Ransom meme - Part 6

IF YOU GET INFECTED YOU ARE A GENUINE RETARD LOL

>>60358697
Got more pics of her? This ass is worth dying for

FUCK RUSSIA AND FUCK RUSSIAN """"PEOPLE""""

>>60358671
https://intel.malwaretech.com/pewpew.html

>>60358683
YOU JUST SHOULD UPDATE!

>>60358720
How about stop linking to previous threads and keep up with the pace, newfag. Lurk moar.

File: 4b1e9c58082378f88793b00c861d1b2e4d5307c1926cbaa4fb1e15b36e4f9faf.jpg (17KB, 333x379px) Image search: [Google]

17KB, 333x379px

>>60358671
post yfw this ransomware is gonna purge /g/ of phone shilling pajeets and graphic card /v/irgin threads

You can't get infected just by being connected to the internet. Anyone who tells you otherwise is a moron.

>>60358671
That is still underwear, what is the context of this?

>>60358671
How do I make a ransomware and get rich?

>>60358720
Fucking betamale.

https://vimeo.com/75534042

File: 1476710530958.gif (3MB, 654x431px) Image search: [Google]

3MB, 654x431px

>board filled with newfags
>commies can't stop spamming "USE LE LINUX PLS PLS PLS"
good day

>>60358722
fucking chinks

>>60358731
no thanks bill

>>60358720
that pic is older than the internet bro

THIS A FALSE FLAG from MS to force win7 user to move to Botnet 10.

>>60358737
Degenerate 3D whore posters still remain so it's all in vain.

>how to defend myself?
install gentoo

>>60358731
>update windows
It's almost as if they hire a malware maker to spread fear so that people update into the newer harder-to-disable telemetry features they tear into every dll file in various places.

>>60358671
https://www.theguardian.com/technology/2017/may/13/accidental-hero-finds-kill-switch-to-stop-spread-of-ransomware-cyber-attack

Lol

>>60358742
you actually can, if you are an even bigger moron

>>60358764
Update or just INSTALL GENTOO!

>>60358772
How nice it affects Win10, including the Creators Update
The patch was released a week later

>>60358721
Are you going to blame trump and putin boogeyman next?

>>60358776
/g/ is not and never will be weebfaggot territory

moot is dead

>>60358745
You ask Russians to do that for you.

File: 1492665061872.jpg (102KB, 540x540px) Image search: [Google]

102KB, 540x540px

>>60358796
windows 10 is worse than any ransomeware

fact

>>60358809
I don't speak Russian.

Retard here, I installed the update in the bulletin for windows 7, should I still block port 445?

Also, is there a tard's guide to understanding this stuff? most of it is over my head but I'd like to know more

File: Captura de tela em 2017-05-10 13-53-06.png (97KB, 242x435px) Image search: [Google]

97KB, 242x435px

>>60358808
Fuck off, Daiz.

How the fuck do you even get this? Like where do you have to go on the Internet to get this shit?

>>60358797
The security patch that fixes this ransomware was rolled out in March tho
And it's almost impossible to stop your Win10 machine from updating
https://gist.github.com/rain-1/989428fa5504f378b993ee6efbc0b168

>>60358816
You don't have to.

File: I love anime.png (36KB, 335x169px) Image search: [Google]

36KB, 335x169px

>>60358808

File: 1493164577244.jpg (171KB, 768x1024px) Image search: [Google]

171KB, 768x1024px

>>60358814
I was say to UPDATE THE FUCKING WINDOWS 7.

>>60358801
Except Russian hacker were always the leading force in creation of malware aimed at general public.

>>60358821
No one knows yet tbqh

>>60358808
>moot is dead
moot didn't even like anime anymore in 2012
Doesn't mean it's not an anime site
>>60358822
>And it's almost impossible to stop your Win10 machine from updating
Windows Update shits itself as much as it does on Win7 and Win8 on Win10
Most of the affected machines are machines that couldn't update without a clean install

>>60358810
just to add to "not disabling those shits right away"
apparently there is another exploit that works in the same way over RDP (Remote Desktop)

>>60358847
What the fuck did you just try to say just now?

File: 1490242317320.jpg (88KB, 960x720px) Image search: [Google]

88KB, 960x720px

>>60358847
...nah

>>60358809
Why would a Russian who can code ransomware make it for someone else to make money off of instead of doing it himself?

>turn auto updates off before even windows 10 happened
>never update again in fear of force upgrade
>this shit happens
I have 2 fucking things accessing 445 now and I can't fucking stop it

>>60358791
tl;dr

>>60358821
Animu torrents and trap porn sites.
So 95% of /g/ is infected.

>>60358890
you could.... turn it off?

>>60358883
It's less dangerous, you still have to infect computers and that's a whole different thing and you can always sell or lend it.

>>60358892
Kill switch in malware if it can connect to a domain, random guy registered it making it live.

No new infections will happen if the code isn't changed.

