LinuxQuestions.org
Latest LQ Deal: Complete CCNA, CCNP & Red Hat Certification Training Bundle
Go Back   LinuxQuestions.org > Forums > Non-*NIX Forums > General
User Name
Password
General This forum is for non-technical general discussion which can include both Linux and non-Linux topics. Have fun!

Notices


Reply
  Search this Thread
Old 05-15-2017, 02:24 PM   #61
273
LQ Addict
 
Registered: Dec 2011
Location: UK
Distribution: Debian Sid AMD64, Raspbian Wheezy, various VMs
Posts: 6,770

Rep: Reputation: 1935Reputation: 1935Reputation: 1935Reputation: 1935Reputation: 1935Reputation: 1935Reputation: 1935Reputation: 1935Reputation: 1935Reputation: 1935Reputation: 1935

Quote:
Originally Posted by ondoho View Post
^ so the ransomware actually has an on/off switch? how considerate.
It may well be it's just a debugging tool let in there by it's NSA creators which the current bunch of criminals using it hadn't realised was there.
 
Old 05-16-2017, 02:16 AM   #62
hazel
Senior Member
 
Registered: Mar 2016
Location: Harrow, UK
Distribution: Debian, Crux, LFS, AntiX, NuTyX
Posts: 1,276
Blog Entries: 1

Original Poster
Rep: Reputation: 578Reputation: 578Reputation: 578Reputation: 578Reputation: 578Reputation: 578
Random Troll has started a new thread which is relevant. According to a link he found, 80% of Chinese computers run unregistered copies of Windows, which of course receive no security patches at all. As a result, China was heavily hit by the worm, and may have played an important part in its rapid spread.

I must say I'm puzzled by the Chinese. Obviously they don't want to pay anything to the evil capitalists at Microsoft, but there are good Chinese versions of Linux. Why do they need to use Windows at all?
 
Old 05-16-2017, 02:38 AM   #63
Turbocapitalist
Senior Member
 
Registered: Apr 2005
Distribution: Ubuntu, Devuan, OpenBSD
Posts: 2,387
Blog Entries: 3

Rep: Reputation: 1051Reputation: 1051Reputation: 1051Reputation: 1051Reputation: 1051Reputation: 1051Reputation: 1051Reputation: 1051
Quote:
Originally Posted by hazel View Post
I must say I'm puzzled by the Chinese. Obviously they don't want to pay anything to the evil capitalists at Microsoft, but there are good Chinese versions of Linux. Why do they need to use Windows at all?
It's simply business. If they get started on Windoze, legal copies or not, they won't be able to (or even know to) move to working systems. In fact it has long been a part of Bill's strategy:

Quote:

Gates shed some light on his own hard-nosed business philosophy. "Although about 3 million computers get sold every year in China, but people don't pay for the software," he said. "Someday they will, though. As long as they are going to steal it, we want them to steal ours. They'll get sort of addicted, and then we'll somehow figure out how to collect sometime in the next decade."


https://www.cnet.com/news/gates-buffett-a-bit-bearish/
Then the authorities also turn a blind eye to the situation, and not just because of rampant corruption. The monoculture of extremely buggy code leaves almost limitless opportunity for getting in and snooping around or even setting up realtime monitoring of text, audio, and video from the targeted machines.

At the end of the day, global powers, both corporate and government, make the ongoing decision to have machines that anyone and everyone can get into easily. The alternative would be machines that are difficult or functionally impossible to get into and they do not want that.

Back to NHS, I mentioned Red Hat as being big enough to play the certification game. Perhaps my prejudice against Canonical colored my thoughts to exclude them, but since they have their headquarters in London, they could use their advantage as a UK company to improve the situation at NHS.
 
Old 05-16-2017, 04:45 AM   #64
273
LQ Addict
 
Registered: Dec 2011
Location: UK
Distribution: Debian Sid AMD64, Raspbian Wheezy, various VMs
Posts: 6,770

Rep: Reputation: 1935Reputation: 1935Reputation: 1935Reputation: 1935Reputation: 1935Reputation: 1935Reputation: 1935Reputation: 1935Reputation: 1935Reputation: 1935Reputation: 1935
Quote:
Originally Posted by grumpyskeptic View Post
Since many countries have been affected, there must either be very few or no countries that do not extradite to any of them. Even if there was one, and the person or people had moved there, then they would one ordinary day be jostled by a small group of people and then wake up in a prison cell thousands of miles away.

I expect any countries that do not have any extradition treaties would be unpleasant places to live which you would try to leave if you possibly could.
Why are you convinced that the person or persons responsible are from the US, Europe, Russia or China? I they may be very stupid people from one of those places or, on the other hand, they may be based in an African or South American country or even, it has been suggested, in North Korea. People do live in these places, you know.
 
