If you have an unpatched Windows installation you are vulnerable to the SMBv1 exploit, except perhaps if you are still on WinXP in which case your machine is more likely to crash than to start encrypting. Do yourself a favour and head to Microsoft to manually download the patch appropriate for your OS and run it, if you already have it then it will tell you so, otherwise it will repair the vulnerability. The version of Wannacry and its progenitor, EternalBlue, which is making life miserable for users and techs everywhere does not currently go after Win10 machines but you can read how it can easily be modified to do so over at Slashdot.
"The publicly available version of EternalBlue leaked by the ShadowBrokers targets only Windows XP and Windows 7 machines. Researchers at RiskSense who created the Windows 10 version of the attack were able to bypass mitigations introduced by Microsoft that thwart memory-based code-execution attacks."
Here is some more Tech News from around the web:
- Microsoft slaps down Kaspersky's Windows 10 antitrust complaint @ The Inquirer
- LifeTrak Zoom HRV Wearable Body Computer
- Fujitsu PC biz tie-in with Lenovo to happen 'soon' @ The Register
- Why You Must Patch the New Linux sudo Security Hole @ Linux.com
- Foxconn, Amazon, Apple join Toshiba chip plant feeding frenzy @ The Register
- iOS 11 ain't coming to the iPhone 5, iPhone 5C or iPad 4 @ The Inquirer
- TRENDnet TV-NVR104K 4-Channel HD PoE NVR Kit Review @ NikKTech
Sooo…. keep your system up
Sooo…. keep your system up to date is the lesson here???
And that M$ “most secure
And that M$ “most secure Windows ever is no more secure than any other Windows has been, despite all the telemetry and built in spyware.
So because a modern day bank
So because a modern day bank might be robbed, it is no more secure than one from the 1870s.
I like that one; I will have
I like that one; I will have to remember it.
https://www.scmagazine.com/th
https://www.scmagazine.com/the-truth-about-mainframe-security–and-where-you-should-be-focusing/article/655118/
Sometimes older tech is much more secure.
If that bank from the 1870s is built more securely than a stucco facade building is today, then sure.
Your analogy is nothing but a strawman though. In reality Windows isnt a secure by design OS and never has been.
Windows 10 is little more than the kernel from 8.1 with some new spyware baked in. Why would anyone who knows anything about computers or security imagine that 10 is inherently more secure than an older version when so little has changed?
It is, after all, compatible with all those potato laptops that it installed itself onto without permission, like the ring 0 rootkit that 10 is.
Secure by design OS are not common in the consumer space, and neither is secure by design hardware.
Lets turn your fallacious strawman example on its head for fun, shall we?
IoT and connected homes, appliances and cars have revealed a massive attack surface to threat actors, creating threats that didn’t exist before, so appliances, homes, and cars that lack this “new tech” are inherently more secure than their newer counterparts.
So, if your modern bank has been hacked, the alarms and IP video surveillance disabled remotely and an unarmed crook can walk in and steal everything, then the old bank with a steel vault is more difficult to rob.
But really, who needs to rob banks? Most people are clueless about security, so there is a huge black market for credit cards and other PII that get stolen using malware on a user’s endpoint. If they want to make more effort, they compromise the POS terminals like they did with Kmart and Target. Then there’s the whole espionage that’s become so easy thanks to insecure newer tech.
Id be interested to know how much malware is on your machine 😉
I do believe someone has been
I do believe someone has been triggered. Reading the posts from these brand new accounts is fun. Especially the guy who made an account just to say he was leaving forever.
They are one of my recent
They are one of my recent favourites.
So you actually read the
So you actually read the content of my post?
You don’t disagree with my assessment, you state that I’m triggered. Interesting.
If you disagree with my assessment, why not point out the factual inaccuracies of my post?
Do new accounts trigger you? What makes you think i haven’t posted here without logging in(since it was never required) for the last five years?
See, there’s a difference between refuting someone factually, as I refuted the poster I replied to, and simply getting triggered, which is what my post seems to have done to you.
“If that bank from the 1870s
“If that bank from the 1870s is built more securely than a stucco facade building is today, then sure.”–The only security is the exterior building materials? Talk about a strawman argument.
“Lets turn your fallacious strawman example on its head for fun, shall we?
IoT and connected homes, appliances and cars have revealed a massive attack surface to threat actors, creating threats that didn’t exist before, so appliances, homes, and cars that lack this “new tech” are inherently more secure than their newer counterparts.”–These items are relevant to the bank analogy how? Remember, your refuting my “fallacious strawman” bank analogy.
