Thread replies: 351
Thread images: 61
Thread images: 61
Worldwide ransomware attack general part 2
>>
someone redpill me
whats going on
>>
>>60349949
That's a lot of buttcoins
>>
>>60349907
That's, what, $1000?
>>
>>60350020
still quite a lot for putting a gui on top of nsa's exploit
>>
>>60349949
how many of them will actually pay? 5%, 10%?
i imagine that the numbers will build up a lot in next days
>>
File: winver_2017-05-12_16-28-57.png (18KB, 575x501px) Image search:
[Google]
18KB, 575x501px
>>60349907
No problem here. I'm comfortable!
>>
>>60350020
that's just one address.
>>
They deserve it. Now their files are just as readable as the source code of their operating system.
>>
>>60350245
There are no other addresses though.
>>
Is this the truly general?
>>
>>60349907
how are they being distributed?
>>
How do I properly protect myself against this?
Are the latest Windows Updates enough?
>>
File: 1490919020752.png (479KB, 657x654px) Image search:
[Google]
479KB, 657x654px
I haven't updated my Windows 7 in at least a year. There's like 50+ 'important' updates I need, according to Windows Updater.
Should I update to be on the safe side? Will I be forced to install Windows 10?
>>
>>60350629
iirc there was some KB you can avoid to remain 7.
>>
>>60350616
kb4012212 is the one you need.
>>
>>60350629
there are exploits for win10 too. some of them work on all versions.
>>
File: 1492425020494.jpg (571KB, 3504x2336px) Image search:
[Google]
571KB, 3504x2336px
>>60350685
I have the Windows 10 equivalent, so I guess I'm on the safe side now
>>
>Nobody updates Win7 because 'muh botnet'
>Gets infected with 0 day ransomeware
>Win10 users laugh
>>
>>60351095
>0 day
More like 2 months, they use NSA's ETERNALBLUE exploit that was patched soon after it was leaked months ago.
>>
https://intel.malwaretech.com/WannaCrypt.html
here is a real-time infection map, for those interested.
>>
other thread currently active
>>60350227
I've been spoonfeeding retards in the other thread so I guess I'll lend my services here too
>>
>>60351160
so all infected machines just decided to ping guy's server?
>>
File: 1465352600615.png (68KB, 1000x1000px) Image search:
[Google]
68KB, 1000x1000px
>>60351095
>there exist lists of which windows 7 updates are malware / pushware / "telemetry"
>people still throw babies out with bathwater and don't take perfectly fine security updates
that's a retard problem, not a windows 7 problem
>>
File: 1494620824568.jpg (11KB, 328x277px) Image search:
[Google]
11KB, 328x277px
>using windows in hospitals
>>
how is this spread?
>>
Does anyone know how initial infection happens? Is there malicious link in an email? A JavaScript file? An exe?
>>
>>60351197
>telemetry
I still remember how people complained about telemetry found in Win XP on release day, yet it's a big deal with Microsoft became open about this.
I don't understand people...
>>
File: hahaha.png (8KB, 330x187px) Image search:
[Google]
8KB, 330x187px
>>60351160
this area in canada is getting fucking hammered
>>
f a l s e
l
a
g
>>
>>60351216
All they need is your IP from what I've heard.
>>
Is there a list of all the identified btc addresses? Does it generate one for each computer or what?
I bet they trade everything for zcash to cash out. Buy buy buy
>>
>>60351236
And how would that work? Is there no user interaction required whatsoever? No shady phishing mail with a link or file?
>>
>>60351236
the fuck? what service is vulnerable? does this mean any retard can do an ipv4 space scan and infect people?
>>
File: 1481069251685.jpg (137KB, 500x750px) Image search:
[Google]
137KB, 500x750px
>>60349907
> running Windows servers
>>
>>60351216
>>60351264
SMB protocol vulnerability. If an infected computer finds an unpatched target it will infect it over SMB.
>>60351229
to be fair like 10% of canada lives in that dot
>>
>>60351124
Do you not know what a 0day is? He didn't mean the time elapsed moron.
>>
>>60351272
Good luck running active directory or exchange on linux
>>
>>60351277
It isn't an 0day if it's patched lmfao
You skids are so dumb
>>
>>60349923
false flag to outlaw cryptos
>>
>>60351277
>undisclosed computer-software vulnerability
>vulnerability was disclosed publicly in april after being patched in march
so it's a 30 day
>>
>>60351277
That's exactly what it means, retard. 0day is an unrevealed exploit, and this one has been revealed for months.
>>
>>60351277
day 0 means no one knows about it. In here, everyone knew about it for months
>>
We front page lead on BBC
www.bbc.com/news/
>>
>>60351282
>wanting to use AD or Exchange in the first place
hehe mm
>>
File: wannacry_03.png (27KB, 718x443px) Image search:
[Google]
27KB, 718x443px
Looks like countries that are known for not keeping their pirated windows up to date are hit the worst
>>
>>60351342
I think it's more likely that the hackers mainly targeted ruskies and it just spread naturally from there.
>>
>>60351342
Кeк
>>
>>60351342
>NSA spying tools leak
>someone rolls some shitty romanian crypto as a payload
>almost all the infected machines HAPPEN TO BE in russia
to repeat
>NSA payload released in wild
>happens to attack russia out of pure coincidence
sounds like eternalblue had a target
>>
How does it spread? Is it the normal click this link thing?
>>
>>60351216
>>60351236
it can spread over the network but arrives via an email attachment initially.
>>
>>60351413
You click that link and every vulnerable computer in your network gets aids.
