27 May 17 – Win7 Hit Hardest by WannaCry

Home Forums The Poll Discussion 27 May 17 – Win7 Hit Hardest by WannaCry

This topic contains 5 replies, has 5 voices, and was last updated by  RChandra 2 months, 3 weeks ago.

Viewing 6 posts - 1 through 6 (of 6 total)
  • Author
    Posts
  • #5653
    Nick Francesco
    Nick Francesco
    Keymaster

    Yep. Windows 7. Yep.

    #5655

    Racerbob
    Participant

    This makes me wannacry.

    #5656
    Christian
    Christian
    Participant

    http://www.bbc.com/news/technology-39997581

    “The attackers initiated an operation to hunt down vulnerable public facing SMB ports and, once located, used the newly available SMB exploits to deploy malware and propagate to other vulnerable machines within connected networks”

    I don’t get it. Who has public facing Windows file sharing? I used to do that from RIT’s Resnet when I didn’t know any better, but you’d think most people would be behind a firewall router. Is that something easily bypassed with UPnP? I’ve heard that feature is a security risk so I’ve always disabled it.

    #5658

    RChandra
    Participant

    It doesn’t matter how, if anything manages to get a beachhead by being on your LAN, it can just broadcast to find routers, and without authentication, ask for traffic to be let into your LAN. Think of it. Ordinarily, to allow something into your LAN, you’d have to log into your router with sufficient privilege and alter the configuration to allow that traffic. With UPnP, your barrier is being able to connect to your LAN…that’s it.

    As far as exposing hosts, why not? If you need to share (or receive) files, use a technology which facilitates that. There are probably a lot of better choices, like SFTP, because MS has a history of bug-riddled software. Probably not a whole lot of people do it, but I guess it would be possible to turn on SMB encryption to implement data integrity and privacy…don’t think it’s on by default.

    #5659

    ScreenScream
    Participant

    I decided in the past week I am likely, finally, switching to Mac products this year. The cost has always kept me away, but with added hatred directed at Microsoft, it has become an appealing option.

    Then it occurred to me that all the Win attacks are actually coming from secret Mac workers, in an attempt to make people angry enough to want to finally switch.

    I’m falling for it.

    #5660

    RChandra
    Participant

    Teh Linux!!

Viewing 6 posts - 1 through 6 (of 6 total)

You must be logged in to reply to this topic.

Comments are closed.