>>60358890
welcome to the botnet

File: 1494544017286.jpg (34KB, 640x427px) Image search: [Google]

34KB, 640x427px

>Windows 7 SP1 no updates
>Did all the hardening involving EternalBlue back when the memebrokers nsa tools got released months ago
>We even had several threads about this
>Everything still safe and sound
>$300k starting

>grr microsoft I will NEVER UPDATE
>gets fucking hacked

Autists BTFO

>>60358890
i'm sure you have good recent backups of all your data

>>60358916
remove 5 lines and ship it back out

get fucked

How scared should the malware creators be now? Did they even expect it to get this big?

>>60358916
>No new infections will happen if the code isn't changed.
which has probably already happened

>>60358945
Implying most sensible people haven't gone offline after it hit the headlines

>placing a killswitch on fucking malware
Someone explain how a kill switch would help them in any way.

>>60358937
I should

When will this blow over? I'm only sticking to this site and Youtube for now.

>>60358964
>sensible
>using windows

>>60358791
>accidental
How the fuck is it accidental when the guy literally found the switch and deliberately registered the domain to activate it?

Tard from past threads trying to run linux here
>installed in a usb
>tried to boot from my notebook with 7
>runs fine
>try to boot on my xp desktop pc
>doesn't work
Fuck me. Guess it isn't compatible with my hardware?

>>60358986
He was trying to create a live map so he could see how many infections there were. It was accidental.

>>60358946
I guarantee you they are shitting themselves with how far this spread. Even if they're in a non-extradition country, it affected pretty much everywhere relevant, and all the countries that were infected have a lot of pull.

Essentially, the US could, and might, go full retard and declare them terrorists, and France, the UK, and Germany won't say shit. Russia probably wouldn't even complain.

>>60358986
He didn't know it was the kill switch. It was just a domain that was somehow involved.

I'm on night shift at a mental health ward in the UK. Systems are fine here.

I'm on break before anyone accuses me of negligence.

>>60358946
I would take a sledge hammer to my computer and flee the country, get plastic surgery, and work in a bakery for the rest of my life after abandoning all technology

>>60359007
As usual commies going against the trends of freedom and well being of the whole globe.

>>60358967
Easy way to stop if it gets out of hand, which it did
Growing like this it's pure success, unless you're too afraid of getting agencies looking for you
The guys behind this weren't prepared for success

File: Capture.jpg (131KB, 1465x606px) Image search: [Google]

131KB, 1465x606px

I suspect the SMB bug cannot be thee whole story. You do not reach these remote places via SMB alone.

>>60358946
If I were them I wouldn't even touch the bitcoin generated by this.

>>60358974
it connects computer to computer, not through browser zero days.

Why is NSA hacking British hospitals?
Why is NSA hacking Russia? Is this because Russia stole Trump?
What is FedEx do with this?
Is USA world bad guys?
Please help me understand. Excuse the English.

>>60358989
your initramfs is personalized for your notebook
boot the failsafe option in the boot loader or remove "autodetect" HOOK from your /etc/initramfs.conf
and rebuild your initramfs image

>>60359038
>You do not reach these remote places via SMB alone.
Why?

Is disabling port 445 enough?

>>60359044
It doesn't "think" it just looks for vulnerabilities as it spreads around. It's like a zombie that happened to bite someone who was on their way to an international airport and before you know it the world is infected

>>60358974
Sticking only to certain sites will not help you if your network is compromised.

At the very least, you should make sure that your network is considered 'public' ie untrusted. But you're even better off closing port 445 and/or updating.

>>60359065
Yes. But you should update anyway, cuck.

>>60359013
hows the ward? shits boring to be in, i can't imagine working there is that much better

>>60359045
As I said, I'm a retard. What does that mean?

>>60358742
couldn't you if you A) weren't behind a router (i.e. plugged directly into modem) and B) had default windows functionality (i.e. SMB) turned on?

you'd still have to make yourself a target somehow for something to know you have 445 open

>>60359061
Those places are SAT connected.
No one runs SMB on a SAT line.

>>60358808
>I wasn't around for Techloli/g/y
Filthy dumb newfag scum

>>60359038
its an e-mail "invoice" virus which when installed will do SMB

>>60359013
sems to be mostly x-ray machines are fuXored? - according to the Graun - dunno why specifically those, but, I can see why inability to make one may be problematic for OPs etc. Maybe all less problematic in a nuthouse tho.

>>60359071
I already had port 445 closed before this started. Hopefully that's enough.

>>60359044
NSA isn't doing shit you fucking idiot, some kids just used some outdated NSA code that was leaked months ago.

>>60359088
>No one runs SMB on a SAT line.
In a perfect world yeah.

>>60358742
Being connected directly to the internet is exactly how you get infected and the worst thing you could possibly be doing.

>>60359089
kys weeb fuck

>>60358866
>apparently there is another exploit that works in the same way over RDP (Remote Desktop)

God damnit, I actually use RDP.

>>60359086
yes
>>60359111
"connected" and "connected directly" are very different things.

File: retardese.png (239KB, 700x563px) Image search: [Google]

239KB, 700x563px

>>60359114

>>60359096
It's enough until the next one comes along.

>Russia probably wouldn't even complain
weren't they hit the worst?

