Computers WannaCry Ransomware

carlos3652 · 05-13-2017, 03:43 AM

Haven't seen this posted anywhere -
And unsure if this will be moved to DC when it's all said and done (NSA related) but thought this was generic enough for the lounge.

Massive ransomware infection hits computers in 99 countries

https://www.google.com/amp/www.bbc.c...s/amp/39901382

Eureka · 05-13-2017, 11:13 AM

No one is clicking on that link lol

carlos3652 · 05-13-2017, 12:26 PM

Lol... I'll post the info ...

A massive cyber-attack using tools believed to haven't been stolen from the US National Security Agency (NSA) has struck organisations around the world.

Cyber-security firm Avast said it had seen 75,000 cases of the ransomware - known as WannaCry and variants of that name - around the world.

There are reports of infections in 99 countries, including Russia and China.

Among the worst hit was the National Health Service (NHS) in England and Scotland.

The BBC understands about 40 NHS organisations and some medical practices were hit, with operations and appointments cancelled.

How did the cyber-attack unfold?

The malware spread quickly on Friday, with medical staff in the UK reportedly seeing computers go down "one by one".

NHS staff shared screenshots of the WannaCry programme, which demanded a payment of $300 (£230) in virtual currency Bitcoin to unlock the files for each computer.

Throughout the day other, mainly European countries, reported infections.

Some reports said Russia had seen more infections than any other single country. Domestic banks, the interior and health ministries, the state-owned Russian railway firm and the second largest mobile phone network were all reported to have been hit.

Russia's interior ministry said 1,000 of its computers had been infected but the virus was swiftly dealt with and no sensitive data was compromised.

In Spain, a number of large firms - including telecoms giant Telefonica, power firm Iberdrola and utility provider Gas Natural - were also hit, with reports that staff at the firms were told to turn off their computers.

People tweeted photos of affected computers including a local railway ticket machine in Germany and a university computer lab in Italy.

France's car-maker Renault, Portugal Telecom, the US delivery company FedEx and a local authority in Sweden were also affected.

China has not officially commented on any attacks it may have suffered, but comments on social media said a university computer lab had been compromised.

chinaski · 05-13-2017, 12:30 PM

Some guy figured out that a domain name hidden in the malware code was unregistered...he bought it, and halted the attack...for now. But apparently it can be rebooted somehow.

https://www.theguardian.com/technolo...e-cyber-attack

**Bowser** · 05-13-2017, 12:36 PM

Ironically enough, I just started reading this book -

https://www.amazon.com/CyberStorm-Ma.../dp/B00BT4QRHG

RippedmyFlesh · 05-13-2017, 02:50 PM

Sucks for many but am I the only one who liked this?

Some reports said Russia had seen more infections than any other single country.

chinaski · 05-13-2017, 02:57 PM

Quote:

Originally Posted by RippedmyFlesh

Sucks for many but am I the only one who liked this?

Some reports said Russia had seen more infections than any other single country.

Considering that Russia is usually the source of these types of malware, I have no problem with it.

Hog's Gone Fishin · 05-13-2017, 02:58 PM

Does anyone on here know how to hack. I want to learn. Thinking about Hacking something.

Fish · 05-13-2017, 10:22 PM

Just a reminder that routine system updates are incredibly important. This exploit targeted something that had been patched 3 months previously. Apply routine system updates, and you easily avoid this kind of thing.

Squalor2 · 05-13-2017, 10:42 PM

Quote:

Originally Posted by Fish

Just a reminder that routine system updates are incredibly important. This exploit targeted something that had been patched 3 months previously. Apply routine system updates, and you easily avoid this kind of thing.

windows based right? even if you have a different browser than IE or Chrome, it wrecks havoc on a windows op?

Fish · 05-13-2017, 11:07 PM

Yeah, it exploits a Windows only issue that was patched months ago....

kcfanXIII · 05-13-2017, 11:35 PM

At this point Windows has released a patch for XP and Windows 8. Pretty big deal since they are both beyond EOL support. Very unusual. Read somewhere the attackers have only managed to make about 28,000 dollars off the attack.

kcfanXIII · 05-13-2017, 11:50 PM

http://thehackernews.com/2017/05/wan...er-attack.html

They are expecting a second wave now, with out the "Killswitch."

The virus uses a vulnerability in SMB to propagate to other unpatched computers on the network.

