Random meme part 5

Worldwide ransomware worm attack general - part 5
Kloss is already coding a fix edition
>what is happening
some kid wrote a self-spreading ransomware and it got out of control
>who got hit?
russian government, english NHS, FedEX, and many more
>how to defend myself?
Run windows update. Exploit it uses to spread got patched ages ago
>I don't want windows updates
then at least close port 445 on your firewall
>any more details?
blog.malwarebytes.com/threat-analysis/2017/05/the-worm-that-spreads-wanacrypt0r/

Other urls found in this thread:

gist.github.com/rain-1/989428fa5504f378b993ee6efbc0b168
youtube.com/watch?v=B4AOvYLkUfw
technet.microsoft.com/en-us/library/security/ms17-010.aspx
twitter.com/SFWRedditImages

So closing port 445 and SMD 1 fixes this shit right?

>blocked port 445 in windows firewall but still says its listening in netstat -a
what gives?

Win 7 Ultimate Edition (pirated ofc) master race here (all other Windows is cancer and Linux is dog turd, Macfags kys)

Also, Microsoft go fuck yourselves I ain't getting 10, it's shit and this marketing stunt pretend ransomware won't make me budge.

>have not updated since 2014
>thanks to everyone trying to be constructive and helpful in these threads I got what I needed fast
>even with all the trolls it's easy to get all relevant info from Sup Forums if you are a tiny bit tech literate
>blocked port
>pic related, installed the security update manually just now

Thank you guys.

Who else /comfy/ and /safe/ here?

>tfw you have no data worth backing up

all this time on computers and nothing to show for it

No one is being affected anymore, idiots

You think Governments are looking at the effects this had with great interest?

So they could use something similar themselves? or do they have more potent weapons?

YOU ARE SAFE, THE VIRUS HAS BEEN KILLSWITCHED.

TECHNICAL INFO @ gist.github.com/rain-1/989428fa5504f378b993ee6efbc0b168

What are the chances of Microsoft being behind the attack so they can force everyone to switch to Win10 with its forced updates?

>mfw every single computer in the Brazilian Social Security System was affected

Feels good knowing that the favela scum will not get their welfare because of hackers.

someone explain

They are wondering what to do if the attacker is known and state sponsored/connected and not in an extradition country.

is this enough or does remote port have to be specific to 445 as well

How to check if I correctly disabled smbv1?

The spread is over

How can we know that for sure? Maybe there's another domain?

>use SMB to sync music and photos between phone and PC
>disable SMB1 thinking syncing would still work because SMB3 is enabled
>syncing no longer works

So what? The hackers will just change a single line in the code and release an updated version of the virus.

Remembering that one time supernigger decided to make phone calls and it was very funny.

youtube.com/watch?v=B4AOvYLkUfw

>WannaCry
Are those hackers 15 years old?

Forced updates prevents stuff like this from happening.

That's why it's not affecting end users with updates auto enabled.

At least it's decent of these to actually decrypt your files should you pay. Ransomware could live up to it's name of being malious and just take your money and destroy the files anyway.

there's a service listening on that port

>There are people who are so autistic they feel the need to produces viruses

Why?

So they managed to hijack rocks and sticks? Based hackers.

First of all it has been dead for a while.
Second, think for a moment, why would it matter if you weren't specific? A nuke will work if a grenade will.

What's a sinkhole

Just re-enable it tomorrow or so? Do you need to sync those files right now?

If he mitigates that will show he is either State or a hardened EBoss who doesn't give a flying fuck. Instead of a 14 year old hicker on steeroids.

Then WWIII begins not with nuclear bombs but with exchanges of increasingly sophisticated worms that target the participant countries' civilian populations

I'm sure, abruptly switching off the entire Brazilian Welfare System will have no unintentional and deadly side effects down in the ole favelas, nope.
>NervouslyGrinningMonkey(encrypted).jpg

>not just using a paid cloud service
Nerd

Windows forces updates precisely for this reason. 99% of computer users, especially those on this board, need to be babbied.

I may have misread, but I though only like 5 payments have been made to the wallet

When crews are getting near to an end of a run or freaking about because of "whatever" they sometimes stop decrypting.

A sinkhole is a depression or hole in the ground caused by some form of collapse of the surface layer.

It's actually bananas and chickens. What do we think we are, Africans?

