Telefonica the biggest Spanish ISP got infected by ransonwar

top kek

>>60343547
Epic link sergio

>>60343547
What can you expect from Spanish speakers? They're sub humans.

File: 1494180590732.jpg (249KB, 438x768px) Image search: [Google]

249KB, 438x768px

>>60343547
>windows
Not even ones.

It looks serious.
Other big companies (clearly clients) reported attacks and subsequently took all their systems online.

>I am scared /g/ should I go dark or risk getting infected by my ISP?

>>60343547
>using windows

>>60343564
>>60343547
https://www.bleepingcomputer.com/news/security/telefonica-tells-employees-to-shut-down-computers-amid-massive-ransomware-outbreak/

>>60343580
>mitm on all plaintext HTTP traffic and inject the javascript exploit to pages you visit
if they haven't done it yet I guess you're safe

>>60343547
This is on the internal network and doesn't affect customer services. (They're my ISP)

>>60343614
>not using https everywhere

>>60343547
$300 is a deal. 3rd worlders get all the breaks

>>60343663
It is not only internal. CNI just released a note saying the attack is affecting a large number of companies. So somehow it got into a network used by them. It could very well escape into normal consumers next.

>>60343756
Enjoy your ban :^)

$300 or they'll get rid of my 1tb of junk for me, oh no what should i do

>>60343572
Ahmed pls

>manolos in charge of security
t. Manolo

>>60343547
Why is bitcoin still not criminalized? It's only used by criminals.

>>60343663
Esperemos que no

>>60343953
because it's a honeypot

>>60343547
its nothing

Just the fucking dumb employers at the office got infected, those computers usally run Windows XP and their IT just dosent give a fuck. All those "big" crops that dont hire an external security firm probably look like that to.

>>60343953
NSA controls the bitcoin

>>60343702
the plugin is useless tho. it supports only very popular normie sites that force https anyway. any less known site wont be on the list.

File: face.jpg (229KB, 627x720px) Image search: [Google]

229KB, 627x720px

>>60343953
>Why is x still not criminalized? It's only used by criminals.
Really makes you think

>British health system

F

http://www.bbc.com/news/health-39899646

Portuguesefag, we have a couple ISP's attacked as well (read dumb employees opening attachments), seems to be a large scale thing.

Latin American anon here.
All my colleges are collectively losing their shit, turning off fucking servers and backing up whatever they can.
All higher ups are on meeting and my telegram feed is stacking up.
Even transbank got hit and banking companies are already blocking debit card passwords so clients change theirs and don't get hit.
Will keep repoting.

File: everybodypanic.gif (101KB, 160x133px) Image search: [Google]

101KB, 160x133px

It is going global.

NHS England has been hit, so have a bunch of places in mainland Europe.

I wonder who's responsible for this mess.

>>60345766
Microsoft.

>>60345766
GCHQ only they would have access to the NHS central server desu

or its just two nonces who accessed the same porn in both companies

>>60345835
Anyone could walk in with a USB stick loaded with this piece of ransomware and install it on an NHS computer. They use XP and Microshit stopped supporting it with updates a while ago.

>>60345835
There are reports around that it could be a new zero-day exploit and thus no one is safe.

>>60343547
hey that's my ISP

>>60345766
China.

>>60343547
>300$
>biggest ISP
Just pay it? Fuck. What do they have to lose?

>>60343547
YOU HAVE TO GO BACK JOSE!
I want all these mexicans to leave. Go fucking find a Chan for your language.

>>60345700
>Even transbank got hit
shieeeeeeeet

There's some faggot on twitter claiming his router got infected and it's attacking his devices.

Stay safe movistar/telefónica anons, backup your stuff, disconnect from network drives, and pray the gay away

>>60345943
>>>/pol/

máximo kek

>>60343828
kek

alternatively
>get cp or something on your hdd
>trying to get rid of it but don't want to be too specific when asking for help
>get ransomware
>welp, into the trash it does, job done

>>60343953
>only criminals use it
>better make it illegal
anon... they're already criminals, nothing would have changed

>>60345937
that's beside the point

>>60343547
>Using windows on anything but a gaymen computer
They're literally asking for it.

>>60346076
my name is Augusto

thanks for the (you)

File: ransom kek.png (47KB, 1159x621px) Image search: [Google]

47KB, 1159x621px

>>60343547
they fucking paid it

>>60346036
>>>/mexico/

>>60346100
Doesn't one payment cover only one computer? If they have several computers infected, they would have to pay for each infection, don't they?

File: 2559d1f778e33cf186bd0ece1fed94ef.jpg (114KB, 800x640px) Image search: [Google]

114KB, 800x640px

Is it actually not possible to retrieve the files without their service?

>>60343953
maybe we should forbid people spend real money too

>>60346221
Maybe we should forbid currency in general and use labor writs in its place.

>>60345943
>it's another amerifat doesn't know geography episode

>>60346180
They probably only paid for the computer with the most important information they need (and possibly don't even have backed up).

>>60346423
This. Probably the CEO's and for the sole reason to save his Minesweeper progress.

>>60346194
If they've encrypted it correctly, then you shouldn't be able to decrypt them. Sometimes they have bugs in their code which make it possible to decrypt.