>>60359083
your USB installation isn't a "generic" one, it was tailored for your laptop
by default, most distros places 2 options in it bootloader the default one and a failsafe one, for when these kind of problem happens
i can't help any further for lack of knowledge (i don't know which distro you are trying, and how it behaves by default)

but i gave you a few hints for what search for
>bootloader
>initramfs
>autodetect

>>60359132
sorry, how about BAKA BAKA KAWAII NOTICE ME SENPAI ^__________^

>>60359099
So NSA wrote the virus?
Is this a war act?

>>60359132
stfu furfaggot

>>60359044
It's just outing the organizations with inept security personnel (shitskins)

What is port 445 even used for?

>>60358731
>Haven't updated windows 8 in two years
Am I gonna get ransomed from accidentally clicking on a gelbooru ad? Also where's the installgentoo wiki? It won't let me on it

>>60359148
I'm trying to install gentoo (think the minimal installation is enough to test it out for now?)

>>60359096
You can get security-only patches for W7, if that's what you're concerned about. No need to download all the shitware additional patches. Just head to the MS catalog and grab the month's security-only patch manually.

>>60359176
malware

>>60358986
>be him
>see in the binary files that there's a domain involved
>check
>hey, it's unregistered
>register it to see how often it's accessed and make a live map
>holy shit it's actually the killswitch

>>60359176
SMB, duh.

>>60359176
SMB for sharing your anime collection with your redditor housemates

Do security-only patches only patch one specific thing, or do they include previous patches for everything up to that point too?

>>60358760
You are the first to mention linux, you fucking retard.

>>60359193
That is a great coincidence don't you think! Guess these things happen sometimes tee hee

>>60359081

Great. I'm a student so I have less responsibility, I'm surrounded by qt female nurses and support workers and I get to chill in the office doing my uni work

The job is interesting. One minute you're doing injections, then someone's tried to kill themselves, then you're doing therapy, then you're in meeting and shit, it's a cool job. Last place I was at was a forensic unit for mentally ill convicts, medium secure prison hospital basically. This is acute admissions so general public.

>>60359002
>try to map cool thing
>end up breaking it
>hero

>>60359212
nah it also comes with a fuckton of botnet

>releasing malware on friday
>it gets detected and everyone fixes it during the weekend when illiterate employees that open worddocument.exe don't work
>minimal impact
He could have made so much money if he started on Monday.

I'm not updating from win 7 to that winshit 10

>>60359217
Falseflagging at it's finest

File: skinners.jpg (22KB, 480x360px) Image search: [Google]

22KB, 480x360px

>>60358760
>it's a winfag doing damage control
pathetic

>>60359038

What is the trigger for this virus to start working?

how can you get infected?
or its just malware lottery?

>>60359232
>implying sysadmins work during weekends

>>60359233
Sure, but at least update your fucking security or patch everything yourself

>>60359071
Would turning my computer off help?

>>60359095

I've not heard anything about hardware failure, mainly database failures meaning services are delayed. This is bad and can ultimately lead to deaths which seems likely at this point.

>>60359242
>What is the trigger for this virus to start working?
Being a retard aka not updating.

File: u mad.gif (274KB, 300x300px) Image search: [Google]

274KB, 300x300px

>>60359157
>>60359165
Triggered much?

>>60359182
i never used gentoo, so i don't know what are its default packages, and what composes the "minimal" install
but if it is something alike arch or debian netinstall
the answer is no, isn't enough to do anything

>>60359264
So in other words, literally just leaving your computer on?
Great work pajeetsoft

>>60359242
It seems it started via malicious email attachments, but now you can get it just by being connected to an infected network. Either block port 445 or update and you'll be safe.

>>60359265
>I was just predending to be retarded guys!

>>60359225

I don't mean to say that it's cool when people hurt themselves btw, or when there are incidents, just that it's not a dull work environment

>>60359225
sounds chill. i'll look into it. thanks anon

>>60359272
Which one would you recommend?
This pc is shit (reason why i haven't updated to 7), so I think it may be a hardware thing.

>>60359122
Virtually all ransomware variants only look for port 3389. Simply change your external port to some random port which is redirected to the internal 3389 port.

File: u fuckin mad.jpg (37KB, 412x439px) Image search: [Google]

37KB, 412x439px

>>60359283

>>60359273
>literally just leaving your computer on
That's why they made automatic updates, duh.

>pajeetsoft literally can't win

>>60359095
>dunno why specifically those
Probably a similar thing that happens in the US. From what I remember, the FDA requires medical equipment to be certified, including the particular software that is installed when it's tested for stability. This means there's a lot of outdated software running on medical devices, that receive patches and updates through an arduous process. Makes it a bitch for the information techs that have to manage those machines. UK probably has similar regulations.

>>60359255
Actually, I think just disconnecting it from the internet would be enough to help.

Of course, there isn't much of a difference, functionally speaking.

And nothing will help you if you're already infected.

So it's over now? :\

>>60359242
likely it was released very recently and spread faster than anticipated

how to not get:

1) be behind a router that is not forwarding port 445 (99% chance yours is not)

or

2) if not behind a router, first kill yourself, then disable SMB or block port 445 in your windows firewall

if you are on public wifi, i.e. college, then do 2

or install the security update

>>60359265
stfu furfag

Who is not behind a router nowadays? Who still connects inbridge mode?