“So, if your modern bank has been hacked, the alarms and IP video surveillance disabled remotely and an unarmed crook can walk in and steal everything, then the old bank with a steel vault is more difficult to rob.”–So the bank just leaves their money sitting out in the open or maybe in a closet? No, the money is kept in a room with 2 foot thick steel reinforced concrete walls with a 1 ft thick steel door that has time-delay lock. (I have seen the effort required to access a 1970’s era branch bank vault after the vault door was accidentally closed on a Friday afternoon. Several hrs work for a team with tools and no need for stealth.)
“Id be interested to know how much malware is on your machine ;)”–You take for granted that there IS malware on my machine and only question the amount, indicating to me that no amount of proof will ever sway your position so why should I waste further time on the argument.
You know what they say about
You know what they say about providing sustenance to bridge dwellers …
Implying that someone who
Implying that someone who refutes an idiotic statement like his is a troll? Classy.
1. The implication, which
1. The implication, which should have been easy to pick up on, is: if the modern bank is a poorly made insecure building, then a better made building from the 1870s can be more secure, regardless of age. Your implication is that newer = more secure, which is nonsense.
2. Its relevant to the bank analogy because i am further emphasizing that newer does not equal more secure. It can mean less secure. As was the case with Windows 10s Wifi Sense which was removed due to security concerns.
I am simply stating that Windows 10 is no more secure in reality than an older version like 8.1, just because M$ marketing folks say it is.
3. Why did you just move the goalposts from 1870 to 1970? Trying to employ more logical fallacies?
They keep the cash and valuables in vaults, but money is mostly kept digitally these days, making it quite easy to steal using malware. I guess you didnt pick up on the distinction.
4. Why are you getting triggered that i insinuated that your security illiterate attitude leads me to believe that your overconfidence in Windows 10s security would lead me to believe your computer is probably infested with malware?
I dont know why you wasted your time. Triggered much?
Anyway, you could simply demonstrate knowledge beyond repeating “a newer bank is more secure”, then moving the goalposts to “a 1970s era bank is secure”.
1) I find it hard to believe
1) I find it hard to believe a bank does not build on its previous editions. They would not suddenly forget locks on the doors or even keep the same old locks, but install the newest, harder to pick locks. Continuous improvement in all areas.
2) Referencing continuous improvement, newer CAN equal more secure, as long as they keep previous hard-won lessons in mind. I feel much, much better about Windows 10 than the first iteration of Windows XP.
When I hear the marketing speak I am thinking in terms of a couple of generations. Windows XP vs Vista vs 7 vs 8 vs 8.1 vs 10. learning lessons with each iteration and not backsliding.
3) I was referencing a 1970s era bank because I WITNESSED the effort to reopen a (modern) vault that was prematurely closed by accident (a momentarily unattended young child closing the vault door at 3pm on a Friday). This occurred in 1978. This was not moving the goalpost as you wish to imply. I was pointing out the incredible effort required to access the cash in a modern bank that had been hacked. The thief could not waltz in and just walk off with the cash as you stated.
I did pick up on the distinction between cash/valuables and digital currency, but my analogy was a bank. I considered that sentence to be a deflection from the argument.
4) As I said, in your mind I am a neophyte unable to comprehend the dangers inherent in running a modern OS. I am incapable of updating my system or running scans. I have no idea of things like virtual machines and sandboxing. I click on every pop-up, download registry cleaners and truly believe Sandy has some naughty pictures she wants to share with me. You truly are the only person on the web with a clean machine and I am so humbled that you have enlightened me with your time and wisdom. Good night.
1. Agree for the most part,
1. Agree for the most part, however if you ADD new features like IoT style WiFi unlocking or remote operation features to things that were once secure, the point remains that you can unintentionally make a secure thing less secure.
Take Wifi Sense and torrented updates, which showed no common sense or decency on the part of M$.
Since we are discussing security, i won’t go into detail about M$ Windows 10 basically being spyware itself, because that’s a privacy issue. However, privacy issues can become security issues.
2. Mostly agree again, except that M$ and other makers of consumer level hardware and software have done plenty of backsliding.
3. I guess the bank analogy isnt so great for an operating system then.
4. My reply may have come off condescending, but your initial statement seemed condescending toward me.
My beef is with Windows 10 being overly hyped and mostly garbage. Its not that secure and its not much better than 8.1 in any meaningful way.
Why is this being posted
Why is this being posted now… these patches rolled out back early March.
People don’t patch. If they
People don't patch. If they had installed that SMBv1 patch when they should have then WannaCry would not have been a thing.
🙁
It also wouldn’t have been a
It also wouldn’t have been a thing if people used exploit mitigations on their internet facing applications, but most don’t.