File: trololololo.webm (277KB, 260x208px) Image search: [Google]

277KB, 260x208px

https://twitter.com/chemaalonso/status/862996031906205696
>IT'S NOT MY FAULT IT'S NOT MY FAULT IT'S NOT MY FAULT IT'S NOT MY FAULT IT'S NOT MY FAULT IT'S NOT MY FAULT IT'S NOT MY FAULT IT'S NOT MY FAULT
chema alonso BTFO

File: Screenshot_20170512-200733.png (1MB, 1080x1920px) Image search: [Google]

1MB, 1080x1920px

Shieet

>>60343547
me alegro
esa empresa es una pesadilla burocrata que donde nadie hace lo que debe hacer, y a todo el mundo le da igual
raro es que no pase mas habitualmente

WINBLOWS WAS A MISTAKE

If I was Microsoft I'd do the same.
Just update already to Windows 10 you fucking retards

>posts a link in OP

get the fuck back to plebbit

>>60347702
Get rekt Ryota

>>60346849
To be fair, he's pretty far into it already, would be a shame if he'd have to sweep all those mines all over again.

>>60344031
You can write your own rules, shitstain.

>>60343547
The worse part about an infected is is that isps have tried shit in the past such as adding adds to their subscribers page requests, so in theory if you infect an isp you could infect every single client of theirs.

Hopefully this will prove to isps and law makers that https, and unbreakable encryption is necessary.

it's this worldwide?

>>60346100
Isn't that illegal? What ever happened to not negatiating with terrorists? Send them icbms not bitcucks.

>>60349180
No, they'll use this as an excuse to do more of the same.

This is a not-up-to-date Windows problem only, right?

>>60345956
A router running windows? Who the hell in their right mind would do that?

>>60343547
Pros BRs, isso afeta a Vivo?

Also,
>trusting spics
>ever

It's happening!

>>60349250
Yes.
It is being rumored that this shit could include NSA-grade zero-days from the latest leak in its code.
If true it could also be a psyop to go against whisteblowers/leakers.

>>60347917
A lot of these companies run on ancient software that does not run on modern Windows and does not exist in modern form. Upgrading would be a catastrophic cost plus issues with service.

You can't fault a lot of small or medium sized businesses who have a program that works fine, but replacing it would cost over a year's worth of profits. So they protect the entry points best they can while the intranet runs old software. That's the issue here, ransomware for on the intranet and can self replicate without user input. It does look like it had escaped the intranet and spread to client companies

File: Incredulous Trump.gif (112KB, 500x372px) Image search: [Google]

112KB, 500x372px

>>60349180
>unbreakable encryption

Why don't people just use Linux?

What the fuck did they install that came with a ransomware?

>>60349564
Because end user plebs and a lot of IT Dept's don't know how to use it

>>60349592
They opened a PDF file which was attached to an e-mail

>>60343953
Criminals use knives to kill people. Why don't we ban knives? Lighters can be used to burn things. Why don't we ban lighters? You can run people over with a car. Why are cars not banned? You can smother people with a pillow. Why is bedding not banned? You can strangle someone with your hands. Why aren't we cutting everyone's hands off? Probably because we banned knives a while back.

Shut the fuck up.

>>60349140
its much easier to type https:// as url. the scripts for that addon are long and need coding skills.

File: 1469659496129.jpg (59KB, 640x480px) Image search: [Google]

59KB, 640x480px

>>60349564
Sadly, a kernel by itself gets you nowhere. To get a working system you need a shell, compilers, a library etc.

File: 31.png (255KB, 750x750px) Image search: [Google]

255KB, 750x750px

>tfw your ISP gets mentioned on /g/

Russian railways are almost paralyzed, everything is coordinated via radio and phones lol

>>60349564
usually any important things in big companies run on some bsd or linux.

>>60349648
>XML
>coding skills
anon...

>>60343547
You can't make this shit up.

>>60349638
You jest but that's exactly how the bong government works, I expect a bitcoin ban soon.

How much do you think will they earn?

>>60349622
>opening a pdf file from unknown source on a company's computer connected to their internal network
I bet the ass who did this is a glorified IT dunce who gets paid like 2000 per month.

File: 1494537483715.jpg (46KB, 635x600px) Image search: [Google]

46KB, 635x600px

And yet all these plebs will *continue* to use Windblows. I have zero fucking sympathy at this point. It's not like I actively wish ill upon people for using a certain OS, but you deserve everything you get for being blind and retarded enough to still be using that joke OS in any professional context in the current year.

File: Screenshot_20170512-161143.png (267KB, 1080x1920px) Image search: [Google]

267KB, 1080x1920px

>>60343547

Look this thread!!

>>60349651
Grub has a shell. You don't even need a kernel

>>60343953
What would change if it's criminalized or not if it's only used by criminals? You're stupid.

>>60345937
Honor.

https://www.theguardian.com/society/2017/may/12/hospitals-across-england-hit-by-large-scale-cyber-attack

thank you mr bil gates. 2018 will be the year of linux hospital desktop

>>60347917
Windows 10 is a downgrade not an update.

>>60349767
I have been getting a lot of these lately,
I always just let IT know and mark them as junk.

b-but windows defender

>>60343547
Telefónica is my current ISP, am I fucked?

>>60349809
I'm a pessimist
the only thing this will change is that its going to force all IT centers everywhere to update their Windows to the latest version
Satya will be pleased

>>60349838
b-b-but these fucking updates why do I need them windows stop updating

>>60349900
If you are a business, probably.
If not, you'll probably be ok, there's nothing worth stealing.

