Thread replies: 346
Thread images: 43
Thread images: 43
File: wannacry-2_051317024735.jpg (108KB, 814x616px) Image search:
[Google]
108KB, 814x616px
The potential positive to #WannaCry:
>Our so called "National *SECURITY* Agency" should learn that their job is protecting us, not leaving holes open to exploit.
>LET THIS BE A LESSON TO OUR SECURITY AGENCIES AND INTELLIGENCE COMMUNITIES!
>The NSA did this to the UK, not The Shadowbrokers and not WannaCry, the NSA left these holes open to be exploited. The fault is 100% on them.
>>
It's patched tho
>>
>>60354780
>The NSA will totally learn their lesson this time!
Yeah, gonna go with "no" there.
>>
>>60354793
Not really. Wangblows updates are a disaster. The update was supposed to go through on march 14 but that doesn't mean everyone got it, even among the good goy systems that autoupdate and shutdown instantly without waiting for the time it's out of business hours.
>>
>>60354826
True that but perhaps with enough public outrage, pressure from other countries including UK hospitals, this will force change some things.
>>
>>60354793
Thanks to Shadowbrokers, not the NSA
>>
>>60354780
have you checked google news?
Media doesn't even care even though this is a huge story, they're just interested in making Trump look bad.
I predict this will be forgotten in a month even though there is a good chance this actually killed people.
>>
https://intel.malwaretech.com/WannaCrypt.html
>>
>>60354780
>not the shadow brokers
http://www.bbc.com/news/technology-39901382
>"The hackers said they had published the password as a "protest" about US President Donald Trump."
these hacktivist cucks are entirely responsible for this.
>>
>>60354895
This, I literally just found the patch today when the news came out.
>>
>>60358202
>libshits wanted to make some faggy political statement
>ruin lives for thousands of people
I hate libshits so fucking much
>>
>>60357897
They don't have to make Trump look bad.
Trump does shit that makes himself look bad, they just have cameras and mics running to catch it.
>>
>>60358221
>>60358221
Literally me
I just got done rebooting and applying it, obviously in time before getting compromised also heh
>>
>>60358223
I refuse to believe that liberals aren't second-class "citizens."
>>
>>60358221
Whats the update number?
>>
>>60358258
https://technet.microsoft.com/en-us/library/security/ms17-010.aspx
see for yourself. Tons of links available, depends on your OS.
>>
>>60358202
>entirely
They are cucks sure. But lets not forget the role the NSA plays in this.
>>
>>60357897
>Media doesn't even care even though this is a huge story, they're just interested in making Trump look bad.
All of the media's computers are down from memeware
>>
How do I disable SMB on windows 7? Does it even do anything on a personal computer, it sounds like lan shit.
>>
Why is India getting attacked??
They have computers??
I thought they are shitheads who dont even have food to eat
>>
>>60358230
t. Mexican
There's nothing bad about anything he's done so far. Making cucks like you outrage every day is fucking great.
>>
File: 1466937603094.png (64KB, 395x578px) Image search:
[Google]
64KB, 395x578px
>>60354780
>break into police station
>steal their guns
>give them to the public
>people end up getting shot
>WOW THIS WAS THE POLICE'S FAULT
>>
>>60360297
it's disabled by default and port 445 is also blocked by default, you daft faggot.
this is nothing more than idiots infecting their networks because they are retards that download random shit.
>>
>>60360602
That section just ends at size for me and there's no SMB, that means it's off right?
>>
>>60360664
you can add the keys manually and set them both to 0 (default setting) if it makes you feel better.
it doesn't matter since you more than likely have port 445 blocked already.
>>
>>60360562
>be police chief
>don't give a fuck about security at police station
>also spy on local citizens
>criminal breaks in and steals guns
>OH MY GOD HOW COULD THIS HAPPEN
>THAT GOSH DARNED CRIMINAL, NOTHING WE COULD DO!
>>
>>60360679
How do you check this to be sure?
>>
>>60360679
445 is the printer sharing & netlogon + remote management; it is open / allowed by default.
>>
>>60360778
Press Windows Key, type security, select Windows Firewall with Advanced Security, click on inbound rules, sort by port.
>>
>>60360800
On Windows 7?
>>
>>60360297
the path update is out for windows 7 too
>>
File: 7FE6EC63-559E-48D5-9EEE-D4017781F65D-10594-0000123100C5ECAF.png (130KB, 336x284px) Image search:
[Google]
130KB, 336x284px
Luckily I'm safe. Pic related.
>>
>>60360779
tell that to my router then.
>>
>>60354780
>this will make the government ACTUALLY take notice since it affected hospitals and could have led to people dying from lack of medical care!
>government is currently trying to take health care away from 20+ million people, which is expected to cause ~24,000 more deaths per year
Yeah they don't give a flying fuck. It's ALL about optics.
>>
>>60360934
445 is the printer sharing & netlogon + remote management; it is open / allowed by default.
>>
>>60360921
I can't wait for some hackers to develop a crippling attack on all macs arouns the world so smug morons like you get fucked
>>
>>60360934
It is enabled by default through Windows Firewall. People who can log in to their router usually are on top of these types of issues.
>>
>>60360935
Not having healthcare doesn't make you sick.
>>
>The NSA did this to the UK, not The Shadowbrokers and not WannaCry, the NSA left these holes open to be exploited. The fault is 100% on them.
Woah. Is someone victim blaming here?
>>
>>60361018
Not being able to go to the doctor for a minor ailment can lead to you waiting until it's really serious before you go in. Then instead of a quick fix you're soaking up tons of resources.
Not having any form of health insurance at all leads to unnecessary emergency room visits, unpaid medical bills, and hospitals charging their paying customers that much more to cover for all the non-paying ones.
>>
>>60360515
nobody gave this bait a (You) so i'm going to help you out here.
>>
>>60356978
>Shadowbrokers
Why did a bunch of Russians give themselves a name from a shitty video game
>>
>the NSA left these holes open to be exploited
Wow, didn't know the NSA was that deeply involved in Windows security patch development.
The next time my OS crashes, I'll make sure to blame the US government. They should be fixing my software for me.
