Forum Home
Press F1

Thread ID: 143918	2017-05-12 22:02:00	Cyber attacks/Ransomware	tingle (6539)	Press F1

Post ID	Timestamp	Content	User
1435222	2017-05-12 22:02:00	I saw this in the press today - www.stuff.co.nz and it got me wondering. How would my computer become infected? In the usual ways? Would it be something I clicked on or something I was emailed? Or a method I'm not aware of? I follow all the well know security protocols, well I think I do, and have never had a problem in the last 15 ish years. Then I read something like this and get paranoid. I'm only paranoid because everybody's after me....:)	tingle (6539)
1435223	2017-05-12 23:40:00	Yes it's a worry. I'm not a Norton supporter but a bit of info from them. Not sure how recent it is. nz.norton.com	Driftwood (5551)
1435224	2017-05-13 00:05:00	Just spotted this from Lawrence. pressf1.pcworld.co.nz	Driftwood (5551)
1435225	2017-05-13 00:09:00	Thanks Driftwood, I just read the link you gave as well as the one Lawerence posted. I'm a bit more informed now.	tingle (6539)
1435226	2017-05-13 00:14:00	Sorry,I did not see your link before posting This shows where Wcrypt has hit so far intel.malwaretech.com Just refreshed the Map and Aussie has just been hit To Add, Top right hand corner go to 24H and it shows were been hit also	Lawrence (2987)
1435227	2017-05-13 00:19:00	Link dosent work for me	Driftwood (5551)
1435228	2017-05-13 01:28:00	What's the usual way? The way that normally gets users is through an exploit in an unpatched program. User interaction is not necessary, even visiting a site that can exploit your system is enough to do it. The payload could exist in anything, especially ads and the only method I think that should work against ransomware is to monitor and intercept any encryption activity on your own system. It's annoying but worth it to be safe, considering 1 bit coin is about nz$2100, so it's not cheap to pay the ransom. Other than that, make sure to do backups regularly.	Kame (312)
1435229	2017-05-13 02:22:00	To add to Kame's post, make sure that at least one of the recent backups is kept offline.	linw (53)
1435230	2017-05-13 05:12:00	It affects windows systems that havent got kb4012598 on them, from March this year. It's a Windows vulnerability that they've been hitting So for those who decided to disable or turn updates off, now maybe a good time to keep it up to date	Speedy Gonzales (78)
1435231	2017-05-13 05:24:00	It affects windows systems that havent got kb4012598 on them, from March this year. It's a Windows vulnerability that they've been hitting So for those who decided to disable or turn updates off, now maybe a good time to keep it up to date no surprises there ;) heres the OS's it hits -- interesting the Latest version of W10 is not listed as its been patched already --and that's why its advised to update. So for all the moaners that cry about windows update - would you rather have a locked encrypted PC ? Impacted platforms –******* All versions of Windows prior to Windows Vista Service Pack 2 are vulnerable; no patch is available –***** Windows Vista with Service Pack 2 x86 KB4012598 –******* Windows Vista with Service Pack 2 x64 KB4012598 –******* Windows Server 2008 with Service Pack 2 x86 KB4012598 –***** Windows Server 2008 with Service Pack 2 x64 KB401259 –***** Windows 7 with Service Pack 1 x86 KB4012212 or KB4012215 –******* Windows 7 with Service Pack 1 x64 KB4012212 or KB4012215 –********* Windows Server 2008 R2 with Service Pack 1* KB4012212 or KB4012215 –******* Windows 8.1 x86 KB4012213 or KB4012216 –***** Windows 8.1 x64 KB4012213 or KB4012216 –***** Windows Server 2012 KB4012214 or KB4012217 –******* Windows Server 2012 R2* KB4012213 or KB4012216 –********* Windows 10 x86* KB4012606 –********* Windows 10 x64* KB4012606 –******* Windows 10 version 1511 x86 KB4013198 –***** Windows 10 version 1511 x64 KB4013198 –***** Windows 10 version 1607 x86 KB4013429 –***** Windows 10 version 1607 x64 KB4013429 –******* Windows Server 2016 KB4013429	wainuitech (129)
1 2 3 4 5 6 7