>>
>>60351413
holy shit dude can you not read three posts up
I'll spoonfeed anyways
>SMB protocol is compromised (but patched in march)
>remote code execution
>if an infected computer can get an SMB connection to a vulnerable computer, the worm spreads
>>
>>60351374
fair point, and an interesting one
the number of hits china is getting is worth noting as well
>>
Anyone wireshark the ransomware? What mechanism if any verifies the bitcoins were deposited?
>>
>>60351441
I have been getting weird unsolicted emails lately, when i normally dont at work.
>>
>>60350685
I can't see that anywhere despite updating a few days ago.
>>
Is it just companies being affected or are individual users at risk as well?
>tfw running wandows xp
>>
>>60351374
Maybe russians have poor security practices
>>
Could be related, but we got two malicious emails exactly today at work.
We do keep our machines up to date WSUS-wise though.
>>
>>60351510
huh same, but I opened it in unpatched VM just to see what happens it was some russian website with some random youtube video, full of javascript through. nothing happened
>>
Here's a cozy little website that's tracking the number of infected computers. Currently standing on 71,690.
https://intel.malwaretech.com/botnet/wcrypt
>>
>>60351491
You already got infected and the virus already blocked the update then, it triggers in waves to synchronize it with several computers for maximum effect so it will probably trigger for you in about 2 weeks if it works like WCRY 1.0, maybe they changed the timer though.
>>
>>60351545
I'm not clicking that
>>
>wincucks have to worry about clicking on malicious links
>>
>>60351545
Why did the initial infection surge and then stop? I would have expected a worm to spread way faster than this.
>>
>>60351545
>none in Sweden
why are 3rd-worlders so stupid?
>>
Someone confirm that if there is no result at port 445 here http://canyouseeme.org/ I'm safe
>>
>>60351650
Weird. over on reddit(lelelelele) i heard people from i believe canada, whose main offices were in sweden, were affected as well
>>
>>60351662
Assuming that's the only port that matters, then your network can't be infected from the internet. But if someone in your network clicks a dodgy attachment it might still infect you.
>>
File: konata-waku-waku1.gif (1007KB, 474x480px) Image search:
[Google]
1007KB, 474x480px
>>60351202
>Hospital I got laid off from right after Christmas is entirely on Windows 7 in their 2,000+ client network
I hope they got fucked hard
>>
>>60351662
>http://canyouseeme.org/
>>
>>60351715
Cool, thanks. I got no network at home.
>>
>>60351491
It's also in kb4012215
>>
>>60351555
What if I manually install that update?
>>
>>60350685
>tfw safe
>>
File: Heatenings.jpg (53KB, 190x220px) Image search:
[Google]
53KB, 190x220px
I'm still using Vista. If it's true that they only need your ip I'm in great danger.
>>
Realistically how far will this spread? Can microsoft force updates on w7 even if they're disabled?
>>
>>60351828
7 isn't the main issue because only a small portion of 7 users disable all updates. The main issue is XP and older Windows Server installs.
>>
>>60351828
Why would they? They already patched it.
It's same with vaccinations. They exists, but if you decided not to take them then it's your own fault if you die
>>
>>60351773
not really. just install gentoo or disable the network share services.
>>
>>60351496
It's just that everything is running on unupdated and/or pirated windows. In my institute we have unactivated windows 7 on all computers and are running shit like photoshop in VMs on trial.
>>
What updates was it?
>>
>>60351739
What about kb4019112? It was in May.
>>
can you download and install ONLY the security updates for Win 7?
>>
>>60351773
just block the fucking port ffs
>>
Global "back your data up" day
>>
>>60352005
How? What am I even doing on /g/. I am not good with computers. I'm using fucking Vista.
>>
>>60350685
installed manually, wew.
http://www.catalog.update.microsoft.com/search.aspx?q=4012212
>>
>>60351491
If you have KB4015549 you also have it. KB4015549 is an update of KB4012212
>>
>>60351491
Here :
http://catalog.update.microsoft.com/v7/site/search.aspx?q=4012215
http://catalog.update.microsoft.com/v7/site/search.aspx?q=4012212
>>
>>60352033
It can get your backups, too.
>>
>>60352038
1. Pull out Ethernet cable
2. Apply condom
3. Return Ethernet cable
>>
File: 1439983003195.jpg (9KB, 208x250px) Image search:
[Google]
9KB, 208x250px
>Born too late to properly experience Y2K
>Born just in time for the Ransom Pandemic
>>
Has Madagascar been infected yet?
This is an important question!
>>
>>60351662
What kind of retard uses SMB shares over the internet anyways?
>>
>>60351650
rapefugees are too stupid to use computers, come on now.
>>
>>60352061
The 4012215 one is saying "not applicable" for my computer but I hace the 4012212 one.
>>
File: Year_2038_problem.gif (59KB, 400x130px) Image search:
[Google]
59KB, 400x130px
>>60352103
>>Born too late to properly experience Y2K
January 19 2038
>>
File: 1459653680303.jpg (261KB, 900x900px) Image search:
[Google]
261KB, 900x900px
>see this shitstorm
>ask /g/ for help
>/g/ tells me to install updates
>do that
>now PC is auto-installing Windows 10
GOD FUCKING DAMMIT /G/
YOU SAID THIS WAS SAFE
>>
>>60351650
because most people in countries like that use phones for everything now.
>>
>>60350295
Kek
>>
File: comfyfrog.jpg (99KB, 400x388px) Image search:
[Google]
99KB, 400x388px
>>60352222
lol didnt that offer end already?
>>
>>60352213
19th of Jan is my sister's birthday.
That's going to be a fun day.