>>
>>60361214
t. NSA nigger
>>
File: 1488351631140.png (154KB, 366x318px) Image search:
[Google]
154KB, 366x318px
>see the pop up for a windows update on my win10 laptop (i know)
>think nothing of it, click remind me later
>see the update again, say fuck it i dont care
>go take a shower
>upon returning see that my computer is stuck in an automatic repair loop
>fuck.jpg
>try booting into safe mode
>still tries to repair drives
>try system restore from backup
>computer unable to rollback
>try system reset, it cant reset itself
What the fuck is this? Is this the ransomware at work or some random hardware issue? I've been able to log into my computer once since this started and i saw that all of my files were still accessible albeit the computer was only running on one core. I tried getting my stuff out but literally was not able to.
I've been trying to run disk checks from the command prompt accessible from the advanced startup menu (only accessible feature i have right now) but it takes so fucking long
Have you guys ever experienced anything like this? Could this be the russians fucking me in the ass?
>>
>>60361214
>russians release proof that the NSA maintained this and several other backdoors
>durrr it's not their fault!!
>>
>>60361296
You fucked up.
Clean format
>>
>>60361296
It's Windows Update™ working as intended.
>>
File: 1494437430413.jpg (20KB, 306x306px) Image search:
[Google]
20KB, 306x306px
So uh how do you actually get this thing?
>>
>>60361353
breathing near the infected
>>
>>60361303
>the NSA maintained this
The NSA introduced brain-wave patterns into Microsoft employees to prevent them from patching a security hole?
Stock up on healing crystals and chemtrail filters before you get thrown in the FEMA camps.
>>
>>60358221
i work for a top 10 ISP in the US and they literally pushed the patch out to every single PC on the network and forced us to reboot them. would have been absolutely disastrous if something happened.
>>
>>60360515
>There's nothing bad about anything he's done so far
Uh, he appointed a poo-in-loo as head of the FCC.
>>
>>60361353
Wondering about this as well. Checked PCs today and nothing happened to any of them despite neglecting updates.
>>
File: 1304376955947.png (341KB, 500x375px) Image search:
[Google]
341KB, 500x375px
>>60360297
It's only SMB1 that is the issue.
Run Disable-WindowsOptionalFeature -Online -FeatureName SMB1Protocol from PowerShell and reboot.
No more issues.
>>
File: Homo_Hat.jpg (17KB, 320x374px) Image search:
[Google]
17KB, 320x374px
>>60360921
>>
I think everyone who shat on Apple for not giving the feds a backdoor into the iphone during the San Bernardino case should be forcibly rounded up and abducted by a volunteer lynch mob so that the entire world can point and laugh at them simultaneously.
>>
File: 1432960659758.png (448KB, 900x900px) Image search:
[Google]
448KB, 900x900px
>>60361353
This so fucking much.
Of all the threads and news I've read, there isn't a single consistent way of infection apart from other computers in the local network.
So, HOW DOES THIS FUCKING THING MANAGE TO ENTER THE LAN?
Is it an email attachment, a webpage, WHAT for fucks sake. Anyone?
>>
>>60361324
How did i fuck up? Maybe my processor melted or something but i am not able to check for any hardware faults since i am not able to boot the computer. Should i really just format everything?
At this point i would be more glad if it was some ruskie ransomware, at least that i can fix
>>
>>60361353
Be connected to an infected network or get the program like you would any malware.
It's not going to randomly crawl through the internet to your computer.
>>
>"The hackers said they had published the password as a "protest" about US President Donald Trump."
will the bright orange man deploy bunkerbusters in retaliation?
>>
Should I install all security updates? Haven't updated windows 7 in YEARS.
>>
>>60361454
Yep, throwing redpills will do magic as usual.
>>
>>60361440
Nancy from finance opens "Fedex Delivery Notification.doc.exe" from an email attachment and the worm goes ham on your LAN after that.
>>
>>60361454
I wonder if they're still going to whine about him once CIA niggers assassinate him.
>>
so the way to avoid this shit is disable SMB1 if you have it and disable port forwarding on port 445
whats the big deal then? the average user wouldnt run the risk of getting this, even on a family network
>>
>>60361479
>CIA
FBI will do it.
>>
>>60361479
>CIA assassinating the retard scapegoat
>>60361353
I'm wondering this too, did the ruskie just send congratulationsyouvewon.exe to all those bong companies?
>>
>>60361500
Basically
If Bronwen the retarded toothless nurse opens statement.zip attachment she got from [email protected] at work then every computer connected to the network is fucked
>>
>>60361440
Infected computers literally generate random IPs and check if they're vulnerable. Infected computer then infects all computers connected via LAN and the cycle continues.
>>
>>60361454
Oh so Hacktivism again?
>>
>>60361440
Phishing.
What else?
>>
>>60361440
People who don't use NAT.
>>
>>60361523
>Infected computers literally generate random IPs and check if they're vulnerable.
first i heard of that
>>
File: IMG-20170512-WA0002.jpg (55KB, 640x1136px) Image search:
[Google]
55KB, 640x1136px
>>60361445
There's reasons to suspect that the program is self-executing, requiring 0 user interaction.
>>60361493
I thought SMB is enabled by default. Is it exploited with the SMB client or server?
>>60361500
Mate received an email like pic related. It's possible a lot of the recipients who wouldn't know any better clicked on something like this. Mind you, it's a fucking terrible look-alike.
>>
>>60361387
>Blackmailing OS devs is impossible for them, despite the evidence which clearly states they hace been doing it for +20 years
>>
File: IMG_20170513_083626.jpg (221KB, 1080x1146px) Image search:
[Google]
221KB, 1080x1146px
>>60361537
Check the malwarebytes blog post.
https://blog.malwarebytes.com/threat-analysis/2017/05/the-worm-that-spreads-wanacrypt0r/amp/
>>
>>60358318
Naturally, downloading this month's cumulative monthly rollup contains the fix as well, yeah?
>>
>>60361472
>"Fedex Delivery Notification.doc.exe"
.doc is good enough, macros are the devil.