>>60349900
they accept bitcoin so it's all fine

>>60349838
>exploit fixed months ago
>lul who needs to update anyway xdd
>OMG IT'S MICROSOFT'S FAULT

>>60346100
Of course they would. They are Europeans. They are used to bending over backwards to please pirates and criminals.

>BE A FUCKING ISP
>USE WINDOWS AS YOUR BACKBONE

KEKS GETTING BTFO

>>60349943
>>60349965
Corporations usually delay the updates for months until they have been properly tested so they can ensure the stability of their systems.

Or at least that's what they say to justify their laziness.

File: AAAAAAAA.png (7KB, 250x242px) Image search: [Google]

7KB, 250x242px

My friend from Russia got hit by that today. He is literally nobody, just a NEET.

>>60349900
yes, despite the whole hacking thing

>>60343547
>le common sense keks are getting BTFO

wew

>>60350021
Tell him to stop illegally downloading games and install the new Common Sense full license.

>>60349809
It was patched in March

>>60350007
This vulnerability was fixed in March.

>>60349767
I work there with an external contractor, there are dozens of dunces working where the outbreak started earning 3 times as much that don't even know how to outlook and purposedly have Windows Update disabled just so it doesn't pester them because they never EVER shut down the laptop, just close the lid.

>>60343547
wew, is that CyptoLocker?

The bitcoin address only got 4 payments so far, are there more addresses or is ransomware really this unprofitable?

>>60350224
there's a different address for each infected computer, they're generated automatically

do you even fucking understand how bitcoins work?

>>60350140
>>60350189

This is why Windows 10 Home removing the disable Windows Update option was the right thing to do.

>>60350243
All the pics I saw of different computers have the same address, do YOU understand how bitcoin works?

>fuckin' winblows. stupid piece of shit always trying to force a goddamn update on me. i don't have time for this shit. i got over a hundred tabs open in incognito mode; i ain't rebooting shit, motherfuckers. fuck off with your updates.

Aye we didn't work all day. Bosses were running like crazy.

>>60350200
WannaCry 2 according to some news

https://en.wikipedia.org/wiki/WannaCry

>>60350270
they're all generated for each infection
ransomware actually works, they actually fucking give you the key if you pay

how the fuck would they identify you if not by
your payment address?

it's either not actual ransomware, it's a scam or the news are fake

I'm declaring this a carefully timed inside job, notice how this is happening the same time as the British elections

It seems like it was an Office 365 update, as a lot of anons should know now (just telling for the ones who do not).

It was >patched March 14th but seems like Microsoft did fucking shit, so when everybody applied their patch, everything was fucked up.

In Spain Telefonica is the biggest ISP, so everything that hangs or depends on it fell right after.

What I don't know is how it keeps spreading world wide and nobody is getting to stop it.

>>60350336
>they're all generated for each infection
All evidence says otherwise, they're either identifying payments using another method or they didn't think this through.

>>60349648
You literally have to click a button and it gets saved forever

>>60350419
>What I don't know is how it keeps spreading world wide and nobody is getting to stop it.
>retard opens suspicious PDF
>retard gets infected

This isn't some advanced coordinated attack, it's just a bunch of spam and retards falling for it.

>>60350505
But it wasn't a phising scam, anon. Did you read my post?

>>60345937
300usd per computer.
Telefonica is one of the biggest telecom across the globe with operations in europe and latam.

Local telefonica it guys told me they alos received the order to shut everything down

If all bitcoin transactions are recorded then how would the hackers ever launder the money? Isn't it easy as fuck to track the origin of the bitcoins and see that they came from the ransom address?

>>60349276
Wrong. No Windows OS connected to the internet is safe, we're talking fucking ransomware here. Use noscript and block javascript/flash already, either should run on a site-by-site basis to begin with.

global ban on crypto curency inc

>>60350576
In Buenos Aires too, they were chimping in the main building (more than usual)

>>60349638
Anon, did you know you can't buy a butterknife unless you present ID and are over 17 in the UK. Let me spoonfeed you a familiar link to a website you're familiar with.
https://www.reddit.com/r/AskUK/comments/3kq5es/quick_question_about_knife_laws_in_the_uk/

>>60350627
>global ban on crypto curency inc
global ban on crypto inc after lobby by ms
FTFY

is this targeted or nah?

>>60350679

Nope

>>60350608

They will probably tumble the coins through a shitload of different addresses and then only cash out a little at a time

File: 2cesq4k.jpg (52KB, 657x1024px) Image search: [Google]

52KB, 657x1024px

>Laptop is on W7
>Haven't updated since 2013
So what, should I download a ganoo loonix distro to my phone and install it?

File: global.jpg (134KB, 1960x1139px) Image search: [Google]

134KB, 1960x1139px

>>60350679
sites where the ransomware has been detected

>>60350732
>>60350708
Well I'd be shitting myself if I was on the other end of this.

>>60350679
If it's based on that NSA exploit, nah.

but how does it spread? do I have to click on some link or just be on a public IP with shitty firewall?

>retards downloading and running files sent by random emails

Ffs

Normies should not be given download access

File: 1430498268220.png (143KB, 375x336px) Image search: [Google]

143KB, 375x336px

>running windows 8
>turned updates off years ago for a reason i can't remember

>>60350773
Usually some retard downloads something infected from the internet. From that point it exploits known vulnerabilities to distribute itself through LAN and other means (mail, skype, etc)

>>60349691
still not user friendly. they could have a gui that lets add urls like most normal addons have instead of that shit.