>>
>>60352174
Because it's obsolete. The update you want RIGHT NOW is the May quality update. It's hard to miss because it's name is completely different from the rest. There's two of them.
>>
>>60352222
Windows 10 is safe
>>
>>60352222
By updates, they meant install Linux. You have only yourself to blame for using hacked together malware disguised as an OS.
>>
>have the update ready
>downloading a torrent with an hour left
push it to the limit
>>
File: 1440042933504.jpg (17KB, 480x360px) Image search:
[Google]
17KB, 480x360px
>>60352213
oh baby
>>
File: 1470166071580.jpg (66KB, 600x600px) Image search:
[Google]
66KB, 600x600px
>>60352222
HAHAHAAH GET FUCKED FROGFUCKER
>>
>>60352251
and those would be KB4019264 and KB4019112 right?
>>
File: ss+(2017-05-12+at+10.23.24).png (3KB, 912x23px) Image search:
[Google]
3KB, 912x23px
>>60352251
This one? It's been on there for a bit I think.
>>
File: 1491003119523.png (448KB, 900x900px) Image search:
[Google]
448KB, 900x900px
>>60352268
NO FUCK YOU
I PAYD FOR WINDOWS 7
I DON'T FUCKING WANT WINDOWS 10
FUCK YOU /G/
>>
>>60352245
>Forcibly install Windows 10 to fix ransomware problem
>"Windows 10 isn't free any more. You pay now."
Microsoft.
>>
File: wonder woman blacked.jpg (110KB, 900x900px) Image search:
[Google]
110KB, 900x900px
>>60350295
Wicked!
>>
File: 1441977987794.jpg (5KB, 251x251px) Image search:
[Google]
5KB, 251x251px
>>60352213
for what purpose would the date be a signed int?
that even reduces the max value.
and why not just simply express it as another byte and be good for a few million more years.
>>
>>60352377
some programming languages do not have unsigned ints (java?)
>>
>>60351160
how does this work? looks fake as fuck desu.
>>
>>60352321
My latest update (Win7, x64) was KB4019264, so I think so. Trying to install the March update afterwards doesn't work, as I would expect.
>>
>>60352137
MADASCAR HAS FALLED
WE'RE ALL DOOMED
>>
>>60352395
>java
stopped reading here
>>
>>60352321
>>60352324
Yea. KB4019264 is the one you 100% want for this specific issue.
>>
>>60352406
What kind of fucking mess (or malware blocking updates) you must have on your computer to fail windows updates?
I have been a windows user for like 15 years, regularly install updated on day one, and only issues I ever had was with shitty drivers.
>>
These threads are always full of panic and misinformation and it's hard to get any idea of what's happening.
>>
Holy fuck I've got outdated Win7 64 bit at my home but I got Kaspersky Internet Security. Am I going to get this? It's been all over.
>>
File: NoName.png (239KB, 1919x1159px) Image search:
[Google]
239KB, 1919x1159px
>>60351272
>>
>>60352432
Most of the time if an update fails it's because you already have the updated version of it.
>>
>>60352454
so click a refresh button before trying to install offline list of updates
>>
>>60352377
Lmfao yeah back in the 70s when they created epoch time they should have just made it 64 bit instead of 32, it's not like they had to care about memory back then or anything
>>
File: antivirus lost.jpg (83KB, 1200x960px) Image search:
[Google]
83KB, 1200x960px
>>60352444
Antivirus won't always stop it. You need the windows security update to be properly protected.
>>
>>60352444
Create 2 full backups at least, 1 physical and another one encrypted in the cloud.
>>
what's the update for windows 8.1?
>>
>>60352500
>>60352506
Ok then
>>
>>60352576
windows 10
>>
>>60352418
So you read the whole post then?
>>
File: 1449873608966.jpg (100KB, 755x970px) Image search:
[Google]
100KB, 755x970px
>>60352694
yes
that is the meme
>>
>>60352081
That doesn't make sense for cold storage or off site storage.
>>
>>60352222
Windows 10 is what you need, you just don't know it yet.
>>
>>60350295
It's not hard to write ransomware for Linux. It already exists, actually, mostly targeting servers running Wordpress. If desktop Linux were more popular, it would be all over the place and have nice GUIs just like the Windows ones.
>>
File: 1473097794393.jpg (87KB, 345x432px) Image search:
[Google]
87KB, 345x432px
>>60352500
>windows security update
manually installing KB4012212, is it the right one?
>>
>>60352506
>another one encrypted in the cloud
That makes no sense, the encrypted files can still be encrypted again if the cloud computer is infected.
You want to store your important data on a non -re writable CD or DVD, since a worm can spread trough a network or an external USB drive, it's not possible to safely store data on re-writable medium.
However storing your data on a Linux machine is an improvement.
>>
/g/ hold me I'm scared.
>>
This may have already been discussed before, but what are the odds it was >>60352745 a mistake?
>>
>>60352506
cloud backups are very expenive if you have many terabytes data to backup
>>
File: 1445722183259.jpg (68KB, 700x700px) Image search:
[Google]
68KB, 700x700px
>finally get ssd
>install winblows because I'll need it
>this shit happens
>have to go back to linux on my old shitty 8 year old hdd
>>
>>60352804
>cloud computer is infected
I doubt the cloud computers at Amazon or Google are being infected. You are encrypting it so they don't have access to your files.
The idea is that you can do a full restore from these backups complete negating the ransomware.
