Krebs on Security - NHS hit by ransomware attack.
Bleeping Computer - Ransomware using NSA exploit leaked by Shadow Brokers is on a rampage.
Avast - ransomware spreading aggressively, over 50,000 victims.
The big story going around right now is that a ransomware worm is locking up computers by the tens of thousands.
I haven't yet read anything that has clearly explained how it's spreading, so I don't want to fire up my old Vista even if I disconnect from the net and disconnect my data drive beforehand.
I've heard people say it gets into systems via good old-fashioned email attachments and website drive-by infections, and then spreads internally on a company's LAN via MS networking protocols, exploiting a MS networking security hole that I obviously don't have here at home. So I'd be competely safe. But I've also read that it sets up a bunch of processes to attempt connection to random IPs via port 135 and port 445, and that scares me.
I was hacked by the 135 worm long long ago, and I'm pretty sure my Windows system locks down those two ports nowadays and the exploits are long gone.
But still, I was hacked remotely by the port 135 worm long long ago, and I don't ever want to go through that again. Worms are a real bitch.
So I'll just keep my Vista shut off for now, thank you.
Too bad you lost another Windows customer, Microsoft! At least you can count on the Linux development community remaining so fucking stupid that they can't ever develop anything to replace you, since they don't even know how to fucking write a startup routine that can wake a fucking Dell LAN card.
As for the hacker who did this, if we are to believe Russia, they apparently made the mistake of making the Russian Interior Ministry one of their targets. So if that's to be believed, I'm pretty sure the guy is going to end up in a wood chipper by next weekend.
He went way too large with this attack, and he attacked the wrong people. Stupid.
But what I find funny are comments like these on Krebs' site:
So uk and world hospitals should buy now bitcoins.
then when attack comes then they are ready and it will save many lifes.
Goverments now should prepare their bitcoins reserves.
OK, so obviously Krebs gets a load of lowlife children on his comments pages; most of them are little hackers who have probably DDOSed him.
But really? Governments and hospitals should stockpile bitcoins? Really? To be prepared in case of future ransomware attacks?
How about this: MI6 tracks down everyone associated with Bitcoin and fucking kills them for being members of a terrorist organization. It actually makes better sense, fiscally.
And as far as the conspiracy theory that this was actually a targeted attack by the NSA, just look at the map, Russia is the biggest victim here?
Well, if that were so, then it's only so because all of fucking Russia is operating off one pirated copy of Windows XP that they've never bothered to update.