>>60350732
>based in North Dakota
Feels good.

>>60350830
You're the fucking retarded reason why we have forced updates on Windows 10

>>60350773
>just be on a public IP with shitty firewall
This

>>60350773
disconnect yourself if you part of a local network

that's about it

>>60350809
the email said I could download Jay Zs music wtf how was I supposed to know it was fake

>>60350773
>just be on a public IP with shitty firewall?
Probably, apparently some train ticket machines caught it as well.

if my computer is on hibernate mode am i safe

or is it possible i was infected weeks ago and next time i wake my pc up its gonna demand buttcoins?

>>60349900
its probably nothing to worry about if you can still shitpost here from that isp.

>>60350912
If you have anything other than the pipes screensaver then you are infected confirmed

>>60350471
would need to learn xml first tho. people here might know it but normies wont.

>>60350938
dont play with my emotions, anon

>bitcoin price hitting record highs
>suddenly a large scale cyber attack happens that uses bitcoin as a payment method
>it affects patient care in hospitals and will have catastrophic results
>this will undoubtedly lead to a big media campaign against cryptocurrencies

Do you think it's possible that (((you know who))) could be behind this?

Why would any serious company be using windows for anything

>>60350997
Microsoft office is one hell of a drug, and when every other customer or provider you interact with uses it as well you're kinda forced to.

FFS both my bank and isp got hit.

>>60350608
It is until it gets into an address that sends money randomly in random addresses at random times
That's known as a coin mixer
>>60350673
>implying
MS is making good bank by selling blockchain services on Azure, they're not going to go on a crypto jihad anytime soon

>>60351105
You are next anon sorry

File: varfor.jpg (29KB, 429x500px) Image search: [Google]

29KB, 429x500px

Tech illiterate here. Why is everyone blaming Windows? Can you not run malicious code on any operating system that can execute code? Why is Windows so bad? I'm not trolling just don't know a lot about this shit. I thought it was a meme when people said that Macs didn't get viruses. I can't understand that. Are viruses not just software? Do Windows have more security flaws?

>>60351085
couldn't you like , only use it in a VM?

>>60351132
The majority of computers are windows so most virus are made for windows

>>60351132
Windows is a lucrative target because it has the largest market share among businesses and consumers alike

>>60351129
well i'm backing everything now, let's hope for the best.

>>60351132
Because it exploits a vulnerability in a Windows service

>>60350809
i collect all those weird mails with attached javascripts and zips with exe files that wont even run on my computer. i get at least one per week in my mail.

>>60349313

Nope. Mas seria lindo se afetasse.

>>60351132
The thing is windows has the largest marketshare by an overwhelming margin, OSX/linux/whatever is too small for them to bother making ransomware for, even if they're probably just as or less secure as windows

>>60350982
its just someone that didnt get bitcoins when they were almost free.

File: Der_Ewige.png (339KB, 387x550px) Image search: [Google]

339KB, 387x550px

I wonder who could be behind this exploit...

Thanks NSA!

>>60350982
>be hacker
>make ransomware
>infect only normies
>ask for payment in bitcoin
>expecting for normies to have bitcoin ore even know what bitcoin is

this is way to suspicious

>>60351275
there are bitcoin ATMs, the one in my city is used by many of these people with ransomware in their computers...

>>60351251
Windows is written in C++.

>>60351275
>>60351351
Can't you pay for the ransomware using bitpay or something? I imagine they don't expect normies to acquire the BTC themselves...

>>60351275
In eastern Europe you can now buy bitcoins at currency exhanges

>>60349660
>mfw Spain is mentioned on /g/

Eurospics BTFO.

>>60347504
>need an MRI
>die because vladimir needs some pocket change bitcoins

nokia here
got mail from IT, same malware in screen
apparently some pajeets opened mail attachments and got infected, propagating it all over the network

>>60351444
good IT guys keeping patches up to date ;~)

>I'm a doctor in one of the affected hospitals, a major trauma center in London. Everything has gone down. No blood results, no radiology images, there's no group specific blood available. They've declared an internal major incident, the hospital is diverting major trauma and stroke patients. All elective surgery was cancelled from about 1pm. We're not doing anything in theatre that's not life or limb threatening. There will almost certainly be deaths as a result of this.

Hackers...

>>60351455
they mostly are, but like always you have a timeframe to install it.

>>60351461
>implying
If mission critical equipment relies on SMB and Office 365 you're doing everything wrong

More proof that sysadmins do nothing but sleep and shitpost during work.

>>60351461
>Running windows in hospitals
Who thought this is a good idea?

>>60351444

>apparently some pajeets opened mail attachments and got infected

jej

>>60351508
Normies have a hard time adjusting to new things

>>60351490
Patch came out in March, you would get fired if I was in charge of the company.

>>60351461
why do they need computers to do surgery? usually humans do it manually so there should be no need for those computers.

>>60351461
"centre" not "center"

Unless you're an American working in a British hospital (as you may be)

>>60350729
O B S C U R E
meme

>>60351604
A lot of their equipment is probably based on PCs. Scary, I know.