>>
File: asdasdasd.gif (133KB, 600x338px) Image search:
[Google]
133KB, 600x338px
>enjoying your ransomware bucks in your private yacht
>suddenly about dozen small planes circling around you
>>
>>60361560
Windows desktop eternal BTFO.
All the effort of emet and other shit is in the trash thanks to a shitty port on a fucking desktop.
>>
>>60361537
>first i heard of that
because it's incredibly unlikely that anyone (except absolute morons) is going to have their computer wired directly to a modem which is the only way that attack vector works. the vast majority of infections are from LAN hopping via the exploit.
>>
>>60361560
Fuck. Quick way to close port 445?
>>
>>60361624
The only issues is SMB1, run this from PowerShell and reboot and you will not be vulnerable.
Disable-WindowsOptionalFeature -Online -FeatureName SMB1Protocol
>>
>>60361624
Firewall?
>>
File: ss+(2017-05-13+at+12.46.56).png (50KB, 1059x391px) Image search:
[Google]
50KB, 1059x391px
>>60361679
Wow, really fucked that up.
How to disable SMB fyi
>>
>>60361587
wont have time to worry about it, the jews will just kill these guys. accidentally fall down the stairs and get shot in the back of the head 3 times.
>>
>>60361704
That only works on Windows 7 and Vista, on 8+ the registry entries no longer work.
Just run Disable-WindowsOptionalFeature -Online -FeatureName SMB1Protocol from PowerShell and remove the tumor entirely.
>>
>>60361663
How do I confirm its closed?
>>
File: 291874891.png (5KB, 561x100px) Image search:
[Google]
5KB, 561x100px
how fucked am I?
>>
>>60358221
>>60358253
Wait how do I be a good goy and get my patch? Windows wants to update like it does every few hours, do I let it? If it updates will I get muh protection from the extortion? Will I still have to pay the extortion? Do I have to pay the extortion to get the patch?
>>
>>60361624
smash your wangblows shittop with a hammer
>>
>>60361624
install gentoo
>>
>>60361771
Of course it's listening, dumbshit. Is it blocked on the outside?
>>
>>60361726
Help? Win 7, should I just do the Registry thing?
>>
Is there any easier target in any company/organization that workers over 50? I swear to god some of them are completely and utterly retarded about technology. Pretty soon companies will realize what a liability they are to their data.
>>
File: 1480386730203.jpg (23KB, 352x482px) Image search:
[Google]
23KB, 352x482px
>open regedit
>no SMB1
>port 445 disabled
i should be good, right?
>>
>>60361875
because that guy is a mouthbreather. that isn't how you do it on w7.Set-ItemProperty -Path "HKLM:\SYSTEM\CurrentControlSet\Services\LanmanServer\Parameters" SMB1 -Type DWORD -Value 0 -Force
>>
>>60358223
>conservatives always "Goverment overreach! We need small government! States should make laws, not the feds! Stop encroaching on muh freedoms!"
>federal government agency is creepy, tyrannical, and embodies everything that conservatives traditionally stand against
>"hurrr libshits trying to make a political statement!"
>>
File: 1444016391623.jpg (17KB, 275x200px) Image search:
[Google]
17KB, 275x200px
>>60361862
>>
>>60361892
Is doing it in Regedit like this the same effect?
>>
>>60361926
come the fuck on you retarded shit stain
use your pea brain for once and think about what you're asking
>>
Did it fuck linux samba servers running on 445?
>>
>thinking any of this is good
NSA did nothing wrong, Microsoft did nothing wrong.
Without the means to observe you cannot protect.
>>
>>60361387
>There are no Microsoft devs working for NSA on the dl.
>>
>>60361930
Hey now, I just wanted to be sure. I'm learning alright?
>>
>>60361739
Check your firewall settings?
What the fuck
>>
>>60361930
not him
programmers are the biggest pieces of fucking shit i have ever had to talk to. every single one treats you like shit if you ask them layman questions. fucking terrible teachers. fat and bitter pieces of shit. fuck you
>>
>using windblows
>>
I updated my windows, I'm fine now right?
t.normie
>>
>>60361440
>>60361353
https://technet.microsoft.com/en-us/library/security/ms17-010.aspx
If you're fully updated you'll be fine
>>
>>60361930
You're a huge faggot nigger who's probably way past his pride, overweight, fat and lonely.
>>60361965
You should be fine.
>>
>>60361951
you could have figured this out without asking if you're really trying to learn. let's go through this step by step
>Set-ItemProperty
hmmm i wonder what this means
>-Path "HKLM:\SYSTEM\CurrentControlSet\Services\LanmanServer\Parameters"
compare this to the path in your regedit image
>SMB1
again, compare this to the image
>-Type DWORD -Value 0
again, compare this to the image
>-Force
hmmm i wonder what this means
>>60361961
ask stupid question get stupid answer. if it was something more esoteric i wouldn't respond like that, but for something so simple and obvious i shouldn't have to spell it out like that.
>>
>>60362000
like shouting at a kid because they ask you what 2+2 equals
bro ask a stupid question get a stupid answer.. yeah good work genius faggot. i wish i could kill you piece of shit
>>
File: 1481351934290.jpg (79KB, 874x684px) Image search:
[Google]
79KB, 874x684px
>>60362011
triggered, brainlet?
>>
>Our so called "National *SECURITY* Agency" should learn that their job is protecting us, not leaving holes open to exploit.
The only thing they learned from this is how they must keep this shit even more secretive from now on.
Bunch of little CIA niggers
>>
I checked Registry and I don't even have the SMB1 thing. The fuck?
>>
>>60362011
lmao.
>>
>>60362073
omae wa mou shindeiru
>>
I just went into "turn windows features on/off" and disabled it from there.
>>
>>60362089
Maybe if I had hit enter twice.
>>
>>60362088
nani??
>>
>>60361353
https://technet.microsoft.com/en-us/library/security/ms17-010.aspx
>>
>>60360800
Not him, but I had two things under Local Port 445 involving printer sharing, I just want to disable these rules right?
>>
Why do people bother with updating if you only need to block port 445?
>>
>>60362110
You
Have
To
Go
Back
>>
>tfw leaving port 445 open
Can't hack me or nuttin, I got norton.