>>60359242
The initial attack was a massive email campaign with some sort of attachment (probably pdf file). Upon opening said file the rest of the malware was downloaded to the affected system from TOR networks. The malware then proceeds to infect systems on the network but also seeks systems with exposed SMB ports on the internet. So yes everyone with those ports open and not patched can get infected.

>also some other vector may be at play. We just don't know. It is alleged that it has been kill-switched but historically these type of malware have more that one C&Cserver.

>>60359295
>these fucking microsoft shills
How about building a sane OS that doesn't have such egregious bugs in it
How is does one of the most valuable companies in the world produce a more vulnerable operating system than an open source project?

uh oh I don't even have SP1 on my win7
Can I update then use that "Remove Telemetry" script?

>every ones says just update
>they conveniently never state which specific update fixes this
Nice try microsft.

Open Resource Monitor.
Go to the "Network" tab.
Expand the "Listening Ports" tab.
Find the PID for anything listening on port 445.

Open Task Manager
View > Select Columns > Check PID > OK
Find the processes linked to the PIDs from above.
Kill anything suspicious.

>>60359314
I'm still hooked up directly to my modem desu

>>60359323
Because they are that valuable is because they get all the shit.

>>60359323
>How about building a sane OS that doesn't have such egregious bugs in it
Show me a bugless OS then.

>How is does one of the most valuable companies in the world produce a more vulnerable operating system than an open source project?
And your measure is?

im really lost on internet protocol shit...

do i need to block port 445 from tcp or udp?

>>60359336
nigger i hope you have 445 blocked or smb off or you're gonna have to pay bitcoin to read this post

>>60358671
girl on the right is THICC

>>60358671
>>how to defend myself?
>Run windows update.
hahahahahahahahahahahhaha
*inhales*
hahahahahahahah

winbabbies never learn

>>60358671
Oh shit.
I'm on debian testing w/ a 4.9+RSBAC kernel. How fucked am I?

>>60359344
Show me an example of such a bad RCE bug in linux

>>60359290
try some liveCD (you can install on USB)
from whichever distro you like
Mint, Fedora, Ubuntu, SUSE
even if you don't actively use, it might be useful for something (partitioning, coping backup'ing)

>>60358946
Who cares. Anyone who makes this sort of shit unironically deserves to be waterboarded every day for the rest of their lives.

If you ransomware a hospital you are a worthless piece of shit.

>>60359331
It says "System" is using port 445

>>60359375
It's too late friend

>>60359347
go into your firewall and look for "file and printer sharing (smb-in)

turn that off

>>60359375
Sounds Russian. Kill it.

>>60359038
North Korea didn't get hit.

>>60359368
I don't know such a bug but consider this: is one bug enough to destroy it for you?

Okay, so why the motherfuck do people refuse to update? I mean, come on. If you hate Micro$oft that fucking much, why do you stick with their software? Even worse, with a buggy and vulnerable outdated version of it? Are you forced not to switch to Linux?

>>60359375
You have File Sharing & Discovery enabled, most likely. If you don't mind killing network filesharing via native Windows services, you can set "Server" to Disabled in Services.msc

>>60358770
Pink's only been around since 2002

I-is it safe n-now?

>>60359411
>why do you stick with their software?
Because everyone else does. If major developers started making competent software for Linux I would move.

>>60359397
Illiterate pajeet shill confirmed

>>60359395
Dear Leader probably uses Best Korea OS

>>60359411
>Are you forced not to switch to Linux?
Excuse me? Why would I be switching to complete garbage?

>>60359433
GNU/Linux*

>>60359411
Because they hold muh games hostage
But I am not retarded to not backup everything daily

>>60359435
Literally not an argument.

What ports should I block on my router?

>>60359442
>GNU
He didn't say he was using this thrash.

>>60359411
Telemetry fears that can be easily fixed. Also enterprise cats who aren't allowed to run security only updates for fear of losing critical functionality blah blah.

>>60359382
Looks like I already had it off. I set it to block though just in case and told my router and firewall to block 445.

>>60359433
Okay, but I still don't get why people don't
update their security
>>60359440
If you refuse to update I assume you do hate Windows for semo reason
>>60359464
>Telemetry fears
What's that? Honest qurstion

>>60359480
Who said I'm using Windows?

>>60359374
not disagreeing, Ebil Haxor should be flayed alive, very slowly, etc. - but I doubt that hospitals n shit were really an intentional target here, tbf. If only some government agency had known about the bug months previously to fix, or, the UK Govt stopped cutting funding to the NHS, allow them to maybe get beyond XP, or MS stopped stuffing their OS updates full of hidden telemetry crap to the point where actual malware almost appears the saner, and def more honest choice, etc. ad infinitum. Theres no winners here.

so... this is actually a NSA scheme to make everyone update to Windows 10, right?

File: C_rLceHVwAAaZKx.jpg (31KB, 1146x664px) Image search: [Google]

31KB, 1146x664px

The attachment file as per twitter.

>>60359480
Windows started rolling in (more) telemetry and spyware into their regular updates when they were not getting enough 10 upgrades.

