looks like the world is being attacked by a very serious Ransomware virus.

so far UK, US, China, Russia, Spain and many more data's being hold to Ransom. its called WannaCry. and affects windows computers.

The infections seem to be deployed via a worm - a program that spreads by itself between computers.

Most other malicious programmes rely on humans to spread by tricking them into clicking on an attachment harbouring the attack code.

By contrast, once WannaCry is inside an organisation it will hunt down vulnerable machines and infect them too.

Some experts say the attack may have been built to exploit a weakness in Microsoft systems that had been identified by the NSA and given the name EternalBlue.

http://www.bbc.co.uk/news/technology-39901382

 

[PrincessLillie]

But it has "devastated" the world because it was able to spread without user interaction thanks to a day zero exploit on the Windows SMB implementation paired together with clueless users that didn't update Windows for two full months.
Now the clueless users should not be clueless anymore, and save for the irresponsible ones their Windows versions should be updated.
Linux and Android are not vulnerable to this exploit from the start either.

So now, without that capability, this ransomware is irrelevant.

Yeah... Look at this link. The world is still getting slammed.
Also, I agree that they should have updated. Dumb users.

ChromeOS is Linux. The reason why this one was so devastating was because people fail to keep their computers up to date. Generally speaking this was honestly overly hyped, but I guess "the ignorance of thousands fucked up their computers" isn't as great or scary of a headline.

Well, I learned something new today. Chrome OS = Linux.

 

[sarkwalvein]

Here the list of countries was inflected with stupid Wcrpt (WannaCry or WannaCrypt)

https://intel.malwaretech.com/botnet/wcrypt/?t=24h&bid=all

I can't see Europe there... I really can't see it anymore!!!
Oh wait, a little of Sweden seems to show up there. /s

 

[NintendU_the_great]

Well, I learned something new today. Chrome OS = Linux.

yup
traditional "Linux" distros are actually using GNU / Linux
Chrome os is Chrome & Linux, so no GNU / Free Software in Chrome OS

 

[wolfmankurd]

yup
traditional "Linux" distros are actually using GNU / Linux
Chrome os is Chrome & Linux, so no GNU / Free Software in Chrome OS

Spent a decent half hour looking this up, no idea what the ChromeOS userspace is. Think it's very mixed. Pulling loads of pacakages from Gentoo. But also mentions of toybox and busybox. https://events.linuxfoundation.org/sites/events/files/slides/chrome.pdf

 

[spotanjo3]

FYI sorry to burst your bubble but even Mac & Linux can get infected from the virus only if you do these things (which is virtually impossible for anyone with brains)
1. run wine with SUDO - NEVER DO THIS
2. PURPOSEFULLY DOWNLOAD AND RUN THE MALWARE (why would you do this)
3. ta da! only now, your home folder is encrypted, all your other system files are safe.
unlike windows, this doesn't happen automatically on *Unix xD


except most system admins (like the ones in my school) are brain dead and use windows xp but my school admin retards use windows 2000

LOL.. You are right however.... Sorry to burst your non bubble since I have a Mac for almost 3 years and I used it daily. I don't get any infected from it at all. I know what I am doing. XD

 

[NintendU_the_great]

LOL.. You are right however.... Sorry to burst your non bubble since I have a Mac for almost 3 years and I used it daily. I don't get any infected from it at all. I know what I am doing. XD

no shit, because you obviously have brains and aren't going to purposely out of the way download the virus. Was jsut saying it is possible though

 

[wolfmankurd]

no shit, because you obviously have brains and aren't going to purposely out of the way download the virus. Was jsut saying it is possible though

LOL.. You are right however.... Sorry to burst your non bubble since I have a Mac for almost 3 years and I used it daily. I don't get any infected from it at all. I know what I am doing. XD

Back in 2005 someone already tested how effective this would be. https://www.linux.com/news/running-windows-viruses-wine

SomeFool was able to infect the host but it was a dead end host.

 

[sarkwalvein]

LOL.. You are right however.... Sorry to burst your non bubble since I have a Mac for almost 3 years and I used it daily. I don't get any infected from it at all. I know what I am doing. XD

Well, the same applies to a Windows computer, as long as you keep it updated.

 

[NintendU_the_great]

Spent a decent half hour looking this up, no idea what the ChromeOS userspace is. Think it's very mixed. Pulling loads of pacakages from Gentoo. But also mentions of toybox and busybox. https://events.linuxfoundation.org/sites/events/files/slides/chrome.pdf

yup. Chrome OS / Chromium OS is based on Gentoo, but is much more user friendly and faster, and better (I used it for 7 months)
fite me gEnto0 userz

 

[Pomegrenade]

OH MY GOSH WANNACRY 2.0 IS HERE

 

[ATofix]

Anyone seen this? Jezz. They can have everything. But when they attack my PC, my only friend, they cross the line! (In highly triggered voice.) http://www.msn.com/en-us/news/world...prit-north-korea/ar-BBBbzbD?OCID=ansmsnnews11

TBH people need to be educated on what a fake virus looks like. Its not that had to tell the difference and get rid of them.

 

[wolfmankurd]

Anyone seen this? Jezz. They can have everything. But when they attack my PC, my only friend, they cross the line! (In highly triggered voice.) http://www.msn.com/en-us/news/world...prit-north-korea/ar-BBBbzbD?OCID=ansmsnnews11

WannaCry looks to half-assed to be significantly state sponsored. The effective portion EternalBlue *was* state sponsored that exploit was curated by the NSA.

 

[ATofix]

WannaCry looks to half-assed to be significantly state sponsored.

That's just what I thought. But IDK. This trending on bing right now.

 

[Gizametalman]

I blame the United States of Murica.
It seems that they need to blame somebody else than themselves.
I don't know why, but I still blame them
Who else's with me compadres?

 

[Joom]

I blame the United States of Murica.
It seems that they need to blame somebody else than themselves.
I don't know why, but I still blame them
Who else's with me compadres?

I mean, they are to blame for the exploits that were leaked. The NSA wasn't even supposed to be using them as they were deemed illegal. The ransomware itself probably just came from some European criminal ring though like the majority of them.

 

[sarkwalvein]

I blame the United States of Murica.
It seems that they need to blame somebody else than themselves.
I don't know why, but I still blame them
Who else's with me compadres?

It's their fault!!!
After all they created the vulnerable software, they documented the vulnerability, and they let this documentation be stolen!

 

[GerbilSoft]

It's their fault!!!
After all they created the vulnerable software, they documented the vulnerability, and they let this documentation be stolen!

One of these is not like the other. (Hint: Microsoft isn't part of the NSA.)

The vulnerable code was likely not touched since the early 90s. MS did a massive security overhaul in the early 2000s with Windows XP SP2; perhaps they should do another code audit for any modules still in use that date back to the 1990s.

 

[Gizametalman]

Yes! I love when someone else agrees with me.
I did read the information. I actually, truly blame the USA Government, or Intelligent Agencies, whatever.

I thought: "Well, it's kind of funny that the most affected countries by this virus are those who's USA has problems with"

But what else can we say about it? We already know the truth, and even if they keep trying to blame on someone else, well, that's just bullshit.

Honestly, I wouldn't mind this, if they didn't affected people in hospitals. That's just fucked up.

 

[sarkwalvein]

You could also say it is the victim's fault for buying Microshit software. /s

Anyway, this is not an attack by the NSA.
Sure the NSA is sad they couldn't use their own child to perpetrate the attack (that would have been less disabling, very difficult to notice and just to silently spy on information) but in this attack they are only guilty of terrible negligence.

 

[wolfmankurd]

You could also say it is the victim's fault for buying Microshit software. /s

Anyway, this is not an attack by the NSA.
Sure the NSA is sad they couldn't use their own child to perpetrate the attack (that would have been less disabling, very difficult to notice and just to silently spy on information) but in this attack they are only guilty of terrible negligence.

Since we are talking about people affected after a patch was released it is clearly the victims fault for not using the patch released by MS.

If you think wannacry is the only malware abusing this exploit then you are naive. Reliable desktop/server remote code execution (eternalblue) and dll injection (doubelspur) this stuff is gold dust.