>>
>>60352804
>tfw backed up on bd-r
>>
>>60352863
This only effects computers up to 7, you absolute bellend
>>
Uh, so that is why Bitcoins rose up the last week
Probably this attack was driven by those who pumped the prices so that when they pay they pay even more
>>
>>60352799
https://technet.microsoft.com/en-us/library/security/ms17-010.aspx
For windows 7? Then yes. For windows 8.1 it is KB4012216 and windows 10 KB4013429.
You can click on the OS version in the table in the link and it will take you to the relevant page to download shit.
>>
So, if i'm running windows 10 fully updated i'll be safe?
>>
>>60352848
I believe it. It's just very good at spreading.
The instigators must be either drunk with joy or legit shitting themselves.
>>
>>60352432
>windows user for like 15 years
Enjoy brain damage
>>
>>60352902
they are asking for a fixed amout of dollars to be paid in btc, not the other way around.
nice try though.
>>
>>60352903
Is there one for Vista?
>>
>>60352848
Yeah, no sympathy, if this is the case I will be laughing all week.
>>
>>60352910
for now :^)
>>
>>60352901
>This only effects computers up to 7
Wrong. It affects all windows versions see >>60352903
>>
And not a single AV prevented it.
>>
>>60352769
Yes but it's harder to make it spread trough a vulnerability likes this one does. running the code is easy but automatically spreading requires sophistication, this one spreads easy because the vulnerability was already there intentionally by the big guys.
>>
File: 1491385200559.jpg (61KB, 670x503px) Image search:
[Google]
61KB, 670x503px
>>60352943
>>
>>60352954
Symantec claims their software prevented it.
>>
>>60352933
Yes for SP2 going by the link you replied to. Though why are you running vista?
http://www.catalog.update.microsoft.com/Search.aspx?q=KB4012598
>>
File: hacker-known-as-4chan-CNN-Brett-Larson.jpg (91KB, 817x453px) Image search:
[Google]
91KB, 817x453px
>>60352769
Literally this
>Linux is the most hacked os. >Windows is the most virused / Trojaned / wormed / exploited
>the most popular os will inevitably be the most attacked
>Linux and ios will always be more secure than windows
>>
File: laughing_linus.jpg (82KB, 950x534px) Image search:
[Google]
82KB, 950x534px
>>60349907
Told you to install Linux
>>
My understanding is that this wouldn't affect most home users, mostly just businesses and other organizations.
>>
>>60352987
Family member.
No need for a new PC.
>>
>>60352222
>he fell for the /g/ support meme
>>
>>60352954
It pisses me off that for years shitty salesmen who know jack about computers in PC world will be selling normies £20-£80 copies of McAfee anti virus that doesn't do jack shit.
>>
>>60352432
>t. compulsory windows 10 user
>>
>>60351447
>(but patched in march)
bless windows 10 who's forcing updates, microsoft was right all along
>>
>>60353154
If it runs vista it should run win 7 since the specs are basically identical. Vista drivers should also still work on win 7 if they stopped driver support.
>>
File: Capture.png (33KB, 563x388px) Image search:
[Google]
33KB, 563x388px
s-should i update?
>>
So this is it. It's all over because some script kids in eastern Europe got their hands on govt tech.
>>
>>60353193
If you are using it connected to the internet then the security ones are probably advisable.
>>
>>60353264
meant for
>>60353227
>>
>>60353227
Download the update manually or you'll end up getting the windows 10 virus.
>>
>>60353227
Use WSUS offline, it's faster and by default filters botnet updates.
>>
>>60353227
What the fuck are you doing anon? Hasn't it been preached to you enough that updates are absolutely necessary for protecting yourself?
>>
>>60353213
Cheers, I'll get onto it.
>>
>>60353288
whats the update number
>>
>>60351374
Russians are the ones all running pirates W7
>>
>>60353227
>Version 6.1.7601
Oh shit NOT THAT VERSION
I-I'm sorry anon, I hope you backed your files...
>>
File: windows 10.png (49KB, 860x531px) Image search:
[Google]
49KB, 860x531px
Am I fucked? They keep superseding the fucking patches and I can't figure out which one I should have for this. I've never disabled windows updates and the shadiest site I've visited is nhentai.
>>
File: monica-bellucci-dress.png (2MB, 879x1196px) Image search:
[Google]
2MB, 879x1196px
Hey guys I've got Windows 10 version KB4019472
Am I safe or could I be fucked at any point?
I'm really sorry for posting my retardation here on /g/ but it seems like the most appropriate place.
>>
So, has it been confirmed that there's more than one bitcoin address? I only saw one and it got 6 payments so far.
>>
>>60352913
Probably the latter. Affecting a hospital puts them at risk for mass manslaughter charges
>>
>>60353361
>>60353364
kys dumbos, that's not how security works
>>
>>60353361
The list you need is right here >>60352903
Just scroll down and click on the OS and it will take you to the page where you can download from Microsoft's servers.
>>
>>60353317
I disabled win10's update service like the day it came out and I've been fine
>>
>>60353361
This isn't on optional updates, just install everything on important updates you autism lord
>>
>>60353365
My understanding is that, if it there indeed just one, the ransomware is fake and won't unlock anything. Since it wouldn't be able to tell who had paid. Right?
>>
>>60353393
What? Isn't it like patching an exploit or something. Obviously I have antivirus software installed.
I know literally nothing about this.
>>
>>60353412
You've been fine because you haven't been targeted. Most updates are patching a hole in the operating system, not just security updates. Those holes can be exploited. It's not a matter of if, it's a matter of when.
>>
>>60353364
KB4019472 is just a patch. Won't stop you 100% from getting it.
>>
How fucked is the guy behind this? Did he even expect it to get this out of hand? He's got both the UK and Germany's security services looking for him now.
>>
Just a reminder, the update only protects you from the SMB exploit.
You still have to be non-retarded about opening dodgy e-mail attachments or clicking suspicious links.
You can still be infected.
>>
File: openbsd.jpg (210KB, 869x1338px) Image search:
[Google]
210KB, 869x1338px
>tfw your local hospital runs OpenBSD
>>
>>60353462
If you only patch after shit goes down then you're never safe, that's like getting vaccinated after the outbreak happened.
You fell for the "updates are bad" meme.
>>
File: 1325436640001.jpg (51KB, 460x500px) Image search:
[Google]
51KB, 460x500px
>>60353361
Calm your tits, boy. Microsoft security updates are what you need, they supersede each other, the only thing that changes are the name and hot fixes for bugs that the previous patch caused, you still retain everything.
>>
>people will still not learn and the same thing will happen again in the near future and with even bigger consequences
Can't wait for those internet-connected pacemakers and self-driving cars.
>>
win7 is fucked then?
>>
>>60353490
Well if he was smart when he let it loose then I guess it's hard to catch him.
He should be careful when trying to access the money though
>>
File: 1487551640119.jpg (77KB, 605x685px) Image search:
[Google]
77KB, 605x685px
>>60353492
upvoating this post because too many retards to respond them all
>>
>>60353393
you kys retard, you can't have multiple security patches, at the same time are you even on w10? Each one updates the previous one. Linking old KB from march 12th is retarded, Just get the latest patch
why is /g/ support tech illiterate?
>>
>>60353492
>Just a reminder, the update only protects you from the SMB exploit.
What are the prerequisites of this exploit? Is a typical home system even vulnerable?
>>
>>60353470
Would you say there's anyway I can make it 100% at this point or should I shut down for a couple days.
>>60353497
I didn't, I'm sure I had it installed before the attacks hit.
>>
>>60353515
Can't wait to for my car to get hacked and deliver me to a kidnapper
>>
>>60353548
I'm pretty sure it means if someone else on your network downloads the virus, it can't be transferred to you over the network, but of course if you download the virus yourself you'll have the virus.
>>
>>60353549
>or should I shut down for a couple days
desu stop using your computer totally
you seem to have no idea how this works
>>
File: 1494301508001.jpg (100KB, 533x654px) Image search:
[Google]
100KB, 533x654px
>>60353497
Funny how people believe updates are Backdoors when the Backdoor has been in the kernel and Intel chips the whole time :^)
>>
>>60353548
It SMB is enabled by default on all windows machines and so once the virus has been opened it will the spread across the network using it.
>>
>>60349907
Why not Sticky?
>>
>>60353496
So you wan't to die cuz no software?
>>
>>60353577
Probably should. Need it for work though.
>>
>>60352863
If you live a lifestyle where you need to run non-free software on your computer than I suggest you rethink your lifestyle.
>>
>>60353549
Do as >>60353541 says. Play it safe for the next few days to a week. Avoid clicking/downloading dodgy links/files and you'll be fine.
>>
>>60353597
mods are trying to scramble together ransom money
>>
File: Capture.png (83KB, 699x556px) Image search:
[Google]
83KB, 699x556px
>>60349907
Fuck me. Someone explain the quickest way to get this fucker up to date. I thought my image was sp2 at least. Just installed KB4019264 as per a few anons recommendations, but methinks its gonna need more work than that.
>>
Avast should take it now yes?
https://www.avast.com/virus-update-history
>>
>>60353625
>dumbo updates after outbreak already passed
>next time it happens he will do the same thing again
I think a Mac would suit you better.
>>
advanced analysis
https://blog.malwarebytes.com/threat-analysis/2017/05/the-worm-that-spreads-wanacrypt0r/
>>
>>60353625
Quickest way to get up to date:
>download & install all updates
>>
File: thumbs-up.png (136KB, 634x354px) Image search:
[Google]
136KB, 634x354px
>>60353612
Ok thanks. I'll stop bothering people now.
>>
>>60353625
Simplix pack
http://forum.oszone.net/thread-257198.html
or
WSUS offline
http://download.wsusoffline.net/
>>
>>60351342
Дiдькo!
I haven't been downloading anything for at least 3 months, am i fucked?
>>
>>60349907
all bitcoin addresses they've used so far
https://pastebin.com/MSUqVahp
>>
File: 1456351490163.png (291KB, 500x469px) Image search:
[Google]
291KB, 500x469px
Remember winfags
>>
>>60353609
If you're super paranoid, just format your computer right now and update it, back up all your files to a linux machine and then format the USB drive too. Also don't connect to a network with other computers during the process. I can do it in 20 minutes, installing updates just takes a while.
>>
>>60353601
>Azienda Ospedaliera "Carlo Poma" is the largest health institution in the province of Mantova (Lombardia) with six hospitals and other small ambulatories. OpenBSD was chosen for its reliability and now serves as the bridging firewall between the WAN and the main Hospital of Mantova. We use pf and altq for firewalling and QoS applications, and use fwanalog to generate WAN traffic statistics.
Unlike your shitty Lunix, OpenBSD is used in places where security and correctness matters.
>>
File: 1475376626029.png (78KB, 282x300px) Image search:
[Google]
78KB, 282x300px
>>60352213
I don't get it.
What happens here?
>>
just download the patch and don't be a dum dum
that's it?
>>
>>60353647
>>60353659
Was mainly looking to bulk update and avoid win10
>>60353684
Good lad, will check them out.
>>
>>60353684
>linking to software downloads when giant ransomware is currently on the loose
>>
File: 88C60C32-A4A3-4A76-AF5E-1DEED726999D-6303-000004157E13532C.jpg (1MB, 2792x2000px) Image search:
[Google]
1MB, 2792x2000px
How do I know if i'm protected?
Is windows defender enough?
>>
>wanted a nice casual friday night watching some anime
>this shit happens and I can't relax
>>
>>60353389
They just pulled the trigger, the NSA built the gun.
>Hey guys, lets develop a really good worm!
>Sounds great Jim!
>Ooops now it's everywhere, sure hope nothing goes wrong :^)
Of course, no blame whatsoever will be placed on the NSA, I just hope these guys have some plane tickets to Signapore already booked.
>>
>>60353710
Info so far
https://gist.github.com/rain-1/989428fa5504f378b993ee6efbc0b168
>>
>>60353749
The exploit that's spreading the ransomware is said to have been patched months ago, so your system just needs to be up to date.
>>
>>60353193
updates have always been recommended, big, nice green and default. There's no need to force it
>>
>>60353515
>self-driving cars.
>load car up with 300kg of ANFO
>deliver it to any address you want
I can't be the only one to think of this
>>
>>60353756
>https://gist.github.com/rain-1/989428fa5504f378b993ee6efbc0b168
What happens if I go on their C&C link in tor ? srs
>>
>>60353649
>The WinMain of this executable first tries to connect to the website www.iuqerfsodp9ifjaposdfjhgosurijfaewrwergwea.com. It doesn’t actually download anything there, just tries to connect. If the connection succeeds, the binary exits.
>This was probably some kind of kill switch or anti-sandbox technique. Whichever it is, it has backfired on the authors of the worm, as the domain has been sinkholed and the host in question now resolves to an IP address that hosts a website. Therefore, nothing will happen on any new systems that runs the executable. This only applies to the binary with the hash listed above; there may well be new versions released in the future.
Hahahahhahaahaha baby's first virus.
Everybody go home, retard made a virus that killed itself.
>>
>>60353754
Some anchor news network was saying the virus was developed to stop North Korean computers from working, people will believe anything nothing will happen to the NSA.
>>
so if mine w7 is upgraded its all good in the hood?
>>
>>60351441
dope plz send link
>>
I don't know if I should update. I'm on Windows 10 and I disabled updates as soon as I got it like 2 years ago. I'd rather be safe but I have no 'windows needs to update' popups, no ads anywhere in my OS and everything runs fine. Wat do? Will I get ads and shit if I update now?
>>
>>60353815
Nonsense. What little computers they have run on their own OS RedStar.
>>
>>60351441
dope plz send link
no worries lads, I'm currently downloading all my personal shit and in wipedown. This is a HUGE excuse for me to go Ubuntu
>>
Do i need to disable SMB?
>>
>>60353749
T H I C C
H
I
C
C
>>
>>60353866
The elite uses updated computers.
>>
>>60352903
>and windows 10 KB4013429
I have a KB with a higher number, does it just mean it's a newer update with all the features of older ones?
>>
Which security service will find the scriptkiddie first?
>>
>>60352863
start thinking for yourself dummy
>>
>>60353774
nope, it wasn't
>>
File: 1493569474880.jpg (55KB, 500x418px) Image search:
[Google]
55KB, 500x418px
>running unsupported shitware like Window 7
lol
>>
bulk installing updates on win7 after a year and a half. hope win10 wont rape me
>>
>>60353749
**TO ALL WHO IT MAY CONCERN:
If you have the latest Windows 10 Security patch, you are safe. Yes windows defender is enough. If you're truly paranoid Maybe take a break from clicking random porn links and downloading shady torrents, and make sure to backup and keep your data offline until the dust settles. If your jimmies are truly rustled, perhaps make another linux based OS your main/browsing system and leave windows for the only justifiable reason to have it; gayms
>>
>>60353939
Source?
>>
>>60353815
>tfw this'll be used to bolster the Russian Hackersâ„¢ meme
>>
>>60353912
They have a monthly cumulative security update that contains the older ones so it should be fine. The ones in the table contain the version that it was first included along with the emergency patch they posted (that only included that fix) before they published normal security update.
>>
File: 1422383357792.png (531KB, 497x732px) Image search:
[Google]
531KB, 497x732px
>>60353980
>>60353957
k neato
>>
>>60353145
of course organizations are greater for this group share exploit because there are dozens or hundreds of computers in the LAN, needs only one email opened and everyone in the org is hit. Most home users wont have a computer in their network that gets struck down with the ransomware
>>
>>60353813
Explain what sinkholed means plz cant find anything
>>
File: 1486486611720.jpg (36KB, 580x346px) Image search:
[Google]
36KB, 580x346px
>>60352222
sorry, had to do this
>>
>>60353961
source?
>>
Even if you're still using Windows (and your only excuse is muh games btw), why are you still not dual-booting?
>>
>>60354023
So you don't have one.
>>
>>60354026
because everything past Win 7 has been dog shit usability-wise
>>
>>60353961
His ass. The exploit being used was from the CIA leaks which was patched in march.
http://www.bbc.co.uk/news/technology-39901382
>A patch for the vulnerability was released by Microsoft in March, but many systems may not have had the update installed.
>>
>>60352137
the Madagascar government has shut down all internet access as well as airports, harbors, and public transportation. They've also enacted marshal law until the ransomware is confirmed gone.
>>
>>60351773
Vista number one in my heart, loved it for 10 years. Got off it three weeks ago out of fear of this happening. Stay strong Vista-bro.
>>
>>60351295
I'm interested. Go on...
>>
>>60354029
so, you don't have one neither
>>
!!!
WANNACRYPT IS AN NSA FALSE FLAG
DESIGNED TO FORCE PEOPLE TO MOVE TO WINDOWS 10 (((NSA EZ BACKDOOR)))
DO NOT GIVE UPGRADE
UNPLUG YOUR ETHERNET CABLE UNTIL 6PM EST MAY 24TH
RESIST
!!!
>>
>>60353957
What is the number for the lastest Win10 Security patch. Just want to make sure it's installed.
>>
>>60354094
Who do you work for?
>>
>>60354116
Who do YOU work for? Is it Microsoft?
>>
>tfw can't update
>>
just turned on my PC. Win 10 is 1703 am I safe?
>>
>>60354133
Nice try, shill.
>>
>>60353586
underrated post
>>
>>60352222
>yfw Microsoft are behind the attack
>yfw they planned it to force win7 autists to upgrade
It's for your own good, goy
>>
File: 1430453422386.png (30KB, 633x758px) Image search:
[Google]
30KB, 633x758px
>everyone trying to update
>mfw windows update servers are already compromised and are a ticking bomb
>>
it says i can't update
help /g/
>>
>>60354141
nope you're already fucked, reformat ASAP
>>
File: 1492268415523.jpg (27KB, 383x472px) Image search:
[Google]
27KB, 383x472px
Using LTSB win10 that hasnt updated in a while. Which update for security do i need?
>>
>>60354141
Just make sure Win10 updates are up to date.
>>
wot if MS did this to get people to use legit versions of Windows and to buy W10
>>
File: question cat.png (325KB, 382x417px) Image search:
[Google]
325KB, 382x417px
>>60351773
Serious question, is it really possible to spread malware through an IP, alone? (Assuming he's talking about WAN) I literally know nothing about how networks work
>>
>>60349907
So he only made 5x $300 in total?
>>
File: 2016-05-17-171659_1280x720_scrot.png (267KB, 1280x720px) Image search:
[Google]
267KB, 1280x720px
>>60354145
So you are admitting Microsoft has shills on /g/? About time.
>>
>>60354181
>>60354161
>>60354105
Here come the conspiracy retards
>>
What update do I need to download for this?
>>
>>60354195
Again: nice try, shill.
>>
>>
>>60354166
Actually, The NSA/Microsoft released these exploits on purpose and created this virus to force people to upgrade to windows 10 because it's basically a spyware OS and doesn't require exploits to obtain data.
Install Linux.
>>
>>60351295
I've been on 4chan too long, I actually believe this
>>
>2017 is the year of the Windows apocalypse
Feels comfy.
>>
File: d6655803fa1ca967710fc6c164508726.jpg (23KB, 500x385px) Image search:
[Google]
23KB, 500x385px
>>60354212
Keep admitting that Microsoft hires telemarketers, shills need to be sued out of here.
>>
File: wangblows.png (79KB, 721x590px) Image search:
[Google]
79KB, 721x590px
Is this finally the death of Microshit?
>>
>>
>>60354181
They Push Windows 10 S to School, Gov and Corp... like Iphone wallgarden OS
its safe and secure..
>>
WHAT DO I DO C'MON G
>>
>>60354248
I admitted no such thing. Fuck off you fucking shill piece of fucking shit.
>>
Lil
>>
>>60354250
>it dropped 1 dollar
>looks like the stock got cut in half
You're fake news
>>
>>60354196
5 rupees have been deposited in your account
>>
>>60354267
Install gentoo
>>
I'm under w10 I don't care haha
>>
Where did the name WannaCry come from?
>>
>>60354217
Why don't you just suggest installing TempleOS, it can't go on the internet so it's more secure and it has the same drawback that Linux has: no games or good software.
>>
File: rampage car.jpg (31KB, 1216x584px) Image search:
[Google]
31KB, 1216x584px
>>60353790
you can be sure ISIS and all of the assorted suspects have thought of it, since they already tried the remote controlled prototypes in the past.
picture related is from the rampage movie. camera and R/C - basic technology
>>
Nah
>>
>>60354267
install linux
>>
>>60354296
Win10 is still affected if you aren't up to date.
>>
File: 1486375737319.jpg (87KB, 1280x720px) Image search:
[Google]
87KB, 1280x720px
>>60354271
Are you willing to support a lawsuit against ALL SHILLS, or you are just a bluff piece of shit, fucking telemarketer?
>>
>>60354298
Because it makes betas wanna cry when they can't fap to their pony porn.
>>
>>60354298
from weeping angel, the nsa cyberweapon
>>
Pop
>>
Who is botnetted now Win7 holdouts?
>>
>>60353389
>Affecting a hospital
'a' being (generally) singular in usage, think you could prob just use 'brought down a(n) entire national health system..' now - 's actually no joke, got an uncle in who was due to get released tomorrow, now, apparently going nowhere - worse, they letting no-one fucker in.
Would not be in any hurry be collecting that BTC anytime soon, I were them,aint a far enough hiding place from this shitstorm. And NSA will find it nice, having someone outwith themselves to (publicly) blame, and all.
>>
>>60354217
The funny thing is that this is true, my dad works for the NSA. He says all windows 7 users are no good pseudocommie scum
>>
>>60354328
FUCK OFF ALREADY YOU FUCKING CUNT PIECE OF SHIT SUBHUMAN RETARD. FUCKING CHRIST I AM SICK OF YOU FUCKING LUNATICS COMING AFTER ME EVERY FUCKING TIME I POST IN FUCKING ANY THREAD.
