a bug in the browser or OS to install itself and then game over man, game over.
|
That's why I use a script blocker. It's the most likely way for a malicious website to gain access to your machine. I also blacklist all those trackers that target advertising.
__________________
History is much like an endless waltz: The three beats of war, peace and revolution continue on forever.
However history will change with my coronation - Mariemaia Khushrenada
|
|
|
Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
|
|
Posting Rules
|
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
HTML code is Off
|
|
|
All times are GMT +1. The time now is 14:35.
|