They likely made more money today than you will make in your entire life

Got 36.6tb of cloud hosting for free.
Your point?

le common sense meme

So I have to delete the Inbound rules that have port 445 on them and just leave the 445 rule that blocks it in there?
pic unrelated

445 or 455? I'm getting conflicting responses.

Oh probably, but I just meant for ransomware in general. Unless there are some that do just take your money and delete your files.

The three most common wallets have only pulled in 12k.

just update your OS you mongololid

If your files were fucked either way, why would anyone pay the ransom?

>auto updated Windows 10 yesterday
>coincidentally disconnected my USB dongle last night
A-Am I safe?

Just block both.

What's the update name for this?

>They likely made more money today than you will make in your entire life

445

*wifi usb dongle

Yes, Microsoft infected hospitals and killed people in a scheme to get everyone onto W10.

Names are usually assigned by security researchers, and a lot of them are newer generations who lived through the mid 2000's teen angst
Just look at the Vault7 leaks, all the codenames are literally teen bullshit or tumblr/reddit memes

445, 139, 3389

Sky news is reporting, citing a security expert, that the code the ransomware uses is so stupid that it should have never been spread around so easily.

>That page on Japanese emoticons
I can't believe those types of people work at the CIA.

you're fine user, it only affects outdated systems (a 2 month old update fixed it)

This.
I haven't updated windows 7 since 2012, cause im not a cuck and i am totally doing something it would interupt 24 hours a day 7 days a week. I heard windows 10 has a keylogger and won't let you use steam or something. Anyway i just use common sense 2k17 and read the comments before torrenting porn executables from the pirate bay. P.s. What's javascript, flash, or any other plugin lol?

How many people died in the British NHS chaos?

...

do netstat -ab to see which executable is listening on that port.

>sky news
lol

Yes, using Windows in security-critical environments is really, really stupid.

Anyone else find it curious that whoever made this built a kill-switch into it?

false flag / warfare drill?

"Kill switch: If the website www.iuqerfsodp9ifjaposdfjhgosurijfaewrwergwea.com is up the virus exits instead of infecting the host. (source: malwarebytes). This domain has been sinkholed, stopping the spread of the worm."
gist.github.com/rain-1/989428fa5504f378b993ee6efbc0b168

What did you expect from the Microsoft Poojeet Security Team?

I'm running Windows 8. Not 8.1. Just vanilla 8. Haven't updated since 2015. How fucked am I?

Never underestimate the end user. NEVER.

Six gorillion and counting

Yes.

There are many functional and pragmatic reasons rolling out linux isn't always the best choice.

It was probably for testing.

>Spend 10 seconds updating OS
>Problem solved

WHy is this so hard for some people?

or a test that became way more successful than it was supposed to be?

>all the wangblows babbies in these threads scrambling over themselves

Oh, is Nate Silver doing CS now?

>3 bitcoin addresses hard coded
If it uses the same bitcoin wallet for multiple computers how can the hacker know who paid and who didn't?

you realize you are exactly the kind of person I was memeing about when I said common sense meme?

RIP Hafiz, Ahmed and baby Mohammed1, baby Mohammed2, baby Mohammed3, baby Mohammed4, baby Mohammed5 et al.

No. It is pretty normal.
What is retarded is only having one control point.

Hey Sup Forums which update do I need?

Yes? I was just meming along user.

Gentoo

So how is this shit spread?

Iwill just pretend I never said anything in shame

That's a problem with proprietary software, which the medical industry relies on worldwide.

born to die, windows a fuck
128,365,839 encrypted jpegs

>There are many functional and pragmatic reasons rolling out linux isn't always the best choice.

I keep my Windows installs comfortably safe in VMs on a Linux host so I can reboot into an earlier snapshot for convenience. There are plenty of ways to cover your ass. I like them for checking out software I may not wish to leave installed.

Microsoft Security Bulletin MS17-010

>Can not obtain ownership information
Huh. well then.

>that fucking image

Initial drop was via massive email campaign with pdf attachment. Once on a network it uses SMB service to spread.

>Microsoft Security Bulletin MS17-010
technet.microsoft.com/en-us/library/security/ms17-010.aspx

How do I know which ones to download?

Well, it was made by the CIA.

so i just need to block port 445 in windows firewall or what

>Updated Windows

Feels safe mang

Have you run cmd with admin rights?

>guys how can I tell where these emails came from

By scanning the internet for anything with port 445 open

Can I get a direct link to the windows update file patch please

Have some claudia black