Free Republic
Browse · Search
News/Activism
Topics · Post Article

Skip to comments.

Dozens of countries hit by huge cyberextortion attack
Associated Press ^ | May 12, 2017 | ANICK JESDANUN, JILL LAWLESS and ARITZ PARRA

Posted on 05/12/2017 4:12:56 PM PDT by monkapotamus

NEW YORK (AP) — Dozens of countries were hit with a huge cyberextortion attack Friday that locked up computers and held users’ files for ransom at a multitude of hospitals, companies and government agencies.

It was believed to the biggest attack of its kind ever recorded.

The malicious software behind the onslaught appeared to exploit a vulnerability in Microsoft Windows that was supposedly identified by the National Security Agency for its own intelligence-gathering purposes and was later leaked to the internet.

(Excerpt) Read more at apnews.com ...


TOPICS: News/Current Events
KEYWORDS: globalcyberattack; globalransomware; hack; nsa; windowspinglist
Navigation: use the links below to view more comments.
first previous 1-2021-4041-6061-64 next last
To: monkapotamus

So let me get this straight - the dimwits at the NSA created a gateway into Microsoft program, then published the gateway such that any teenager living in his mom’s basement could hack any PC.

that’s the government for you


21 posted on 05/12/2017 5:34:57 PM PDT by vooch (America First)
[ Post Reply | Private Reply | To 1 | View Replies]

To: monkapotamus

Mat those who put this threat out be terminated/erased


22 posted on 05/12/2017 5:45:59 PM PDT by SandRat (Duty, Honor, Country)
[ Post Reply | Private Reply | To 1 | View Replies]

To: monkapotamus

I wouldn’t be surprised if its a concerted attack by North Korea and Iran.


23 posted on 05/12/2017 5:52:48 PM PDT by Daniel Ramsey (Thank YOU President Trump, finally we can do what America does best, to be the best!)
[ Post Reply | Private Reply | To 1 | View Replies]

To: monkapotamus

for Bill Gates to be secure,
you have to be insecure.

there will always be backdoors
in Microsoft products


24 posted on 05/12/2017 5:53:28 PM PDT by RockyTx
[ Post Reply | Private Reply | To 1 | View Replies]

To: American Quilter; taxcontrol
I was speaking with an IT guy about the movie "Slap Shot", where Reggie Dunlop announces that he is placing a personal bounty on the head of Tim McCracken, the coach of their opponent that night. I asked why don't companies offer bounties for the heads of the hackers? He smiled and said it may work.
25 posted on 05/12/2017 6:23:20 PM PDT by DoodleBob
[ Post Reply | Private Reply | To 12 | View Replies]

To: RockyTx

26 posted on 05/12/2017 6:51:51 PM PDT by caww
[ Post Reply | Private Reply | To 24 | View Replies]

To: monkapotamus
The malicious software behind the onslaught appeared to exploit a vulnerability in Microsoft Windows that was supposedly identified by the National Security Agency for its own intelligence-gathering purposes and was later leaked to the internet.

Your government at work for you!

At least AP got that line in for the 3rd paragraph, and not buried 14 paragraphs down...

Note that I am getting messages on MANY sites (including AP) about invalid security certificates. Not sure what that (so many such warnings) mean. They are a pain, too -- sometimes hard to close out and escape (close) the original website window.

27 posted on 05/12/2017 6:59:22 PM PDT by Paul R.
[ Post Reply | Private Reply | To 1 | View Replies]

To: All

Bring Edward Snowden back as a consultant and exile the NSA! (Source of the hack).


28 posted on 05/12/2017 7:44:30 PM PDT by Drago
[ Post Reply | Private Reply | To 1 | View Replies]

To: monkapotamus; Abby4116; afraidfortherepublic; aft_lizard; AF_Blue; amigatec; AppyPappy; arnoldc1; ..
PATCH NOW! RIGHT NOW!! ... PING!

You can find all the Windows Ping list threads with FR search: just search on keyword "windowspinglist".

29 posted on 05/12/2017 8:32:06 PM PDT by dayglored ("Listen. Strange women lying in ponds distributing swords is no basis for a system of government.")
[ Post Reply | Private Reply | To 1 | View Replies]

To: Hostage

When I get those calls, and they tell me that my MS Windows machine is corrupted / has a virus / etc.... I tell them, that is interesting, I only run Linux.

At which point they usually hang up.

If I want to play with them, I will ask them “Which one?” Is it the downstairs, or loft or the two laptops? And after a while I start to use my tech background to really mess with them.


30 posted on 05/12/2017 8:43:19 PM PDT by taxcontrol
[ Post Reply | Private Reply | To 10 | View Replies]

To: American Quilter

Sorry that is naive thinking. Even if it was legal (it’s not) there are all kinds of ways for these guys to hide who they are.

I do penetration tests as part of my job. Our attack method starts in stealth mode, then works up via a series of “escalations” to basically stomping around inside of someone’s environment. I have NEVER been detected in stealth mode, and only a couple times have I been detected and the next level up.


31 posted on 05/12/2017 8:47:53 PM PDT by taxcontrol
[ Post Reply | Private Reply | To 12 | View Replies]

To: monkapotamus

George Soros again.


32 posted on 05/12/2017 8:56:39 PM PDT by <1/1,000,000th%
[ Post Reply | Private Reply | To 1 | View Replies]

To: Hostage

You couldn’t get to Defender?


33 posted on 05/12/2017 9:14:00 PM PDT by Excellence (Marine mom since April 11, 2014)
[ Post Reply | Private Reply | To 10 | View Replies]

To: caww
The frequency of the attacks has overwhelmed the FBI’s Los Angeles field office, which has been unable to properly investigate all of them. The FBI’s surprising advice, according to industry sources: Pay the ransom. After all, the hackers aren’t asking much more than a Cannes hotel tab. In all of the Hollywood extortion cases, the hackers demanded less than $80,000. A law enforcement source says that in California, losses would need to exceed $50,000 for the U.S. Attorney’s office to prosecute, thus keeping the FBI from pursuing most of these cases.

How about have a backup of your data and software and just give the extorters the finger and wipe the drive and restore? I know it will take some work, but it's certainly cheaper than $80,000. Of course if you are a Hollywood liberal which by definition means you are stupid, you probably don't do backups.

34 posted on 05/13/2017 12:07:30 AM PDT by Swordmaker (This tag line is a Microsoft insult free zone... but if the insults to Mac users continue...)
[ Post Reply | Private Reply | To 19 | View Replies]

To: monkapotamus; ~Kim4VRWC's~; 1234; 5thGenTexan; AbolishCSEU; Abundy; Action-America; acoulterfan; ...
Massive, worldwide Ransomware attack hitting all versions of Windows computers but not Macs or Linux computers (at this time). However, if you are running a Windows instance in a virtual machine, make sure it is fully patched with the latest updates from Microsoft, which apparently does fix the vulnerability that this attack is utilizing to lock-up and hold these computers for ransom. Another good means of protecting your virtual PC drive is to make a copy of it and keeping it safe, preferably not anywhere that can be locked up with the PC. As always, make a good backup of your data. OSes and software can always by re-installed, but data needs to be backed up. — PING!


Apple Mac Security Warning
Ping!

The latest Apple/Mac/iOS Pings can be found by searching Keyword "ApplePingList" on FreeRepublic's Search.

If you want on or off the Mac Ping List, Freepmail me

35 posted on 05/13/2017 12:20:24 AM PDT by Swordmaker (This tag line is a Microsoft insult free zone... but if the insults to Mac users continue...)
[ Post Reply | Private Reply | To 1 | View Replies]

To: Socon-Econ; eddie willers
"... Windows 10 has automatic updates of an anti-virus app that blocks ransomware.

Well, yes it is Microsoft's fault. Overwhelmingly, but not entirely. I'll give you that.

Ironic that you mention the Windows 10 built-in module ("Windows Defender / MSE") that allegedly blocks ransomware in this of all days, since just a few days ago they had to patch a zero day exploit in Windows Defender affecting basically every operating system they support. The exploit was discovered by Google engineers, namely, competitors of Microsoft. That's just nuts.

Here's the story:

ZD Net: Microsoft releases emergency patch for 'crazy bad' Windows zero-day bug

Here's the NIST.gov background on it:

NIST.gov: CVE-2017-0290 -- Microsoft Malware Protection Engine Remote Code Execution Vulnerability

The exploit Google uncovered is that a security hole allows specially-crafted Javascript to easily trick the Windows Defender / MSE scanning engine to actually run the script it's scanning. It works because Windows Defender malware scanner has some kind of Javascript interpreter built into the framework. Who in their right mind at Microsoft decided a kernel-level, unsandboxed Javascript interpreter baked into their malware scanner was a brilliant idea? It actually has the proven potential to delivers worms and viruses to the entire installed user base.

And just today, the world's largest ransomware cyberjacking in history affecting only Microsoft products was caused by an exploit discovered months ago by the NSA.

Here's the most hilariously miserable part of the story: The private individual who stopped the global replication of the WannaCry cyber attack did it by spending $10.69 out of his own pocket.

But hey, Microsoft blames their users for not regularly updating their systems with security patches to plug exploits that even Microsoft can't identify without outside help from their market competitors, the US Federal government, and some guy in the UK named Darien who spent just over ten bucks of his own money. Wow.

I think Congress ought to investigate Microsoft at this point. This is several levels of magnitude worse than anything Volkswagen did with their diesel smog control devices. I hope you agree.

"... Hectoring people on the OS that is run on their system is like blaming the gun for someone’s death. It is who pulled the trigger that is to blame."

Eddie, read the explanation above and understand that the gun manufacturer in this case, Microsoft, marketed firearms that have no internal or external safety and when dropped are likely to not only discharge but also spin around on the ground like a 'Chinese Ground Bloom Flower' holiday firework firing bullets wildly until the magazine is empty. Might even reload itself and keep on firing. Moreover, the system the gun manufacturer put in place to assist you from dropping their gun actually increases the chance that you drop the gun.

Today was a really bad day for Microsoft. All over the planet. The hits just kept on coming.

36 posted on 05/13/2017 1:41:55 AM PDT by The KG9 Kid
[ Post Reply | Private Reply | To 9 | View Replies]

To: Socon-Econ

“Windows 10 has automatic updates of an anti-virus app that blocks ransomeware.”

I had a share that was left open to anyone on the network. It held useless information. It got ransomed. I blew it away and re-created it.


37 posted on 05/13/2017 3:30:48 AM PDT by AppyPappy (Don't mistake your dorm political discussions with the desires of the nation)
[ Post Reply | Private Reply | To 9 | View Replies]

To: TexasRepublic
I have not read about any Linux computers being affected.

Funny how that works huh? ;-)

38 posted on 05/13/2017 3:34:24 AM PDT by usconservative (When The Ballot Box No Longer Counts, The Ammunition Box Does. (What's In Your Ammo Box?))
[ Post Reply | Private Reply | To 4 | View Replies]

To: Swordmaker

“Backup”

HAHAHAHAHA!!!! Users don’t do backups. They expect some nameless faceless entity somewhere to do that for them. If backups do occur, they work tirelessly to turn them off.


39 posted on 05/13/2017 3:35:20 AM PDT by AppyPappy (Don't mistake your dorm political discussions with the desires of the nation)
[ Post Reply | Private Reply | To 34 | View Replies]

To: softengine

This sort of thing is why I just bought a Raspberry Pi this week. I’ll be doing all my finance stuff, and nothing else, on it. $100 for the Pi kit plus a Logitech keyboard and mouse, and a free surplus Dell monitor my son scarfed up for me, and I’m good to go. Running Raspian.


40 posted on 05/13/2017 3:41:18 AM PDT by FreedomPoster (Islam delenda est)
[ Post Reply | Private Reply | To 15 | View Replies]


Navigation: use the links below to view more comments.
first previous 1-2021-4041-6061-64 next last

Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.

Free Republic
Browse · Search
News/Activism
Topics · Post Article

FreeRepublic, LLC, PO BOX 9771, FRESNO, CA 93794
FreeRepublic.com is powered by software copyright 2000-2008 John Robinson