>>
Somebody should make a pastebin of what to do for everyone at this point
>>
Fuck half of you guys are dumb fucks.
How about you actually do some research outside of /g/ and find out what's happening with the ransomware.
It doesn't matter if 445 is open as long as you have a critical update released in March.
>>
File: 1jIu1nh.gif (171KB, 515x461px) Image search:
[Google]
171KB, 515x461px
>>60362151
Can't wait for these zany new features! Haven't updated for 8 monthsm
>>
>>60362160
Update Windows.
If you're on Windows 7 then update MSE database too.
>>
Why i cant update?
>>
File: 1453957140964.png (235KB, 400x529px) Image search:
[Google]
235KB, 400x529px
>>60362187
>yes goyim, let our spyware onto your computer so that their spyware doesn't get on first, hehehe
Not fooling me this time Microshaft.
>>
>>60362187
If I update to the latest Windows version will it still have the Windows 10 nag shit?
>>
>>60362089
leddit is actually dogshit. This is the biggest news no contest and there is no word of it on their front page.
>>
>>60362223
>will it still have the Windows 10 nag shit?
Probably, idk.
>>
>>60362223
My concern is that I'm building a new Win7 machine.
Should be !!FUN!!
>>
>>60361612
What about integrated modem/router combos? I don't know shit about those.
>>
>>60362223
https://www.askwoody.com/forums/topic/2000003-ongoing-list-of-group-b-monthly-updates-for-win7-and-8-1/
>>
>>60362257
Those have built in/customizable firewalls, so.. maybe fine.
>>
>>60362000
You didn't even give him a stupid answer. You were just a cunt.
Like fuck, man. Are you okay? That amount of aggression out of nowhere makes for a really mentally unstable person. You must have a lot of problems. I feel bad for you. I bet no one likes you.
>>
I assume Port filtering is what I use on my router settings and put TCP 445 on there?
>>
File: 1481352717880.jpg (33KB, 300x375px) Image search:
[Google]
33KB, 300x375px
>>60362284
another triggered brainlet
>>
How exactly are people going to die because of a computer virus?
Kind of a retorical question. I want you guys to give me a broader view of things.
>>
>>60362284
Guy who asked here, not sure why he's upset over a simple question. Thanks anyways. Pretty sure it worked. Just means I'll have to do it again for my new computer build in the future.
>>
>>60362295
I'd like to know too. Is this all I need to do?
>>
>implying the NSA and the gooberment won't just say that this is the reason why we must end encryption
>>
>>60362312
UK hospitals got the virus and their computer systems became unusable.
>>
>>60362295
i just went to "block services" and put in the port that I wanted to block.
>>
>>60362312
Limeys are using paper notes. Someone misses that Hassan is allergic to drug X and he bursts into flame : (
>>
File: 2679776.png (720KB, 580x1000px) Image search:
[Google]
720KB, 580x1000px
>>60362153
Rip in peace
>>
>>60361958
I was thinking more along the lines of real testing.
>>
File: IMG_0615.jpg (61KB, 714x575px) Image search:
[Google]
61KB, 714x575px
>>60362303
I'm not triggered. Just don't understand the intense aggression for no reason. You shouldn't treat people like that unless they deserve it. Just be nice to people, fuck.
>>
>>60361663
So I can't do it from my router settings?
>>
>>60362413
Use another IP and ping your own port?
This is fucking amatuer shit.
>>
Two of these were green, I just grayed them out. Is that all?
>>
>>60362440
No, no it isn't. Networking cuntery isn't my forte and I never deal with it.
>>
>>60362312
Bong hospital IT is down, either infected or shut down to prevent infection. Can't see blood results, can't see X-rays, can't do CT scans ('computerised tomography'), can't do discharge letters, can't read old discharge letters for background information, and some hospitals use electronic prescribing so can't do that either.
>>
>>60362464
Add a new rule to actively block the port coming in.
>>
>>60362424
Is it hard to believe that a hobby/profession built around memorizing several different languages and sitting alone behind a keyboard all day may be predisposed to autistic people? Let Rain man over here meltdown, People's Court will be on tomorrow.
>>
>>60362481
We gucci? Or should I block UDP 445 also (pretty sure this isn't a problem, just being very careful)
>>
>>60362431
Most routers have a firewall.
>>
>>60362473
Just update your goddamn windows if you don't want to fuck around with ports. It is clear you have no experience fucking around with ports.
>>
File: 1476903526875.png (158KB, 1572x558px) Image search:
[Google]
158KB, 1572x558px
>install all updates available in windows updates for mine 8.1 machine
>Updates installs windows 10 defender
Does this mean they're gonna shove win 10 down my throat again?
>>
>>60362537
windows wont let you update anymore
>>
>>60362514
Should be, just to be sure, probably should do the Registry thing to disable SMB1 and update windows, I did all three.
>>
>>60362543
Nonsense.
>>
I dont have SMB1 in registry
am i fucked?
>>
>>60362223
wsus offline update. Select your OS and check 'security patches instead of monthly roll-ups'
>>
How did it spread so quickly?
I get within a network, but multiple countries, organisations and agencies?
>>
What KB was it again?
>>
>>60362223
That's been dead for so long that MS themselves pushed an update to kill that stuff off. But if you're really that worried about it you can just hide those four or five updates.
>>
>>60362482
Violent autism or not, I still think you should be courteous to someone if they haven't done anything wrong to you.
Might be hard for the autismos to understand, but still. I have mild Asperger's, and I don't call everyone who doesn't know vector calculus a "retarded shit stain."
>>
>>60362585
Lots of networks apparently have Windows boxes listening to SMB on WAN.
>>
>>60362573
I don't have SMB either. What do?
>>
What is this ransomware fiasco? Am I getting memed?
>>
>>60362585
>How did it spread so quickly?
dude....
it uses remote exploit. I mean, just scan public computers and send exploit, that's all. make sure when you successfully exploit PC, scan local network behind NAT too. repeat.
>>
>>60362607
Ohh okay, so the companies in a way are somewhat linked together (more than your average home PC) and it took advantage of that?