>I was working on the wards this morning, currently in the hospital library. Half-tempted to see how the clinical services are coping but I know it'll be chaotic enough already.
SO MUCH is on those computer systems. Appointments, treatment plans, scan results; some hospitals have gone completely computer-based and use it for patient notes & prescriptions.
Unless this is sorted very quickly, there will be patient death and suffering across the country. The people responsible are holding thousands of vulnerable people hostage and should be treated as terrorists.

>>60351461
How many lives will Windows claim?

IT monkeys have blood in their hands now, maybe they should stop shitposting on /g/ and actually do their work now.

>>60351669
>A lot of their equipment is probably based on PCs.
I actually remember reading about a half million dollar oscilloscope that ran on windows 10.

>$300 ransom for a telco
that's so funny, reminds me of that austin powers scene

>haven't updated win 7 since 2013
CUT MY LIFE INTO PIECES

Just pay the money and everything will be fine. No sense in making a mountain out of a molehill.

I WISH THAT I HAD A LINUX NOW

>>60350729
What was the name of that game again?

>>60351749
Paying the money on a few thousand workstations it's not feasible

>>60351749
lol

File: install gentoo.jpg (6KB, 194x259px) Image search: [Google]

6KB, 194x259px

You know what to do.

>>60351804
No?

>>60351749
kek

>>60351760
Pandemic 2, I'm going to replay it right now it was great.

>>60343953
Fuck off, I use bitcoin to pay for online services (domains, vps, steam,etc) because credit cards are annoying and paypal always have problems.

>>60351823
Right away.

bitcoin is the future anon

This is gone global and the infection keeps growing.

https://intel.malwaretech.com/botnet/wcrypt/?t=24h&bid=all

live map
https://intel.malwaretech.com/WannaCrypt.html

>IT internship at certain company i rather forget
>finances denied budget for computer replacements for a while now
>most worstations running on computers bought during 2002-2004
>all of them run a cracked windows xp, totally unpatched
>company gets an average of 3 ransomware hits a week (either workers watching porn or the elder lady at sales dept who opens every email attachment)

Holy crap, i'm so glad i quit last month.

>>60351600
you can postpone it for some time (week or so), after that it's forced

and you wont get fired for much worse shit, not installing updates? please

>>60351880
How does this site know the number of infections?

>>60349313
Is there any reason for us BRs to worry about?

>>60351889
Well recently intel introduced a low quality webserver in their ME binary.

>>60343547
>Que paso con mi computadora
My sides

>>60351887
Installing updates is literally the IT monkey's only job, if you fail to do that and let the entire network get fucked hard then you failed at your job and should get fired, maybe jailed too for criminal negligence if the damage is big enough,

File: 1261843170230.jpg (34KB, 600x485px) Image search: [Google]

34KB, 600x485px

so this is how the world ends

>>60343547
>cucks and normalfags on suicide watch
Finally and eternal BTFO

>>60351889
Controlled botnet logs ip from places attempting to infect others.
I don't know if they extrapolate the data but if not then we are seen the tip of the iceberg.

>>60351669
ok. why would those pcs be connected to networks? they would probably work fine without an internet/intranet connection.

>>60343547
Loads of hospitals here in the UK got infected too. I work for a company who manages infrastructure for hospitals and I'm working a nightshift, most of the customers have shut everything down so there's been nothing to do so far. Nice easy night hopefully.

how can I know my PC is vulnerable to WannaCry?

>>60351966
To check facebook after the surgery, duh

>>60351929
ah, you mean fire it monkeys. i thought you meant normal employees.
i assume updates were rolled out, just for some reason not everyone installed them.
it will have alibi - they rolled them out, there were campaigns to not open random shit, they'll dump blame on people who got infected, they'll dump blame on it or someone else, in the end noone will take responsibility.

big part of a job in a place like that is covering your ass from every angle.

It's BLASTER all over again.
Instead of a LSASS.EXE vulnerability it's a Samba one.

>>60352013
Are you patches up-to-date?
you will be ok unless on the same network as a vulnerable PC.

>>60352013
Download and run it, then see if your PC gets infected.
If it gets infected, then it's vulnerable.

File: oops.jpg (23KB, 720x540px) Image search: [Google]

23KB, 720x540px

This is the ransomware's message

>>60352047
thanks for the tip

>>60352043
I think so. windows 10 build 15063.296

>>60352066
>thanks for the tip
I'm always happy to help.

File: 1487135883579.jpg (15KB, 400x266px) Image search: [Google]

15KB, 400x266px

>running XP

>>60349564
or for that matter just make emacs your OS

>>60352066
Just to make sure go to Control Panel->programs>turn windows featues on/off and deactivate SMB 1.0/CIFS File sharing Support in your pc and ANY sharing the same network.
If you really need samba torn it on in about a week depending on the progress of the happening.

>>60352041
Blaster and Sasser only shuts down your PC (annoying).
This shit encrypts your files. (mass hysteria)

>>60350284
*WannaCrypt2

>>60346333
>its a /v/igger using a stale meme even for /v/ episode

>>60352115
I will be buying M$ shares first thing on Monday. The next financial report will see 100% W10 adoption by corps.

>>60347933
What's the difference? The only thing I could see is google scraping the catalog and finding the link, whereas if it was in the first post it wouldn't.

>>60352133
does Homegroups works with SMB?

>>60349276
Yes you are correct, it uses a SMB1 exploit which was patched in mars. A workaround is also to disable SMB1.

>>60350617
No.