>>60359232
It actually completely fucked FEDEX

>>60358776
fuck off weeb.

Okay can I run Ubuntu from a usb drive?
I can open HDDs that don't have the windows partition on linux right?It won't fuck up them right?

>>60358946
a few cat pictures will be lost at most.
any system of value will already be running something unixy.

it's incompetent IT admins allowing a gaming OS in the production chain that have any reason to be scared.

>>60359512
> make everyone update to Windows 10 by infecting Windows 10
Bold.

>>60359534
Yes

>>60359516
>not MelaniaTrumpNaked.exe

cmon step it up

File: meow.jpg (102KB, 844x619px) Image search: [Google]

102KB, 844x619px

>>60359464
>enterprise cats

>>60359535
>biggest, most widely used OS by normal people, academia, governments and companies alike
>gaming OS

https://intel.malwaretech.com/pewpew.html

killswitch bollocks

>>60359534
mount them as read only just to be sure.

File: 1494585797757.jpg (323KB, 583x1508px) Image search: [Google]

323KB, 583x1508px

How do I close port 445 if I'm windows 8?
I don't know shit about tech

>>60359581
You mean mounting on Ubuntu?

>>60359287
It's fine to be interested in mental illness, and take enjoyment from that interest. Do you watch Terry stream? Shit is super interesting to watch. I'm also schizophrenic, but medicated decently and very much not as severe. Regardless, our view of the world is entirely internal, there isn't any objective basis we have for reality, we can only take the information we receive as real, and it's possible for that information to conflict for other people. That alone has given me food for hours of thought, that, and whether or not I sound as crazy to other people as Terry sounds to me. I'm going with no thus far, but the whole thing is still a weird frame of mind to be in.

>>60359594
just make sure you are updated.

>>60359374
It's the NSA that is ultimately responsible for the deaths in that hospital so her will be no justice

>>60359442
*Linux

Do I need the update if I'm hooked into my router? I don't want to download it if I can avoid it.

>>60359501
>or, the UK Govt stopped cutting funding to the NHS, allow them to maybe get beyond XP
It ain't funding. It's the pathological nature of IT in a large organization. Well, any large organization where IT ins't the core product or service that they produce. People don't want to touch a working system. If something like this happens, then it's very disruptive, but the blame is diffusely distributed. On the other hand, if you push one patch that breaks something, your job is on the line. And there's a strong culture of "we can't afford any downtime, at all!", especially somewhere like a hospital.

There's a bunch of banks making billions in profits (and paying billions out in dividends) that are still running XP. Poke around in the dark corners and you'll find old friends like 2000 and NT 4. Everyone could afford to patch and upgrade, its just that its not an organizational priority to do so. The risk of needing to clean up after disasters like this is, to all the decision-makers that matter, lower than the cost of doing IT properly.

>cant block ports with my router

nice

>>60359606
Yes. You need to mount the ntfs drives on Ubuntu so as to be able to access them.

>>60359631
what kind of shit ass router do you have?

>>60359628
as long as you're not forwarding port 445 you're fine

idk why you would but there ya go

>>60359631
Routers usually block by default & you need to manually open ports

>>60359501
Shouldn't hospitals be running 10 LTSB?

>>60359662
I don't know how to check that. I'm on mount stupid, here. I know more than the average normie but still not much.

>>60359631
nigger the ports are blocked unless you forward them

there are websites that let you check if the port is open

>>60359671
If you have a router then it's blocked already

>>60359668
No. They should be running gentoo.

>>60359671
If you didn't port forward port 445 then you didn't port forward port 445. Not hard to understand.

>>60359671
go into your router by open your browser and going to 192.168.1.1 (sometimes 0.1)

if it prompts you with a user/pass then usually admin/password if not then look up your brand's default user/pass

there should be an option for port forwarding - by default it's probably not forwarding anything, so you're good

>>60359653
I have have the same thing, no fucking clue what the person who programmed it was thinking.

Well, it's >>60359666 but there isn't a list of what is open, and the defaults that are forwarded are unblockable. I just use iptables, I can't be bothered to flash it.

>>60359674
Arent these websites honeypots? If I had 445 open right now how can I know it wont be exactly that website who attacks me?

File: test.png (3KB, 398x67px) Image search: [Google]

3KB, 398x67px

I should be good, right?

>>60359694
That's good. I haven't updated since 2015 because Windows Update is a shitshow that always makes my PC heat up and uses all my CPU unless I use some black magic ritual involving windows media player and internet explorer.

>>60359711
to be honest i'd be concerned too

if you have a router 445 is blocked 99.999% chance

>>60359711
lol

>>60359711
so tell me your ip and i check it for you

>>60359711
Certain processes listen on certain ports, nobody can break your ssh key over port 445 if it's listening on 22, that's the whole point.