Thanks, I know a moderate bit about tech including malware but this pretty much hit my limit. Everywhere I search literally just says the basics about what ransomware is.
>>
>>60362585
Opening move was botnet OPEN ME PLOX I R IMPOrTANT AND LEGIT spam with pdfs and encrypted zips.
>>
https://www.theguardian.com/technology/2017/may/13/accidental-hero-finds-kill-switch-to-stop-spread-of-ransomware-cyber-attack
so is it over? can i go back to my shady porn sites?
>>
File: sellsoutforforbillionsofdollars.jpg (60KB, 500x370px) Image search:
[Google]
60KB, 500x370px
This thread is amazing, specially those port guys
>>
>>60361788
>Wait how do I be a good goy and get my patch? Windows wants to update like it does every few hours, do I let it?
I just downloaded the necessary patches available depends on the OS
https://technet.microsoft.com/en-us/library/security/ms17-010.aspx I didn't install any other pending updates.
> If it updates will I get muh protection from the extortion?
Not enough. you will need to block SMBv1, disable port 445, be aware of those malicious files/links and check any other computers connected within your local network.
>Will I still have to pay the extortion?
Well if you are already infected with Wanacrypt before you applied the windows patch. Well, sorry. too late.
> Do I have to pay the extortion to get the patch?
If this is the patch from windows that you're talking about, then no. It's widely available, see that link above.
>>
>>60362656
Was just reading that. It looks like it stopped the spread, can't see anything about it decrypting locked systems though
>>
>>60362585
read
>>60361560
Basically if you haven't took measures and you're connected to the internet you can get infected by mere chance
>>
I pray this comes to my work. i'd be so relieved to know the boss will lose all his files and will have to shut down his business and i would be able to collect neetbux.
>>
that's probably the most polite and helpful virus message i've ever seen. proper english, says please. helpfully explains the currency used to pay the ransom and provides links and times with which to do so in an easy to read FAQ format. there's even apparently customer support.
>>
>>60362656
It's ova?
>>
>>60362678
Lol ransomware usually has great tech support.
If they scam, the trust is lost and nobody's gonna pay.
>>
>>60362537
Calm down Spergticus, I've closed the port for inbound AND outbound for extra paranoia. If you don't know any methods of actually testing if I can penetrate my own network through the port then don't post.
>>
>>60362699
But then how will everyone know he's so totally knowledgeable, and that you are so not?
>>
File: 1404715769011.jpg (43KB, 500x375px) Image search:
[Google]
43KB, 500x375px
>>60362695
I want to see the job description for when they were hiring
>>
Lel
whole night shift production line was stopped at the Renault factory here in Slovenia.
IT guy is pretty fucked I'd say
>>
>>60362699
Hey retard, if you bothered typing these words in google you would already have had your answer 30 minutes ago.
"How to test for open ports"
There. Magic.
>>
why would they create a kill switch in a virus?
>>
File: 1484651491156.gif (549KB, 1200x800px) Image search:
[Google]
549KB, 1200x800px
Since I only update "security only" updates.
Was this correct updates to patch myself back form march?
https://support.microsoft.com/en-us/help/4009969/windows-8-1-windows-server-2012-r2-update-kb4012213
>>
>>60360562
it's his fault, for nor protecting the guns, my eternal whore
>>
>>60362638
Companies don't update their software.
That is all you need to know.
>>
https://www.youtube.com/watch?v=FrEdbKwivCI
>>
I don't have the update, fug
>>
>>60362719
What do you think we're discussing in this thread, retard? Why would I skim through hundreds of forum posts which may or may not be wrong when I can just listen to the spastics on here who are local?
>>
>>60362744
Anyone sitting behind a decent firewall should be safe.
This happens when you don't update windows and don't firewall your shit.
>>
>update win7
>instantly gets stuck in "update installation failed reverting" bootloop
>updates were paused due to windows update consuming 100% of cpu
I got it installed eventually but there's many reasons normal people would disable it. I have had to use my linux drive to salvage my win7 installation multiple times after updates left it unable to boot.
>>
>>60362748
>Testing ports requires discussion
Holy fuck can you be even more fucking moronic. There are actual retards on 4chan that turn to /g/ for actual tech support because they are too incompetent to use google. Fucking amazing. So the tech support stories about them googling 90% of the problems they come across is actually true.
>>
>>60362744
I'm on a vanilla windows 7 SP1, got no problems here. Firewall your shit and block javascript/flash on your browser, faggot.
>>
>>60362567
ryzen on 7, windows wont let me update, I used the offline updater, should be up to date but no real way to be sure as when its installed from that it doesn't show up.
>>
>>60362766
This should fix it
https://support.microsoft.com/en-us/help/3102810/installing-and-searching-for-updates-is-slow-and-high-cpu-usage-occurs-in-windows-7-and-windows-server-2008-r2
>>
>>60362757
Is windows firewall useful at all?
>>
File: smiley.jpg (44KB, 564x632px) Image search:
[Google]
44KB, 564x632px
>when the ransomware is trying to encrypt your files but your pc is a piece of faggot shit so it just bluescreens
>>
>>60362773
no one on windows ITT even knows the existence of telnet anymore
it's sad
>>
>>60361214
t. ultimate cuck
>>
>>60362787
Window firewall is adequate provided you know the setting and don't just allow everything that wants to connect. Just update your shit now.
>>
>>60362787
it's better than having no firewall at all
it's only annoying because outbound and inbound are separate
>>
they have a variable in their code called "MS17-010_attempt_pwn_thread"
i didn't even know people to still used the term 'pwn' ...
>>
>>60361399
pajeets usually work harder than buger-eaters
>>
i havent been infected and i just updated my windows 7 through windows update, dont care about botnet shit at this point. am i safe?
>>
>>60362773
>>Testing ports requires discussion
It does. You're in a thread about it you fucking autist.
>>
>>60362781
Block it from your router.
Hardware firewall > Software firewall
>>
>>60362831
Sure thing, Rakesh.
>>
>>60362852
We are in a thread discussing this exploit. We are not in this thread to spoonfeed retards like you. Fuck off moron. Seriously. Which fucking board did you come crying from? No way you can be from /g/ and not know the basics of how to test if ports are open or not.
>>
>>60362856
>home router
>hardware firewall
do you have an ASR at home?
>>
>>60362852
If you're the same guy, then I don't mind spoonfeeding you.
What I did was go into command prompt, copy and paste "netstat -an |find /i "445" " and it should tell you the status of the port in question. I closed mine, so all it said was that the port was "listening".
>>
>>60361885
you moron, you don't check on reddit if you have open ports
>>
>>60362540
shameful ask for help
>>
>>60354780
no it didn't. you can't blame a snake for having fangs.
it's good that the NSA is this sophisticated, imagine what they're onto now
>>
>>60362874
You don't?
>>
Blocked 445, disabled the SMB, never clicked shady shit, only other computer in my wi-fi is a Mac
Am I safe, /g/? First time here because of all the panic
>>
What the fuck is SMB?
It doesn't show up on regedit, is it part of some "telemetry" update from windowns?
>>
>>60362900
Why are you not updating your windows?
>>
>>60362900
>Am I safe
Nope, you have a faggot close to you.
>>
File: worriedpepe.jpg (33KB, 480x454px) Image search:
[Google]
33KB, 480x454px
>no update found or installed
>windows update catalog is broken
>>
>>60362913
https://msdn.microsoft.com/en-us/library/windows/desktop/aa365233(v=vs.85).aspx
>>
>>60362913
i just use windows for facebook is the smb a facebook or whatsapp?
>>
>Windows Update won't discover the patch because I'm stuck behind a 2015 update that I won't install because it renders Windows Update useless while wasting cpu power
>the Microsoft Update Catalog download service is returning nothing but erros
Windows truly is the best OS
>>
>>60362939
It's Super Mario Brothers
>>
>Governments want to ban encryption
>LOOK GOYS ENCRYPTION ATTACKED YOUR HEALTH SERVICES!!
>WE MUST BAN IT!
Does nobody else see this?
>>
>>60362871
I can tell you're an assmad sperg who recently got called a spoonfeeder. Its ok. I've been on /g/ for 9 years. More likley than not, there's a field or 2 which I know way, way more than you about. I'm not a handicap though so I know how to speak to people.
>>
>>60362121
>Published: March 14, 2017
thanks though pajeet you earned your 2 cents
>>
File: 1206076598580.jpg (57KB, 880x880px) Image search:
[Google]
57KB, 880x880px
>>60362923
>Why are you not updating your windows?
AM I BEING DETAINED!?
>>
>>60362960
>I have been on /g/ for 9 years
>Don't know about netstat
Why are you trying to lie?
>>
>>60361771
Running netstat on Windows makes me sick
>>
>>60362856
anyway to test to see if the ports are blocked?
>>
>>60363006
netstat
https://commandwindows.com/netstat.htm
>>
>>60361569
It should. I don't see why it wouldn't.
>>
>>60361387
Asshole, they could have easily notified Microsoft of the exploit so that they could patch it, but they didn't so that they could exploit it for their own purposes.
>>
>>60362955
wtf i hate encryption now
>>
>>60363024
not quite sure what I should be looking for to make sure its not showing.
>>
>>60361569
If not, the update you're looking for is KB4012212. Of course Microsoft's download catalogue is currently shitting itself right now. There are other places to get it but I don't know if you'd wanna trust them.
>>
>>60363078
You may have it backwards. When's the last time you saw MS release a patch for a critical vulnerability so quickly? I think MS knew and either chose or "chose" to collude with the feds.
>>
>>60362990
Why are you incapable of realizing that I'm not a bot and haven't perhaps been on /g/ at a time that port shit was discussed in a thread I was in? Seriously, go get yourself checked for autism.
>>
>>60361442
please respond
>>
>>60362913
Samba, its a file sharing service for linux
>>
>>60363096
Use telnet instead. Netstat checks for current listening porttelnet localhost <port number>
>>60363135
It is clear for everyone to see in this thread that you are a completely scrub at PC. Stop pretending to be an oldfag. Your answer has already been spoonfed to you. Stop posting like a moron.
>>
>>60362612
>>60362573
Me neither. Should I just make one and set it to 0?
>>
>>60363105
Is the win10 equivalent update 4013429?
>>
>>60362612
go to terminal and type "sudo su yum install samba" that will fix this
>>
>>60362913
Some >>>/v/idya released in 1985.
>>
>>60363164
going to sound fucking stupid, I'm typing this in the cmd and nothing is happening, its telling me telnet isn't a thing, I know I'm obviously doing something wrong, but can you tell me what?
>>
>>60363105
I don't have that in my Window's update, but I do have the May update. Not sure that'll cover it, but I'm hoping.
>>
>>60363164
All people can see is that you're an angry sperg. Sorry if I happen to be here longer than you, you dumb cunt. I don't do fucking network configuration for a living, last time I dicked around with any kind of network shit is when we were being niggers with LOIC.
>>
>>60363191
Turn telnet on. Should have mentioned that.
Control panel -> Programs -> Turn windows feature on/off -> Tick the Telnet client checkbox.
>>
File: microcock wangblows.png (52KB, 724x374px) Image search:
[Google]
52KB, 724x374px
>>60362923
Because then my Windows crack will stop working correctly, silly.
>>
>>60360963
please, crackers
>>
>>60363199
That was released back in March, so you probably won't if you haven't been keeping up on it (like me). The May "Rollup" update "should" have it, but I don't know 100%. Microsoft's documentation of their updates have purposefully been shit since last year.
>>
>>60363215
Not even that guy who was responding to you, I think he suggested netstat which just checks for listening port. I already mentioned telnet. Using telnet isn't even network configuration, nor do you need to do it for a living to use it.
You are a fucking scrub being fucking moronic and don't know a simple windows feature like Telnet. Kill yourself.
>>
>>60363164
And if the screen turns up blank and doesn't show anything, that means the port is closed, right?
>>
>>60363263
If it shows nothing means the port is closed.
https://www.lifewire.com/what-is-telnet-2626026
>>
>>60363249
I've only recently had to switch back to Windows from Linux you retarded cunt, I've forgotten some things in the 8 years I haven't used it. I'm not a babby gaymur either, I didn't use Windows at all. Maybe you should neck yourself if tiny thing like this enrage you.
>>
>>60362000
>Figured this out without asking
Why are you equating your IQ with the one asking you? If you don't want to help, just don't respond.
>>
>>60363273
>>60363164
>>60363263
so if its blank screen or it tells me it failed its closed?
>>
>>60363294
>More excuses
Stop. Forgetting about telnet is like forgetting that the command prompt exist.
Amazing how you say you used to use linux but can't google simple questions. It is frankly quite pathetic.
>>
>>60363222
should I keep this turned on or turn it off when im done?
>>
>>60363318
Just remove it afterwards. Better safe than sorry.
>>60363313
Yes.
>>
>>60361560
would it have been more efficient to give infected computers a range of ip addresses to scan instead of a random one? that way they aren't wasting time trying the same one?
>>
>>60363273
That's good. Still, to be safe, I have some family who leeches on the wifi, so I might just block all the ports from the router itself.
>>
>>60362990
>Don't know about netstat
Is he the guy who makes videos about jew york?
>>
>>60363317
>Forgetting about telnet is like forgetting that the command prompt exist.
Yeah nice try. With reaching like that maybe you should try basketball. I can google whatever I want shitfuck, I chose to ask here because why not.
>>
>>60363249
we don't know what telnet is because we aren't 50+ y/o oldfags who use antiquated shit protocols that have been depreciated by ssh. you daft faggot.
>>
>>60363344
That is a good idea. I don't trust my family members with technology either.
>>60363352
You choose to ask and got upset when someone told you that it was a simple google search? Nah. You are just a child and a moron.
>>
>>60363354
Doesn't mean it is not a simple and easy way to test ports you moron.
>>
So if this shit only runs around killing local networks, like at offices and hospitals does it even concern the NEETs and people who do nothing but browse shit at home?
>>
>>60363390
Better safe than sorry I say, since the people who don't think they're targets are the ones usually targeted.
>>
>>60363390
This shit infects everyone who didn't patch or aren't sitting behind a firewall. If you do both, you should be fine. People are panicing because the media is making a huge fuse about it and /g/ is the go to board for tech shit.
>>
>>60354780
>Wangblows damage control.
Yes, "security" agencies are to blame, but if you are a cuck company that complies, you are as much to blame.
>>
>>60363371
You choose to answer and got upset when someone didn't remember something about Windwoes? Nah. You are just a child and a moron.
>>
>>60363407
>>60363419
Ah figures. I'm already good but I was just sort of curious.
>>
>>60363437
Nah. I am just calling you a moron cause you are one. I was refraining from replying but when I saw you sprouting nonsense like 9 years on /g/ or 8 years linux users when it is clear to everyone you are not, I just had to call you a moron. I am sure everyone in this thread thinks the same as well.
>>
While I'm fiddling around in firewall settings, think I should block anything else guys? I just disabled everything even remotely affiliated with remote execution settings. I don't want anyone but me using this computer.
>>
File: 1490934422900.gif (2MB, 500x500px) Image search:
[Google]
2MB, 500x500px
>>60354780
>NSA should learn
>>
>>60363114
That's definitely possible, but its more likely it was just a fuck up from Microsoft. What can be pinned on the NSA without a doubt is that they not only stayed quiet about a particularly harmful exploit for their own purposes, but also didn't protect it adequately enough allowing it into the wild to be exploited by criminals.
>>
>>60363470
Block everything or at least stealth your ports. Then vet and accept inbound connections.
>>
>>60360562
>police can't defend their armory
Then it's their shit, no excuses.
>>
>>60358151
>literary sippin wine while wathcin the world burn
>also turkey
get rekt roaches
>>
>>60363468
>sprouting nonsense
What fella doesn't enjoy a good sprout after germination? You're still replying, you dumb autistic fuck. I'm not that old, people have been here for close to 13 years now. Not everyone came here 6 months ago like you.
>>
>>60360602
neetstat -abn says otherwise
>>
>>60363531
You are really triggered that someone called you a moron and you could have googled a simple question aren't you?
>>
https://support.microsoft.com/en-us/help/2696547/how-to-enable-and-disable-smbv1,-smbv2,-and-smbv3-in-windows-vista,-windows-server-2008,-windows-7,-windows-server-2008-r2,-windows-8,-and-windows-server-2012
niggers
>>
>>60363555
I'm just trying to educate a newcunt. Someone who's been here a while would shrug things off instead of going super saiyan tard.
>>
File: 1486447105277.gif (126KB, 720x480px) Image search:
[Google]
126KB, 720x480px
>I have to update the cancerous W10 updates now
Fucking.
Is there any way to install them manually on generic non business W10?
>>
>>60363592
Except you are the one who went super saiyan tard at the suggestion of google.
>>
>>60363624
>no u
Smart response. You German by any chance? They have an especially dry kind of autism.
>>
>>60363619
>https://technet.microsoft.com/en-us/library/security/ms17-010.aspx
You can download updates manually from the windows update catalog, but it seems to be chugging right now.
>>
>>60363646
I'm probably just going to install the cumulative since it's being hammered.
Thanks anon.
>>
>>60363643
>Google this question
>REEEE I HAVE BEEN HERE 9 YEARS
>REEEE I USED LINUX FOR SO LONG
>REEEE I DON'T WANT TO GOOGLE
Nah son. You a special kind of retard.
>>
>>60362151
how do you block it tho
>>
>>60363677
Firewall
>>
>>60363677
You can block it from your router, block it from your firewall, block it in command prompt I believe. I'd do all of them just incase.
>>
File: I don't think so Tim.png (2MB, 1024x768px) Image search:
[Google]
2MB, 1024x768px
>>60361445
>just dont connect to the internet
>>
>>60354780
Gov't:
>we need access to everything because terrorists
Terrorists:
>thanks G for making it so easy
Yeah, this is what normalfags asked for. Fuck them.
>>
>tfw running unpatched/activated win7
Just use some common sense when you're online.
>>
>>60363677
>have a router
>>
GNU+Linux doesn't have this problem
>>
>>60363659
>answer this simple thing
>REEEE WHY DON'T YOU HAVE THE WINDOWS HANDBOOK REVISED AFTER 8 YEARS OF NOT USING IT
>REEEE EVERYONE IS NEW HERE LIKE MOI
>REEEE I DON'T WANT TO STOP TARDING
I'm awake and can continue this shitpost tennis rally for a few more hours, but you'd be a certified autistic retard if you reply again.
>>
>>60363334
Thankyou, heres hoping I am up to date and everything is closed both in firewall on os and hardware.
>>
>>60362716
>desktop os
>factory
he deserves it
>>
>>60361018
>uhh i have a lump here
>nah it's nothing and visiting a doc would be too expensive
some time later
>buhu i have cancer fucking socialists have to wait far longer for their treatment meanwhile i can get into dept to pay for a treatment of something that could have been prevented if i would have gotten that lump looked at by a doctor
>>
>Havent updated W7 since January
how fucked am i?
>>
>>60361442
get a linux live cd and boot into it
>>
>>60363784
Everyone who hasn't installed the March patch rollup is vulnerable.
>>
How do I even check what updates I got installed for win10?
Surely "Up to date" doesnt mean you got all possible patches?
>>
>>60363299
another triggered brainlet.
>>
>>60362011
it's like shouting at a grown human who can read
for being too much of a lazy idiot to read
>>
File: 1462640404416.gif (1MB, 442x250px) Image search:
[Google]
1MB, 442x250px
>>60363784
>haven't updated W7 since 2011
>>
>>60363885
Enjoy your virus. You get it just being connected to the internet. Common sense won't help you here.
>>
>>60363885
That's pretty much me, I used it for the first time in 6 years today.
>>
>>60363902
What virus? this bitcoin shit?
>>
>>60362479
>having your mission critical hardware on a network where the general plebs have the ability to use it
fucking hell why is everyone so retarded in regards of security?
>>
>>60363915
Yep. Unless you're lucky enough that your modem/router doesn't let it access your open port 445.
>>
>>60363753
Not that guy, but jesus you're projecting. I'll give you that the initial guy you were talking to was being pretty rude, but he was still correct. Googling "check open port" or "open port test" would have left you with dickloads of front page results of tools for pinging your ports. He actually did answer your question. Now you're in an autistic screeching match because you can't stand the thought of giving up the last word. Who gives a shit who's a newfag or an oldfag? Who gives a shit what was more retarded between you guys? Stop shitting up our fucking thread with this drivel.
>>
>>60354780
>not leaving holes open to exploit.
How can they do anything about it if people won't update their systems anyway?
>>
>>60363951
well I do still have windows firewall
think this fine or should I fuck with router
>>
>>60363967
Thread's already past bump limit anyway, so it doesn't matter.
>>
>>60363970
By releasing the information to M$ and giving people the OPTION of patching, rather than holding onto it indefinitely.
>>
>>60363951
are there actually routers that are able to block ports that are not using a white-list for open ports?
>>
>>60363999
Ah, word. Chekt.
>>
>>60363994
It might be enough, not sure. To be on the safe side, disable SMBv1 in (I think) the registry. Look at the Workarounds section for security update MS17-010.
>>
>all these normniggers
Fuck back off to your shitskin containment board lmao
>>
>>60364006
Eternalblue was patched in March.
>>
>>60357897
>>60358230
stop pushing your fucking politics into everything, fuck off.
>>
>>60360562
false comparison
> police have the ability to magically cast a spell to make you do whatever they want
> anyone can find this magic spell if they wanted to
> some guy finds the magic spell from the police magic room, tells everyone about it and gives a solution
guns are not equivalent to exploits, back to /r9k/
>>
>>60364752
let's not use magic spells as means of simplified comparison, okay? Let's stick to guns.
>Police has secret fully-equipped snipers dens all over the town
>"just to shoot down the terrorists" they rationalize
>somebody breaks in, reveals locations of secret sniper dens
>somebody gets into the sniper den and uses it to snipe others
>>
>>60363773
>doctor looks at lump
>"you're fine, that'll be $300"
>can't use insurance because he didn't treat anything
>>
File: 4014206_en_1.png (85KB, 387x342px) Image search:
[Google]
85KB, 387x342px
so hard to fix WOW
>>
>a few months ago
>friend who just started a company asks for help
>"hey bro, you always rant about operating systems and security, will you install windows on all our computers?"
>"yeah, we need windows because our software only runs there. We'll pay"
>consider doing it because poor as fuck
>all clothes dirty
>have not washed myself in a week
>every pair of underwear stinks of dry cum
>decide I'm too lazy to get into presentable form, turn down the offer, make up some shitty excuse
>"oh, okay, we'll ask somebody else"
>if I had helped them, I would have disabled updates on every single computer
>>
>>60364911
good that there are healthcare systems that finance preventative examinations
>>
File: for men.png (770KB, 504x942px) Image search:
[Google]
770KB, 504x942px
>Have KB4012212 installed
>Restart PC for more updates I should probably get
>When it comes starts up again it asks if I want Microsoft to make changes to my computer
I scared that's the fucking thing, but if it's something that opens itself automatically like I've heard then surely this is just one of those 100+ updates I did right?
>>
>>60361424
>only SMB1
that's what I thought too, but look at Kaspersky Lab's post at https://securelist.com/blog/incidents/78351/wannacry-ransomware-used-in-widespread-attacks-all-over-the-world/
>the attack, dubbed “WannaCry”, is initiated through an SMBv2 remote code execution in Microsoft Windows.
...
>Is it correct attack over SMBv2? The MS17-010 official description talks about SMBv1
>It's correct.
Maybe it's both?
Meanwhile, I see MS has provided a fix for WIndows XP now: https://blogs.technet.microsoft.com/msrc/2017/05/12/customer-guidance-for-wannacrypt-attacks/
>we are taking the highly unusual step of providing a security update for all customers to protect Windows platforms that are in custom support only, including Windows XP, Windows 8, and Windows Server 2003.
Thread posts: 346
Thread images: 43
Thread images: 43