>>60343547
Nice try Winblows, but I'm not gonna fall for this huge operation to make people update and be a good goy so you can watch them masturbate.

>>60352013
Thank god Microsoft patched it a day later! Really makes me think I should be using the latest Operating System like Windows 10 and always enable Windows Auto Update!!!

>>60343953
Because it's an anchor currency for cryptocurrencies in general. You have no clue what the rest are or how they're used.

By the way, good luck outlawing them once the banks start using them.

>>60351730
its 300$ per pc and they have a fuckton of em

>>60352197
no idea but I suspect yes. How will linux boxes on the same network find you PC otherwise?

i'am using windows 10 anon and it is kinda good

>>60345835
You have millions of computers from reception desks to MRI machines to fucking blood databases, not a single one has installed security updates for the past year or more and every one is connected to the internet.

WHO OH WHO COULD HAVE POSSIBLY SEEN THIS COMING?

>>60351817
I N S T A L L G E N T O O

File: 1451917820963.jpg (115KB, 509x501px) Image search: [Google]

115KB, 509x501px

Literally all you have to do is wait 6 months and the problem will solve itself.

>>60352305
>not a single one has installed security updates for the past year or more
Why? Even goddamn Ubuntu can enable automatic security updates. Machines in such environment should be set up to download from one master caching imagine. Who rolled out this system?

File: 1487468413773.jpg (95KB, 724x720px) Image search: [Google]

95KB, 724x720px

So how exactly a computer gets infected in the first place? I know it spreads trough Windows computers in the same network, but how does it start? someone opening an executable in a e-mail? downloading a pirated game?

File: 1490764624600.jpg (90KB, 780x862px) Image search: [Google]

90KB, 780x862px

>>60352407
Read the thread, Steve.

I have 8 and not 8.1, and I don't see the update. Does 8 not get it? Does the ransomware not affect 8?

OK which one of you neets is going to get v& for this

>>60352479
Everything running updates before march (patch release via ms update) is vulnerable.

If you disabled updates you are vulnerable.

You are not safe unless you are brazilian, the ransomware has not being able to infect rocks or mud yet.

>>60352479
you're already infected

>>60352479
It does, it was a March update

>tfw linux

BLESSED BE THE CHURCH OF GANOO

>2017
>not using Windows Insider builds
it's like if people wanted to get every virus out there

>>60352522
>has not being able to

nice job pablo

you have to go back

>>60352545
Tfw chromebook
which is actually gentoo

safe

>>60352590
Heuheueheueheueheue

>>60352522
>be in brazil
>laugh because i still run a safe-from-infection Windows 95 machine
>nigger enter from my window
>its just a hole on the wall
>opens my computer case
>grabs my hdd
>points gun at me
>have to give him 300 reales so he doesnt shoot my hdd
>mfw still suffer from ransomware

if only i had updated my window with some metal bars

>>60350945
Are you just pretending? You literally have to click the extension icon and click Enable HTTPs Everywhere, then it gets saved

I updated my pc to get bash for windows, feels good

>>60351275
>be criminal
>very publicly and obviously jack money from people around the world
>only one way to stay anonymous and cash out
>IT'S THE JEWS

They even have a tutorial showing how to use bitcoin. They just don't want to get caught and everything else is a thousand times easier to track.

>>60352065
They seem like nice people, to be honest.

>>60347504
>We will have free events for users who are so poor that they couldn't pay in 6 months.
???
I don't understand. What events do they have and why?

File: 1491242360786.png (386KB, 426x640px) Image search: [Google]

386KB, 426x640px

>>60343547
Perhaps now people will be able to understand the real danger of organisms like NSA. Until now Snowden's revelations are more like a meme than a real world fact.

>>60352637
Sweet. You should be safe.

>>60352641
of course, it's nothing personnel

File: 1465969280001.jpg (60KB, 314x311px) Image search: [Google]

60KB, 314x311px

>$300
Anyone else think the snders of this malware were not intending to infect such a large amount of computers, and of such high profile organizations?

These type of payment seems intended for individuals, not hospitals or isps with deep pockets.

How badly did they fuck up, and is it possible to trace them? I remember listening to a Radiolab show about ransomware, and it was found to be petty thieves in ukraine who were doing it, and actually even decrypted some grandmas computer for free because they felt bad. .

>>60352305
don't forget the fact that british hospitals are nearly collapsing from stress so everyone is too busy to do anything like update security or software

>it scans thousands of IPs for spreading
this gonna be fun

>>60351499
Guilty

>>60352745
>These type of payment seems intended for individuals, not hospitals or isps with deep pockets.

It's $300 per installation, not overall. The decryption only works once and is unique to each system.

>>60352632
thats not how it works. you have to make your own scripts for it to add new sites.
like this
<ruleset name="1ShoppingCart.com (partial)">

<!-- Direct rewrites:
-->
<target host="1shoppingcart.com" />
<target host="www.1shoppingcart.com" />

<!-- Redirects to http:
-->
<!--exclusion pattern="^http://www\.1shoppingcart\.com/$" /-->
<!--
Redirects to 404:
-->
<!--exclusion pattern="^http://www\.1shoppingcart\.com/(?:1sc-images/|login$)" /-->
<!--
Exceptions:
-->
<exclusion pattern="^http://www\.1shoppingcart\.com/+(?!app/adtrack\.asp|SecureCart/SecureCart\.aspx)" />

<!-- +ve:
-->
<test url="http://www.1shoppingcart.com/1sc-images/logo.png" />
<test url="http://www.1shoppingcart.com/about-us" />
<test url="http://www.1shoppingcart.com/contact-us" />
<test url="http://www.1shoppingcart.com/login" />

<!-- -ve:
-->
<test url="http://www.1shoppingcart.com/app/adtrack.asp?AdID=" />
<test url="http://www.1shoppingcart.com/SecureCart/SecureCart.aspx?mid=&amp;pid=" />


<rule from="^http:"
to="https:" />

</ruleset>

>>60352522
>>60352526
Well I don't fucking see it.