>>60359724
yes

File: Capture.png (178KB, 368x400px) Image search: [Google]

178KB, 368x400px

Oh shit oh shit oh fuck

FAGS I DON'T EVEN HAVE SP1 SHOULD I PANIC

>>60359193
>>register it to see how often it's accessed and make a live map

So he was registering a domain to see how many times it got pinged by infected machines running the wannacry sw and it ended up being the killswitch? That's fucking hilarious

>>60359745
i think what they're afraid of is a website going "come here to check if 445 is open"

what's stopping them from building a db of IPs and just trying them because some won't be behind a router

>>60359758
Skids get shredded by curious NEETs once again.

>>60359568
>security blog
>doesn't even load without javascript
(((intel))) needs to die.

>>60359567
>biggest, most widely used OS by normal people, academia, governments and companies alike
the fuck?
I guess you're in for some serious pain if you run mission critical stuff on Nintendo Switches, Microsoft Windows, Sony PS4:s and so on
but isn't the anger towards the malware creator a bit misguided then?

>>60359753
>Ransomeware holds toothbrush captive
>Dental hygiene falls into a state of despair
>Never get laid again
>Ransomeware effectively holds anon's virginity ransom

Has malware gone too far?

>>60359724
445 isn't specific is it? If it's just some random port you won't be safe from all the copycats after this doing similar.

File: update3.png (58KB, 1049x348px) Image search: [Google]

58KB, 1049x348px

god fucking damnit microsoft get your shit together

>>60359614

I haven't but it's interesting to me that voice hearing, as one example of hallucination, is pretty common. There's all kinds of unexpected stuff going on with the mind.

File: Shitindows 7.png (1KB, 411x23px) Image search: [Google]

1KB, 411x23px

>>60358671
Is disabling SMB1 on W7 enough or do i need to update this shitshow? I havent for 8 months.

>>60359525
>FEDEX
has anything actually been reported about whats happened to them yet?

>>60358671
they should have used the ransomware to ask for only 1 dollar. And have it sent to "happydude"

>>60359782
Fucking idiot.

File: 1457322362759.png (81KB, 166x166px) Image search: [Google]

81KB, 166x166px

>>60359730
>>60359734
>>60359742
>>60359745
Im scared please direct me to a safe site to check.

>>60359767
Yes, like those "was my email breached?" sites.

>>60359801
it specifically uses a vulnerability in SMB, which listens on port 445

no port 445, no SMB, no vulnerability

another port would imply another vulnerability

File: 1483308354557.png (234KB, 413x448px) Image search: [Google]

234KB, 413x448px

>>60359753

why the toothbrush itself and not the timer

also that is horrible get a larger photo and try again so it doesn't look like a blob of pixelated blood and cum on the screen.

>>60359767
Nothing, but it's just a slightly more effective attack vector, for more work.

If you're forwarding random ass ports from a non-updated windows machine you've been pwnd long ago. Learn how to check like an adult, but it's not like it's going to make anything worse (unless they are DEVILISH and always return that the port is blocked so you think you're safe and don't do anything)

>>60359823
They should have used reisenware

>>60359801
it is specific for SMB (Windows File Sharing)
which has said exploit, that allows remote code execution

File: seamonkey_2017-05-12_23-18-50.png (43KB, 2282x1300px) Image search: [Google]

43KB, 2282x1300px

>>60359824
>he uses javascript

>>60359803
Are you using IE? that site hates ff etc.

>>60359835
>always return that the port is blocked so you think you're safe and don't do anything

savage af

>>60359840
>he thinks it's a blog and not an interactive map
>he thinks it has something to do with Intel
Hang yourself.

>>60359165
lurk 3 years before posting

>>60359867
>interactive map
oh i don't care then.

>>60359753
B-L-O-A-T

>>60359829
>Im scared please direct me to a safe site to check.
Do you have no external computers? You could run a portscan on your outward facing IP with your phone (after disconnecting from your wifi)

Just learn how to configure your firewall, if the website actually tells you it's open that's what you're going to be doing anyway.

this is glorious

>>60359815
Disabling SMB1 stops it. Remember that you have to reboot for that to take effect.

File: update4.png (58KB, 659x367px) Image search: [Google]

58KB, 659x367px

>>60359857
I wasn't.
now I am.

>>60359038
Even cyber Madagascar doesn't get infected

File: 1465684531378.png (14KB, 600x400px) Image search: [Google]

14KB, 600x400px

I want to congratulate French Southern and Antarctic Lands with 0 (zero) infections so far.

>windows update "patches/fixes" the memeware by using telemetry, rendering ransom meme's ports useless
my keks

File: aaaaaaaaaaaaaaaaaaa.png (273KB, 399x394px) Image search: [Google]

273KB, 399x394px

>>60359944
having the same issue over here
can someone upload this to a better website?
fuckin microsoft i swear

>>60359944
try these direct.

https://www.askwoody.com/forums/topic/2000003-ongoing-list-of-group-b-monthly-updates-for-win7-and-8-1/

File: untitled2.jpg (1MB, 1200x1609px) Image search: [Google]

1MB, 1200x1609px

Oh god no

no this cant be happening

>>60359753
Underrated

>>60358671
what does kloss have to do with this? did she comment on it or something?

>>60360016
She's in the process of making a decryptor.

>>60359816
I have family that works there and people are getting called in to get their asses in early since their logistics are currently limping. Management has been informed that the night schedule is fucked at the moment

>>60359753
Oh boy you can't brush your teeth anymore!