Old 05-16-2017, 07:13 AM   #65
enorbet
Senior Member
 
Registered: Jun 2003
Location: Virginia
Distribution: Slackware has beern Main OpSys for decades while testing others to keep up
Posts: 1,430

Rep: Reputation: 1349Reputation: 1349Reputation: 1349Reputation: 1349Reputation: 1349Reputation: 1349Reputation: 1349Reputation: 1349Reputation: 1349Reputation: 1349
I am really grateful for this thread if only to see the quote for Billy posted by Turbocapitalist. By the turn of the century I was convinced that M$ was using the "First one's free" junkie variation on Bait 'n Switch and to see that Billy finally admitted it just warms the cockles of my heart with a sweet sense of vindication.

I based my speculation on Billy's having essentially majored in poker at Harvard combined with the unique aspect of software that it is paid for to produce only once and replication is trivial so stealing only actually costs MS on paper BUT the effect is that at least their system proliferates and dominates, a net gain. The fact that on the day of release or even sometimes just before bootleg OEM copies were available all over the web made me highly suspicious, but there was no way to prove the source or that it was only condemned tongue in cheek. When I posted my hypothesis on another computing forum way back in 2001 I was flamed mercilessly. Now we know that the most pernicious virus is Windows. HUZZAH !

Last edited by enorbet; 05-16-2017 at 09:31 AM.
 
Old 05-16-2017, 08:22 AM   #66
grumpyskeptic
Member
 
Registered: Apr 2016
Posts: 154

Rep: Reputation: Disabled
Quote:
Originally Posted by 273 View Post
Why are you convinced that the person or persons responsible are from the US, Europe, Russia or China?
I've never thought that, or written it. I don't know how you made that inference.

Perhaps you suppose that extradition treaties are rare, but in 2017 a country not having any extradition treaties or a functioning legal system is rare. Many countries now have extradition treaties when they did not have them decades ago, eg Brazil.

The list of countries without any extradition treaty or a legal system that would deal with it themselves would I expect be a list of countries that are unpleasant to live in and often from where person or persons could be abducted without formality.

Last edited by grumpyskeptic; 05-16-2017 at 08:31 AM.
 
Old 05-16-2017, 09:44 AM   #67
cynwulf
Senior Member
 
Registered: Apr 2005
Posts: 1,967
Blog Entries: 5

Rep: Reputation: 1006Reputation: 1006Reputation: 1006Reputation: 1006Reputation: 1006Reputation: 1006Reputation: 1006Reputation: 1006
Quote:
Originally Posted by 273 View Post
It may well be it's just a debugging tool let in there by it's NSA creators which the current bunch of criminals using it hadn't realised was there.
There seems to be some misunderstanding. As I understand it there is no suggestion that this ransomware came from NSA. This kind of thing has existed for several years in various forms.

The vector for the ransomware was CVE-2017-0144, which is supposedly linked to the NSA.
 
Old 05-16-2017, 10:01 AM   #68
273
LQ Addict
 
Registered: Dec 2011
Location: UK
Distribution: Debian Sid AMD64, Raspbian Wheezy, various VMs
Posts: 6,770

Rep: Reputation: 1935Reputation: 1935Reputation: 1935Reputation: 1935Reputation: 1935Reputation: 1935Reputation: 1935Reputation: 1935Reputation: 1935Reputation: 1935Reputation: 1935
Quote:
Originally Posted by grumpyskeptic View Post
I've never thought that, or written it. I don't know how you made that inference.

Perhaps you suppose that extradition treaties are rare, but in 2017 a country not having any extradition treaties or a functioning legal system is rare. Many countries now have extradition treaties when they did not have them decades ago, eg Brazil.

The list of countries without any extradition treaty or a legal system that would deal with it themselves would I expect be a list of countries that are unpleasant to live in and often from where person or persons could be abducted without formality.
You made reference to having to travel to a country with no extradition in place -- that's the assumption I was getting at.
as to how good or bad those places are I suppose it depends somewhat on what you are used to -- seems, for example, Nigeria's extradition treaties aren't particularly set in stone and lots of people live there happily.
Then there are countries like North Korea which, while not places people would choose to live, would even treat the perpetrators as heroes.
That's before you get into the whole being bothere to investigate even if there is a treaty in place.
My point being, again, that to assume that th perpetrators were stupid enough to put themselves in a position to be caught and punished is still a fairly big assumption even in these days of Team America World Police.
To me, at least, the fact that both China and Russia, the two places people usually feel free to attack Western Europe and the USA from, have been attacked suggests either extremely stupid (as in they're using home internet connections and no VPN type stupid) or they're outside of those juruisdictions also.
 