But yeah, patch your computers...

HonestChieffan · 05-14-2017, 04:51 AM

Last night at dinner, this was the table conversation at table next to us...it became loud enough to overhear. One of the chaps was clearly in the data business somehow and was lecturing his companions on how this came about. He had his mom and dad and looked like sister with him. He was on a major roll describing the underworld of hackers and malware etc. when he let go with a diatribe vs Trump and the fact this happened as a result of Rudy Gulliani being the man in charge of all cyber issues now in the US.

He was almost in a rage at that point and his mother had to tell him to just stop....lets enjoy dinner dear, you know these things upset you...he was like 35.

But for all that at least we know Rudy runs the shadow cyber office in the underbelly of the country.

kcfanXIII · 05-15-2017, 02:43 AM

Meh, I'm not sure a politician is in charge of "the shadow cyber office." This was the NSA developing a tool kit and it getting leaked on the dark web. Not sure if the leak was intentional, though it wouldn't surprise me to find out it was. The speed at which it propagated is unprecedented. However according to bit coin records, the hackers really haven't made much money off the event. What scares me is with such high success at spreading the ransomware, and the low sum of money raised, it really feels like a beta run while the bad guys prep for something bigger...
I've been dealing with this ****ing out break the last two nights at work, while we are short staffed... And the worst part is if people/businesses would stay on top of updates, this wouldn't even be an issue. MS patched the vulnerability over 2 months ago, and have even released updates for EOL OS... So these assholes only have themselves to blame, and should just pay the 300 bucks as a reminder to not be a dumbass and patch their systems...

05-13-2017, 03:43 AM
carlos3652 El Diablo Join Date: Dec 2004 Casino cash: $3936679	WannaCry Ransomware Haven't seen this posted anywhere - And unsure if this will be moved to DC when it's all said and done (NSA related) but thought this was generic enough for the lounge. Massive ransomware infection hits computers in 99 countries https://www.google.com/amp/www.bbc.c...s/amp/39901382
Posts: 6,066

05-13-2017, 11:13 AM	#2
Eureka C Chiefs once a year! Join Date: Dec 2012 Location: Cali Casino cash: $1956097	No one is clicking on that link lol
Posts: 7,633

05-13-2017, 12:26 PM	#3
carlos3652 El Diablo Join Date: Dec 2004 Casino cash: $3936679	Lol... I'll post the info ... A massive cyber-attack using tools believed to haven't been stolen from the US National Security Agency (NSA) has struck organisations around the world. Cyber-security firm Avast said it had seen 75,000 cases of the ransomware - known as WannaCry and variants of that name - around the world. There are reports of infections in 99 countries, including Russia and China. Among the worst hit was the National Health Service (NHS) in England and Scotland. The BBC understands about 40 NHS organisations and some medical practices were hit, with operations and appointments cancelled. How did the cyber-attack unfold? The malware spread quickly on Friday, with medical staff in the UK reportedly seeing computers go down "one by one". NHS staff shared screenshots of the WannaCry programme, which demanded a payment of $300 (£230) in virtual currency Bitcoin to unlock the files for each computer. Throughout the day other, mainly European countries, reported infections. Some reports said Russia had seen more infections than any other single country. Domestic banks, the interior and health ministries, the state-owned Russian railway firm and the second largest mobile phone network were all reported to have been hit. Russia's interior ministry said 1,000 of its computers had been infected but the virus was swiftly dealt with and no sensitive data was compromised. In Spain, a number of large firms - including telecoms giant Telefonica, power firm Iberdrola and utility provider Gas Natural - were also hit, with reports that staff at the firms were told to turn off their computers. People tweeted photos of affected computers including a local railway ticket machine in Germany and a university computer lab in Italy. France's car-maker Renault, Portugal Telecom, the US delivery company FedEx and a local authority in Sweden were also affected. China has not officially commented on any attacks it may have suffered, but comments on social media said a university computer lab had been compromised. __________________
Posts: 6,066

05-13-2017, 12:30 PM	#4
chinaski Veteran Join Date: Feb 2015 Location: He/Him Casino cash: $8739922	Some guy figured out that a domain name hidden in the malware code was unregistered...he bought it, and halted the attack...for now. But apparently it can be rebooted somehow. https://www.theguardian.com/technolo...e-cyber-attack
Posts: 2,226

05-13-2017, 12:36 PM	#5
Bowser sorta mod-ish Join Date: Jan 2004 Location: KC North Casino cash: $3061616	Ironically enough, I just started reading this book - https://www.amazon.com/CyberStorm-Ma.../dp/B00BT4QRHG
Posts: 101,242

05-13-2017, 02:50 PM	#6
RippedmyFlesh Veteran Join Date: Dec 2008 Location: New York Casino cash: $10005817	Sucks for many but am I the only one who liked this? Some reports said Russia had seen more infections than any other single country.
Posts: 4,848

05-13-2017, 02:58 PM	#8
Hog's Gone Fishin Fish are scared of me Join Date: Nov 2001 Casino cash: $1260477	Does anyone on here know how to hack. I want to learn. Thinking about Hacking something.
Posts: 40,468

05-13-2017, 10:22 PM	#9
Fish Ain't no relax! Join Date: Sep 2005 Casino cash: $1818919	Just a reminder that routine system updates are incredibly important. This exploit targeted something that had been patched 3 months previously. Apply routine system updates, and you easily avoid this kind of thing. __________________
Posts: 47,754

05-13-2017, 11:07 PM	#11
Fish Ain't no relax! Join Date: Sep 2005 Casino cash: $1818919	Yeah, it exploits a Windows only issue that was patched months ago.... __________________
Posts: 47,754

05-13-2017, 11:35 PM	#12
kcfanXIII Ride on! Join Date: Oct 2005 Location: Galaxy far far away Casino cash: $10013172	At this point Windows has released a patch for XP and Windows 8. Pretty big deal since they are both beyond EOL support. Very unusual. Read somewhere the attackers have only managed to make about 28,000 dollars off the attack. __________________ Faster, faster, until the thrill of speed, overcomes the fear of death.
Posts: 5,470

05-13-2017, 11:50 PM	#13
kcfanXIII Ride on! Join Date: Oct 2005 Location: Galaxy far far away Casino cash: $10013172	http://thehackernews.com/2017/05/wan...er-attack.html They are expecting a second wave now, with out the "Killswitch." The virus uses a vulnerability in SMB to propagate to other unpatched computers on the network. But yeah, patch your computers... __________________ Faster, faster, until the thrill of speed, overcomes the fear of death.
Posts: 5,470

05-14-2017, 04:51 AM	#14
HonestChieffan Seeking the Truth daily Join Date: Jan 2006 Location: In the Country in MO Casino cash: $1774309	Last night at dinner, this was the table conversation at table next to us...it became loud enough to overhear. One of the chaps was clearly in the data business somehow and was lecturing his companions on how this came about. He had his mom and dad and looked like sister with him. He was on a major roll describing the underworld of hackers and malware etc. when he let go with a diatribe vs Trump and the fact this happened as a result of Rudy Gulliani being the man in charge of all cyber issues now in the US. He was almost in a rage at that point and his mother had to tell him to just stop....lets enjoy dinner dear, you know these things upset you...he was like 35. But for all that at least we know Rudy runs the shadow cyber office in the underbelly of the country. __________________ “Make no mistake. If you try anything to raise the cost of vishessavatubs, I will veto it.” - Joe Biden, SOTU 2023
Posts: 53,463

05-15-2017, 02:43 AM	#15
kcfanXIII Ride on! Join Date: Oct 2005 Location: Galaxy far far away Casino cash: $10013172	Meh, I'm not sure a politician is in charge of "the shadow cyber office." This was the NSA developing a tool kit and it getting leaked on the dark web. Not sure if the leak was intentional, though it wouldn't surprise me to find out it was. The speed at which it propagated is unprecedented. However according to bit coin records, the hackers really haven't made much money off the event. What scares me is with such high success at spreading the ransomware, and the low sum of money raised, it really feels like a beta run while the bad guys prep for something bigger... I've been dealing with this ****ing out break the last two nights at work, while we are short staffed... And the worst part is if people/businesses would stay on top of updates, this wouldn't even be an issue. MS patched the vulnerability over 2 months ago, and have even released updates for EOL OS... So these assholes only have themselves to blame, and should just pay the 300 bucks as a reminder to not be a dumbass and patch their systems... __________________ Faster, faster, until the thrill of speed, overcomes the fear of death.
Posts: 5,470