File: 17799325_280044709118110_4444205343417788362_n.jpg (184KB, 700x917px) Image search: [Google]

184KB, 700x917px

>be me
>see threads about not up-to-date Windows computers getting btfo
>realize I haven't updated
>install the security update
>sorry we couldn't complete those updates :(
>PC hangs while booting
>realize Windows update is better at fucking my shit up than malware

File: 18222330_10155217489191684_5070301653938200461_n.jpg (25KB, 769x544px) Image search: [Google]

25KB, 769x544px

>>60360070
Hot lollers

>>60360016
Kloss is bruteforcing it right now.
They are using a revolutionary dictionary that doesn't use offensive/sexist words

>>60360070
>facebook filename
>tech illiterate
>wangblows
all checks out.

>>60360001
What a twist of events

File: 1487286454626.jpg (102KB, 715x1114px) Image search: [Google]

102KB, 715x1114px

>>60358722
Fucking Madagascar.

>>60358808
>he isn't part of the /a/g/pol/fit/lit/ master race

>>60359977
Just either turn off SMB1 or just run the entire WinUp.

>>60358937
>tfw no backups
>tfw never update
I only have all the shit on my computer because I'm a hoarder anyway. Being forced to reformat without keeping my shit would be a blessing in disguise.

File: 1470563375779.gif (851KB, 570x498px) Image search: [Google]

851KB, 570x498px

So if you have this though
https://support.microsoft.com/en-us/help/4012215/

You should have this
https://technet.microsoft.com/library/security/MS17-010

Right? I couldn't find a direct install of the latter on my update history but I could find the former.

What's the current status of the infection? Have essential services like the NHS removed it yet?

>mods not putting up the malware screen as a floating image as a prank

I miss moot

File: thicc.jpg (98KB, 1080x1223px) Image search: [Google]

98KB, 1080x1223px

>>60359355
his is T H I C C, the shit on OP's pic is a fucking ball of lard with issues.

>>60360234
>my ball of lard is less ball of lard than your ball of lard
wew

>>60358671
>run windows update
Can't do that on Linux.

>>60359330
https://technet.microsoft.com/en-us/library/security/ms17-010.aspx#ID0ETZAG

File: 1494630267578.png (94KB, 1262x680px) Image search: [Google]

94KB, 1262x680px

>>60359815
>>60359937
How do you disable it?

I imagine if the last time I updated was 15 months ago im going to have some issues if I try to instal kb4012212 right away. Is there any up to date list of non botnet updates? Last time microsoft trued to force telemetry as important security updates.. Fuck now im thinking if this is not microsoftnitself trying to make people move from w7 for good.

Or what about using the windows built in firewall? Im a complete idiot when it comes to networking but I know you generally only a handful of open ports for normal use.

>>60359432
no its only beginning friend

>>60360298
Regedit

https://support.microsoft.com/en-us/help/2696547/how-to-enable-and-disable-smbv1,-smbv2,-and-smbv3-in-windows-vista,-windows-server-2008,-windows-7,-windows-server-2008-r2,-windows-8,-and-windows-server-2012

>>60359711
connect to 445 on your own external ip

>>60358760
Install gentoo

>>60359374
>if you ransomware a hospital you are a worthless piece of shit
>implying they specifically targeted hospitals
>implying it isn't the hospitals fault for having shit security and still running XP

>>60360234

Thick means more than having an ass, she doesn't even qualify.

>>60360327
Oh thanks, both server and client just to be sure and only SMBv1 right?

>>60358967
Tell the fbi you can shut it down in exchange for plea deal. Lighter sentence if you can reduce the damages

>>60359425
Being this retarted and gay

Seriously, would someone show me how to disable 445 through Windows XP? I'm still running it.

>>60359374
>If you ransomware a hospital you are a worthless piece of shit.
if your government cannot protect their technology, how do you expect them to protect you or your data?

intentional or not, this virus is wonderful. everyone should be tested so weak software and users fail. someone with more malicious intent could have targeted hospitals and made it scrape data instead of hold the computer ransom. i would consider that worse. hospitals obviously hold backups, but when data is released, it is forever released.

>>60360501
Google how to block it using Windows Firewall.

>>60360494
>not knowing how to greentext

File: 9277-Nzypq78x7n.jpg (100KB, 711x1066px) Image search: [Google]

100KB, 711x1066px

>>60360234
>>60360461
Thicc is more like pic related.

>>60360512
>having to memetext just to call someone a dumbass

File: 1494569617206.jpg (98KB, 306x462px) Image search: [Google]

98KB, 306x462px

>>60358791
>Microsoft released a patch (a software update that fixes the problem)
Do normies really need the definition of a computer patch to be explained to them?

>>60360503
Insurance companies should start charging more for hospitals running wangblows. Some enterprising young actuary should get on that shit.

File: welp, see ya.gif (2MB, 274x257px) Image search: [Google]

2MB, 274x257px

>>60360184 here, I think I'm good to go

>>60360521
>being this autistic about OP pic with the whale
dude, fuck off seriously.

My Firewall blocked port 445, so do I need to update?

>>60360510
I could only find this:

---

How to disable port 445?

You can easily disable port 445 on your computer. To do so follow these instructions:

Start Registry Editor (Regedit.exe).
Locate the following key in the registry:

HKLM\System\CurrentControlSet\Services\NetBT\Parameters

In the right-hand side of the window find an option called TransportBindName.
Double click that value, and then delete the default value, thus giving it a blank value.

Close the registry editor.
Reboot your computer.

After rebooting open a command prompt and in it type

netstat -an

See that your computer no longer listens to port 445.

---

Does that sound right?

>>60360554
http://www.thewindowsclub.com/block-open-port-windows-8-firewall

This is for 8, but you should be able to figure out the XP equivalent.

>>60360530
When I worked as an IT monkey basically every single word or simple terminology is like an arcane spell incantation to normies.

Shit's hell.

>>60360532
Seriously. Everywhere I go, I see Windows 7 running some java program, and the person using it is inputting all my personal information. Banks, hospitals, doctors offices, insurance offices. No matter what data I control myself, I cannot refuse these services and yet they compromise me more than anything else.

If I could get any power in government, you better believe I'd be fighting against this shit.

>>60358967
Keep it from being stuxnetver17

>>60360527
>not knowing when to greentext and when to not

>>60360586
I've been here all summer mate and I can triforce since last week

>>60360570
That's just the problem - there's no option to configure inbounds through XP's firewall

Thanks for trying by the way

>>60360580
>If I could get any power in government, you better believe I'd be fighting against this shit.
you would end up sucking a lot of cocks if you try to fuck up or getting a lot of money under the table for staying in line.

>>60360570
445 is TCP amirite?

>>60360542
>do i need to close this exploit???
back to facebook.

File: 1479876610707.png (9KB, 426x364px) Image search: [Google]

9KB, 426x364px

This shit is fucking interesting in how god damn huge it is! #/g/punk is having a fucking go with this. It's everywhere! Is there a list of all the major things infected with it yet?

>>60360611
Worst part is, you're right. Either that or some planned scandal throws me out. But someone's gotta do it, god dammit.

File: thumbsup2.gif (1MB, 320x240px) Image search: [Google]

1MB, 320x240px

>>60359993
this is gold my friend

File: 1466234483387.gif (890KB, 640x360px) Image search: [Google]

890KB, 640x360px

You're an angel /g/, thanks for your help.

>>60360640
Over 9000 babby dead in windows controlled incubator. RIP Babbys.

>>60358671
>can't update windows 8 because of a processor thingy
shit am i fucked guis?

File: a.png (4KB, 1040x18px) Image search: [Google]

4KB, 1040x18px

I'm good now, right? I also blocked 445 in my firewall alltogether and turned off that one service.

I use a modem switch instead of a router because I live in a huge apartment building and don't need wifi for my things, kind of worried.

File: 1482824976937.jpg (16KB, 236x337px) Image search: [Google]

16KB, 236x337px

>>60360650
You're welcome

How much mad dosh do you think the kid is making off the ransomware?

>>60360731
Over 2,000 dollaroo

Have we started a fire?

>>60360731
He's probably lost 10 pounds in the last 12 hours. The btc will likely never be touched.

>>60360731
You could just... You know, check the transactions for the bitcoin addresses.
It was 10k the last time I checked and that's certainly not worth having the cyber police after you.

>>60360769
*10000

>>60360781
Why wouldn't they be? Isn't anonymity one of bitcoin's main pros?

>>60360731
sweet fuck all - taking out hospitals and shit (and, there WILL be casualties here, just ain't counted them yet) and got the NSA taking a deeply personal interest in seeing you swing, nobody fucking mad enough go near that stash in a hurry, if ever. Be dreaming of somewhere where they'll never hear a knock on the door again.

>>60360789
Cyber police? More like fucking putin black squad.

>>60360815
>Isn't anonymity one of bitcoin's main pros?
No. The blockchain holds every transaction.

>>60360853
They hold ever transaction but they won't know who is behind the transactions. Now if you try to use it legit, you are getting you ass fucked but there are plenty of shady ways to use BTC.

>>60360853
What about tumblers?

>>60360694
>>60360691
kill yourself. i was giving out tech support earlier because i felt bad for retards but you subhumans just don't stop coming.

>>60360886
Seriously. We need an OP with every damn link in it for the mouthbreathers and fresh meat.

But hell if I'm writing it. I'm going to bed.

>>60360530
>normies
You tell us.

>>60360873
can still be tracked with enough effort. given that people died over this, i think there is going to be more than enough effort.

>>60360647
those motherfuckers know how to work that lobby. I honestly would not mess with them. Shit is rotten and people throws principles over the board as soon as someone offers some money.

Should I install all security updates? Haven't updated windows 7 in YEARS.

File: aah.jpg (9KB, 300x200px) Image search: [Google]

9KB, 300x200px

>>60357792
>tfw ransom meme prevented dozens of future rapes

>>60361414
No, you'll be fine. You haven't gotten a virus in years, you've got many more to go before it ever becomes an issue. You'll probably be dead by the time it matters.

>>60358784
This.