>>60352745
Malware senders are a lot more careful nowadays since there are tripwires everywhere and the slightest misstep you get you in jail, I miss the days when huge virus scares would happen every other week.
So the WCry 2.0 guys are:

1. Scriptkiddies who didn't realize how virulent this particular exploit is
2. Terrorists
3. Scriptkiddies who just don't give a fuck and/or have nothing to lose

My bitcoins are in option 1.

>haven't updated my windows xp since 2009
I'M GOING UNDER

File: 1481996218451.jpg (51KB, 740x737px) Image search: [Google]

51KB, 740x737px

>>60343953
>outlawing something used exclusively by outlaws
You're a special kind of stupid, aren't you.

>>60352013
if it has windows, it is vuln

File: 1491843372673.png (15KB, 240x304px) Image search: [Google]

15KB, 240x304px

>>60352749
>mfw they get too big and accidentally DDOS everything

>>60349256
Yes, this is considered terrorism in many countries, and paying ransoms to terrorists is a penal crime. But I guess they got the back of the Minister Cabinet and therefore the General fiscal, so who cares.

>>60349256
>>Isn't that illegal? What ever happened to not negatiating with terrorists? Send them icbms not bitcucks.
you need to know where someone is in order to bomb them, dumbass. It's very rare that the writer of a particular malware package is ever identified or found.

>>60353133
Or they're nsa attacking whistle blowers

But this is only for intranets, right? It shouldn't spread through the internet without actually running the virus

Can you install the ms17-010 update in windows7 without getting windows 10 bloatware?

I haven't updated in like a year.

>>60353439
>Or they're nsa attacking whistle blowers
This. NSA is testing the vulnerabilities in order to create better malware.

Can an updated computer be infected by an out of date computer in the same network?

>>60353535
You can download it directly from MS and install it separately

>>60353439
>>60353538
They could be government actors trying out possible cyber attack tactics but that's just a dumb idea.
NSA works in the shadows, they have nothing to gain by scaring away potential targets.

>running xp still because too poor to get up-to-date hardware
Am I fucked? Can I update to 7 and still be safe?

>>60353560
where

>>60353560
Not him, but how do I go about that exactly? I've checked my install updated against the numbers listed there for win 7 and it isn't showing up. Not under hidden updates either.

extended analysis

https://blog.malwarebytes.com/threat-analysis/2017/05/the-worm-that-spreads-wanacrypt0r/

>>60352626
top fucking kek meu macaco, top fucking kek

>>60353661
>>60353636
https://technet.microsoft.com/en-us/library/security/ms17-010.aspx
Download from here and run it

>>60353703
>If the website www.iuqerfsodp9ifjaposdfjhgosurijfaewrwergwea.com is up the virus exits instead of infecting the host
either authors are nice people or they are just stupid

>>60353867
Wow thanks just got a virus from this FUCK YOU

>>60353867
>[2]This update is only available via Windows Update.

This is ransomware hackers?

As a Windows 10 user I just assumed it was Microsoft, it all seemed so normal.

>You don't own the Operating System, you own a license to use it
>You don't own the software, you own a license to use it for a limited period of time
>You don't own your files, you own the right to have them unencrypted for your own use for $300.

File: 20170512_rail_0.jpg (31KB, 600x330px) Image search: [Google]

31KB, 600x330px

German Rail: "Local reports say that the situation in Germany is getting chaotic."

>>60350505
So basically, don't open suspicious file and you're safe? That doesn't sound right

I believe this might be a Windows Update fuckup, my gf's Win8.1 machine hasn't been able to do the March update, despite trying every single fucking restart

>>60350505
I'm willing to call someone a braindead retard for opening random exe's but it's being spread via pdf? Jesus, just how fucking garbage of an OS is Windows?

it begins

https://www.youtube.com/watch?v=T062Ke10jpY

>>60354169
wtf I opened the video and now I got the virus too??

>>60354220
wtf i read the comment and my dog died!??!?

>>60354220
bullshit

>>60350729
Kek, haven't played that game in a long time.

>>60354220
blame google for that

>>60354157
But is it braindead to believe a random anonymous poster? Because it spread via a SMB vulnerability, not PDFs.

>>60353928
>https://technet.microsoft.com/en-us/library/security/ms17-010.aspx
It worked for me, idk

>>60354169
That's the old version.

>>60352649
Gonna be some Saw style shit.
>livestream yourself cutting out your tongue

>>60351461
>There will almost certainly be deaths as a result of this.
Fucking drama queens.

>no komputers people r gonna die.

You can't run a hospital on paper for LIFE THREATENING CASES for like 24 hours?

Also, how do these people not have ways to bring presumably critical systems back online? Is the entire sysadmin team out to lunch? They have to have at least made backups.