Old 05-16-2017, 10:03 AM   #69
273
LQ Addict
 
Registered: Dec 2011
Location: UK
Distribution: Debian Sid AMD64, Raspbian Wheezy, various VMs
Posts: 6,770

Rep: Reputation: 1935Reputation: 1935Reputation: 1935Reputation: 1935Reputation: 1935Reputation: 1935Reputation: 1935Reputation: 1935Reputation: 1935Reputation: 1935Reputation: 1935
Quote:
Originally Posted by cynwulf View Post
There seems to be some misunderstanding. As I understand it there is no suggestion that this ransomware came from NSA. This kind of thing has existed for several years in various forms.

The vector for the ransomware was CVE-2017-0144, which is supposedly linked to the NSA.
perhaps Wikipedia is incorrect but itseems to suggest the tool was developed for the CIA and leaked as part of a larger haul by a hacker group.
 
Old 05-16-2017, 10:28 AM   #70
cynwulf
Senior Member
 
Registered: Apr 2005
Posts: 1,967
Blog Entries: 5

Rep: Reputation: 1006Reputation: 1006Reputation: 1006Reputation: 1006Reputation: 1006Reputation: 1006Reputation: 1006Reputation: 1006
The exploit is known as "EternalBlue" and was leaked from NSA along with "DoublePulsar", the "tool" which targets it. It's this exploit (an RCE in windows SMB) and the tool/code which makes it possible to inject ransomware (or any malware or trojan, etc

The attackers are not stupid, as they've used botnets to achieve this. I doubt any of the attacks will originate from any computer linked to the perpetrators. They will be hard to trace unless they slip up (it's happened before).

Last edited by cynwulf; 05-16-2017 at 10:30 AM.
 
Old 05-16-2017, 10:38 AM   #71
grumpyskeptic
Member
 
Registered: Apr 2016
Posts: 154

Rep: Reputation: Disabled
Quote:
Originally Posted by 273 View Post
You made reference to having to travel to a country with no extradition in place -- that's the assumption I was getting at.
Yes, they could already be in a "bad" country I suppose, although numerically from the point of view of numbers in the populations of different countries, having sufficient education, and access to the technology, it is less likely. except if it was state sponsored as you suggest.
 
Old 05-24-2017, 06:23 AM   #72
!!!
Member
 
Registered: Jan 2017
Posts: 267
Blog Entries: 3

Rep: Reputation: 100Reputation: 100
Not XP?

Not XP: https://www.bleepingcomputer.com/new...ing-windows-7/

Last edited by !!!; 05-24-2017 at 06:26 AM.
 
Old 05-24-2017, 06:30 AM   #73
Turbocapitalist
Senior Member
 
Registered: Apr 2005
Distribution: Ubuntu, Devuan, OpenBSD
Posts: 2,387
Blog Entries: 3

Rep: Reputation: 1051Reputation: 1051Reputation: 1051Reputation: 1051Reputation: 1051Reputation: 1051Reputation: 1051Reputation: 1051
Quote:
Originally Posted by !!! View Post
Yep. It was Vista7 all along: https://arstechnica.com/security/201...ead-so-widely/

With all of the complaints and debate about "fake news" we need to take a long, hard, cold look at those who were spreading the disinformation that old XP was to blame and how easily and quickly that disinformation spread. The trade publications were pretty much all on message with that, to the detriment of their readers. The how and why behind their decisions to toe that line certainly lead back to Redmond.
 
Old 05-24-2017, 06:48 AM   #74
hazel
Senior Member
 
Registered: Mar 2016
Location: Harrow, UK
Distribution: Debian, Crux, LFS, AntiX, NuTyX
Posts: 1,276
Blog Entries: 1

Original Poster
Rep: Reputation: 578Reputation: 578Reputation: 578Reputation: 578Reputation: 578Reputation: 578
That's amazing! I was completely taken in by the official story.
 
Old 05-24-2017, 07:07 AM   #75
Laserbeak
Member
 
Registered: Jan 2017
Location: Manhattan, NYC NY
Distribution: Mac OS X, iOS, Solaris
Posts: 508

Rep: Reputation: 142Reputation: 142
I'm shocked....not! I'm sure M$FT had no small part in propagating this "misunderstanding."
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
LXer: Locky Ransomware Spreading in Massive Spam Attack LXer Syndicated Linux News 0 03-17-2016 06:32 PM
Hackers warn NHS over security Jeebizz Linux - News 1 06-10-2011 08:57 AM
LXer: Schools and the NHS: does Linux even get a look in? LXer Syndicated Linux News 0 07-21-2010 02:00 PM
Microsoft to keep our NHS records? sycamorex General 1 08-10-2009 07:17 PM
LXer: Novell starts work on NHS contract LXer Syndicated Linux News 0 12-19-2005 05:16 AM

LinuxQuestions.org > Forums > Non-*NIX Forums > General

All times are GMT -5. The time now is 01:37 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration