GeneralThis forum is for non-technical general discussion which can include both Linux and non-Linux topics. Have fun!
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Otherwise they'll get away with it or be hired by their government.
lol - the world is full of skeptics.
A few years ago ago I was at a Linux conference (significantly) sponsored by a department of our federal government that was/is a member of the infamous Echelon cartel. Few seemed to mind.
I still have a stubbie cooler with the catch phrase "play the game no one else can".
Distribution: Slack 15.0 64 using Plasma 5.15 on Dell Inspiron 3847 8GB RAM with Dell 24inch monitor 1920x1080
Posts: 116
Rep:
I notice that Microsoft are saying there's a Security Patch for this that was released in March. It's striking to note that it's available for those paying for Support of older versions of Windows.
Glad I ditched Windows; I was still on XP as it seemed that upgrades all the time kept changing things just for the sake of it. Windows in any flavour is just not secure on its own.
I'm just a home user but who knows what's coming next?
I expect that the person or persons who did it will get caught sooner or later and spend a very very long time in prison. So far it appears they have only made a comparatively small amount of money out of it.
i read in one of the articles linked that it's likely that this exploit was written a while ago with private users in mind (hence the relatively small ransom) and the originator probably abandoned it already...
what a surprise to suddenly get that much attention...
Quote:
Originally Posted by 273
Only if they're in the extradition zones for the countries affected.
So how was your weekend? We *nix guys spent our weekend enjoying the summer, basking in the sun..while our Wintel sys ads spent their time at work, attending calls here and there.
Distribution: Debian Sid AMD64, Raspbian Wheezy, various VMs
Posts: 7,680
Rep:
Quote:
Originally Posted by ondoho
yep, if i was that person i'd start packing
No reason to assume they don't live outside of the extradition zone already. The internet is global and the extraditions zones not so much. This could just be some idiots in the UK, US or elsewhere in the extradition zone but if they've any intelligence at all they'll be based somewhere outside and nobody will ever look for them.
Well, it's unlikely to be the Russians this time. Apparently Russia was the country worst hit, and some think it was the real target. What happened to everyone else was just collateral damage.
The problem is that the online world is now so hyperconnected that any spreading malware "puts a girdle round the earth in 90 minutes".
Distribution: Debian Sid AMD64, Raspbian Wheezy, various VMs
Posts: 7,680
Rep:
Not Russia still leaves any African country, many middle-eastern and Asian countries, much of South America and many other non-treaty-signing nations. As you point out the internet encompasses the globe.
Distribution: Mainly Devuan with some Tiny Core, Fatdog, Haiku, & BSD thrown in.
Posts: 5,443
Rep:
Back to central servers & terminals, that's the way to go, too much freedom had been given to end users, something was bound to go wrong some day - but we should never have been using Microsoft products in the first place, we should have been using a version of unix from the start!
Two things really worry me about this. The first is that everything now depends on the backup policies of the affected organisations. WannaCry eventually deletes encrypted data if the ransom is not paid. Everything that has been backed up can easily be restored, but given the famously ramshackle IT policies of the NHS, how much confidence can we have in their backups? If a large amount of patient data simply disappears for good, then lives are going to be lost.
Secondly, the speed with which it spread and the indiscriminate nature of the damage is worrying. It need not have been ransomware after all; suppose it had been something like stuxnet that targeted infrastructure?
Distribution: Slack 15.0 64 using Plasma 5.15 on Dell Inspiron 3847 8GB RAM with Dell 24inch monitor 1920x1080
Posts: 116
Rep:
Quote:
Originally Posted by fatmac
Back to central servers & terminals, that's the way to go, too much freedom had been given to end users, something was bound to go wrong some day - but we should never have been using Microsoft products in the first place, we should have been using a version of Unix from the start!
As you rightly intimate, Permissions needs to become a Serious part of ALL operating systems. The Internet Gateways need serious locking down & the Mail Servers need to be better at scanning attachments & embedded links to anything. If mail processing is slowed because of tight security then so be it. We are all a bit too accustomed to instant communication but perhaps it's time to sacrifice speedy gratification for a bit of safety.
I don't think we can go back to Terminals & Central Servers setup. The Genie got let out of the bottle a long time ago and he's grown too big to cram back in. Also, in order to run some applications on the server for a big organisation, you'd need something approaching a Cray as the server.
Nice idea, but we've gone way too far down the powerful desktop road to be able to turn back. Let's see how MS plan to cope with this as a clear & present danger.
Last edited by SimonDevine; 05-14-2017 at 02:24 PM.
Distribution: Slack 15.0 64 using Plasma 5.15 on Dell Inspiron 3847 8GB RAM with Dell 24inch monitor 1920x1080
Posts: 116
Rep:
Quote:
Originally Posted by DavidMcCann
I see a lot of organisations are actually paying the ransom. Do they not have backups? Probably not!
Agreed. There's way too much complacency out there. XP is the main problem here, so far as I see. I used XP from 2004 to October last year. I had three major events so decided it was time to get safe so went Slacking.
The trouble is that IT has become so ubiquitous and people don't realise how open Windows still is. It is a bit of a rude awakening, but it's my sincere hope that ordinary working people start to recognise that computing is much more than the on/off switch on the box.
I know there are a few folks here (like myself) who still own systems that run Windows XP. For those interested, Microsoft has released a patch for this particular piece of Malware here. There is also the Microsoft page concerning this (along with the SP3 and other patches) here.
Regards...
Last edited by ardvark71; 05-14-2017 at 05:03 PM.
Reason: Correction/Added information and link.
I know there are a few folks here (like myself) who still own systems that run Windows XP. For those interested, Microsoft has released a patch for this particular piece of Malware here. There is also the Microsoft page concerning this (along with the SP3 and other patches) here.
Regards...
From what I read online, the patch is good for those machines that hasn't been hit by the ransomware virus yet. It's too late for the infected machines.
I was reading a NY Times article, the ransomware virus attack began as a simple phishing email.
Too bad there is no patch or technlogy to stop the stupidity of people still clicking on links in emails.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.