>>60354441
The real question is why isn't such network LAN only

>>60354441
>You can't run a hospital on paper for LIFE THREATENING CASES for like 24 hours?

No you can't, have you ever worked in a hospital?

>AES key is encrypted by RSA-2048
hahaha oh wow

>>60354476
Not him, but can you explain why?

>>60354441
Emergency procedures aren't the problem here, hospitals have tight schedules and profiles that are stored in the computers, how the fuck will you know which patient's turn is next? How do you know what the patient's illness is without the database?

>>60354521
You have to order drugs and supplies, I mean theoretically that can be done by phone but the infrastructure is not in place for that.

No patient records cause that's all in a system, very likely hosted in the cloud.

No e-mail, depending on the setup possibly no phone communications.

Any of the special proprietary magic health machines that report data out will have limited or no functionality.

Good luck trying to send a medical scan to a hospital right now.

You can do basic shit but being stripped of your ability to communicate with minimal to no plans for this happening really fucks your shit up.

On top of that I guarantee you that management is freaking the fuck out and asking for dumb shit to happen, only making the problem worse.

>>60354632
Oh no, the fucking schedule is all wack, write numbers down on paper and hand them out, start at 1.

>What's your name and why are you here.
>write it down
>repeat

People ran hospitals for fucking ever without computers, if people ACTUALLY DIE because lol no windows 7 that's a fucking embarrassment.

>>60354717
Yeah well this isn't the 1950s anymore kid, every organization out there DEPENDS on computers.

Hospitals even more so because they have more tech.

>>60354716
None of this tells me why people are going to die.

>>60354717
When your whole system is built upon those computers then yeah things will get very chaotic, you won't be running a modern hospital with hundreds of thousands of patients with paper alone.

It isn't as simple as getting names and a list of diseases, doctors have SCHEDULES to follow and patient sheets are very detailed, these schedules and sheets are now gone and no one knows what the fuck are they are supposed to be doing.
It's not the end of the world but it naturally makes things confusing and might result in some deaths caused by missed appointments and surgeries.

>>60354770
>someone who was scheduled for a life saving surgery dies because the schedules are all literally gone

Just one out of many scenarios.

>>60343572
The UK NHS took an even worse blow. Their health system is paralysed right now.

This is big and we will only know the real damage in weeks to come. I bet the people behind it will get scared and no bitcoin exchange will want to cash from those wallet that are public.

>>60354987
>no bitcoin exchange will want to cash from those wallet that are public.
That's what bitcoin tumblers are for.

>>60354770
Someone could be given a medicine they are allergic to because there are no records available

The hospital runs out of a super specific drug and they can't reorder any more because the system is down

Someone who recently had a heart attack/stroke has to wait for a medical scan, because communications are down and doctors do not receive the scan in a timely manner said person dies who could have otherwise lived if they had surgery immediately

Hospitals with working IT become overcrowded and the emergency wards fill up also resulting in a shortage of beds

>tfw I have a hospital appointment on Monday morning
god fucking damnit, windows

>>60355073
>super specific drug and they can't reorder any more because the system is down

My point is that if you actually cannot fix this fucking problem, you're a retard. Send a kid on a fucking bike for it.

Some non-responsive person might die, and I can definitely see medicine allergies being a problem, but it's nowhere near
>There will almost certainly be deaths
tier.

>>60355066
This is so fucking big it will scare tumblers that clear bitcoins from child sex slave traffickers daily.

>>60355197
No problem is solved instantaneously, and that time will cost lives.

>>60355197
Yeah dude *snaps fingers* OK everything is good now never mind you guys I just cured cancer

>This is much bigger than that, though. According to Britain's Independent newspaper, these attacks may stretch around the globe, from Portugal to Turkey, Indonesia, Vietnam, Japan, Germany and Russia. It “is much larger than just the NHS,” Travis Farral, director of security strategy for cybersecurity firm Anomali Labs, told the Independent. “It appears to be a giant campaign that has hit Spain and Russia the hardest.”
twp

Are our bank accounts safe?

>>60350627
If only... buttcoins are used only by terrorists and pedos.

>>60355338
Yeah dude *restores critical systems from backups* OK everything is good now never mind you guys I just removed the malware

>>60355407
*servers suddenly start getting encrypted again*

How could this happen to me???

>>60352407
It infects you with no user interaction. All you need is a vulnerable machine connected to the internet.

File: C_qCo4jXkAAWhw1.jpg (119KB, 1200x582px) Image search: [Google]

119KB, 1200x582px

People are going to die.
Pic related.

>>60343953

I think you should reread what you just posted

>>60343953
typical liberal "critical thinking" skills

>>60355542
>people's life on the line
>uses unpatched Windows

>>60356362
This.
Negligence is a serious problem.

does anyone know which KBs include the patch for the exploit, need to check if I have the proper updates installed

>>60356550
https://technet.microsoft.com/en-us/library/security/ms17-010.aspx

>>60356676
do cumulative updates later than those listed also include the patch?

>>60356745
https://blogs.technet.microsoft.com/msrc/2017/04/14/protecting-customers-and-evaluating-risk/
This one, from
>https://www.reddit.com/r/worldnews/comments/6arkxt/hospitals_across_england_hit_by_largescale/dhh7g94/

>>60356798
that just links back to the exploit page, I wanted to know if KB4019472 also included the patch from KB4013429