FUCK OFF
>>
Creators Update already had the fix
>>
I haven't installed any Windows updates in a while. Got tired of trying to keep track of what was telemetry bullshit and what wasn't. Is there an up to date list of which updates I should avoid?
>>
File: riker likes what he sees.gif (2MB, 250x250px) Image search:
[Google]
2MB, 250x250px
>>60354250
>>
Already
>>
>>60354382
Seconding, for both windows 7 and 8 if possible
>>
So now forced updates will be seen as something positive, huh? Interesting...
>>
>>60354374
Is that a yes?
Am I in presence of a lawsuit against telemarketing on /g/?
>>
File: Screenshot from 2017-05-12 19-09-12.png (141KB, 325x237px) Image search:
[Google]
141KB, 325x237px
>>60354378
CrEaToRs UpDaTe AlrEaDy HaD tHe FiX1
>>
>>60351366
> NSA exploit "ransomware" malware targets Russia
sure makes you wonder
>>
>>60354432
FUCK OFF YOU FUCKING PIECE OF SHIT FUCK OFF YOU FUCKING PIECE OF SHIT FUCK OFF YOU FUCKING PIECE OF SHIT FUCK OFF YOU FUCKING PIECE OF SHIT FUCK OFF YOU FUCKING PIECE OF SHIT FUCK OFF YOU FUCKING PIECE OF SHIT FUCK OFF YOU FUCKING PIECE OF SHIT FUCK OFF YOU FUCKING PIECE OF SHIT FUCK OFF YOU FUCKING PIECE OF SHIT FUCK OFF YOU FUCKING PIECE OF SHIT FUCK OFF YOU FUCKING PIECE OF SHIT FUCK OFF YOU FUCKING PIECE OF SHIT FUCK OFF YOU FUCKING PIECE OF SHIT FUCK OFF YOU FUCKING PIECE OF SHIT FUCK OFF YOU FUCKING PIECE OF SHIT FUCK OFF YOU FUCKING PIECE OF SHIT FUCK OFF YOU FUCKING PIECE OF SHIT FUCK OFF YOU FUCKING PIECE OF SHIT FUCK OFF YOU FUCKING PIECE OF SHIT FUCK OFF YOU FUCKING PIECE OF SHIT FUCK OFF YOU FUCKING PIECE OF SHIT FUCK OFF YOU FUCKING PIECE OF SHIT FUCK OFF YOU FUCKING PIECE OF SHIT FUCK OFF YOU FUCKING PIECE OF SHIT FUCK OFF YOU FUCKING PIECE OF SHIT FUCK OFF YOU FUCKING PIECE OF SHIT FUCK OFF YOU FUCKING PIECE OF SHIT FUCK OFF YOU FUCKING PIECE OF SHIT FUCK OFF YOU FUCKING PIECE OF SHIT FUCK OFF YOU FUCKING PIECE OF SHIT FUCK OFF YOU FUCKING PIECE OF SHIT FUCK OFF YOU FUCKING PIECE OF SHIT FUCK OFF YOU FUCKING PIECE OF SHIT FUCK OFF YOU FUCKING PIECE OF SHIT FUCK OFF YOU FUCKING PIECE OF SHIT FUCK OFF YOU FUCKING PIECE OF SHIT FUCK OFF YOU FUCKING PIECE OF SHIT FUCK OFF YOU FUCKING PIECE OF SHIT FUCK OFF YOU FUCKING PIECE OF SHIT FUCK OFF YOU FUCKING PIECE OF SHIT FUCK OFF YOU FUCKING PIECE OF SHIT FUCK OFF YOU FUCKING PIECE OF SHIT FUCK OFF YOU FUCKING PIECE OF SHIT FUCK OFF YOU FUCKING PIECE OF SHIT FUCK OFF YOU FUCKING PIECE OF SHIT FUCK OFF YOU FUCKING PIECE OF SHIT FUCK OFF YOU FUCKING PIECE OF SHIT FUCK OFF YOU FUCKING PIECE OF SHIT FUCK OFF YOU FUCKING PIECE OF SHIT FUCK OFF YOU FUCKING PIECE OF SHIT FUCK OFF YOU FUCKING PIECE OF SHIT FUCK OFF YOU FUCKING PIECE OF SHIT FUCK OFF YOU FUCKING PIECE OF SHIT
>>
Ban on telemarketing when?
>>
>>
>disabled smbv1 client and server
>blocked port 445
am I good now
>>
>>60351229
>Quebec
>french Canadians are tech illiterate
>>
>>60352903
I heard KB4015549 was also acceptable, as it was an updated version of KB4012212. Is that true?
>>
>>60354541
That's fine as it is just the cumulative security update which contains the older ones.
>>
>>60353731
Linux computers (so, most servers and corporate computers around the world) handle dates differently, and they will have the same Y2K issue in 2038 when their own date system loops round.
>tfw an update kept killing my computer completely so I had to disable all updates to keep using it
>tfw now everything is going to be stolen by the hacker known as 4chanski and there's nothing I can do
;_;
>>
I understand this is spreading on private networks via the smb exploit, but how is it spreading to all of these private networks?
>>
>>60354683
some idiot on those networks opening and running an attachment
>invoice.zip
>>
>>60349923
if you're running windows you'd better cover your cornhole
if not, laugh at the winfag gaymen plebs
>>
>>60354683
gold brickers at the nhs downloading warez
>>
>>60353227
Install GNU/Linux
>>
>>60351721
You realize these places contract MSSPs and usually have robust UTM on their edge right?
>>
>>60355863
big black cock dot mp3 dot exe
gotta click it anon
Thread posts: 351
Thread images: 61
Thread images: 61