NHS hospitals in England hit by widespread ransomware attack

adrianx

Expert Member
Joined
Jun 30, 2008
Messages
3,630
I wonder how many other vulnerabilities the NSA will use and keep to themselves?
 

MickZA

Executive Member
Joined
Jan 19, 2007
Messages
7,575
I was listening to UK Radio 4 this morning and some IT guy reckoned that 90% of NHS users are running Win XP, if that's true it's going to cost them a arm and a leg to bring the system up to scratch.
 

LCBXX

Honorary Master
Joined
Apr 11, 2006
Messages
16,980
We have been working since around 5am to deploy mitigation measures. The Ransomware was sinkholed at around 13:00 CAT (maybe earlier) yet we are still required to continue with activities.
 

Peon

Expert Member
Joined
Sep 28, 2006
Messages
3,498
We have been working since around 5am to deploy mitigation measures. The Ransomware was sinkholed at around 13:00 CAT (maybe earlier) yet we are still required to continue with activities.

Just got back from a client now using SMBv1 still. Patches going and 2nd level offsite backups in progress. Segmented network. What a mission.
 

Arthur

Honorary Master
Joined
Aug 7, 2003
Messages
26,329
Not for unsupported operating systems... Like xp...
MSFT publicly released a patch for XP in March, for everyone.

This is possibly the first time ever that Microsoft has issued a patch for a product decommissioned so long ago. While the company issued an emergency patch for Windows XP in 2014, it came the same week support for that version ended, making the exception seem less unusual. This time around, the emergency patches are being applied to OS versions that Microsoft stopped supporting as many as three years ago.

https://arstechnica.com/security/2017/05/wcry-is-so-mean-microsoft-issues-patch-for-3-unsupported-windows-versions/
 

sajunky

Honorary Master
Joined
Nov 1, 2010
Messages
13,124
MSFT publicly released a patch for XP in March, for everyone.

https://arstechnica.com/security/2017/05/wcry-is-so-mean-microsoft-issues-patch-for-3-unsupported-windows-versions/
Only after the outbreak on May 13th. This is a shame that they didn't release it before, considering a leaked hacking tools from NSA. A code for hacking SMB was included in these tools, so with a little immagination they could predict what would happen.
 

gregmcc

Honorary Master
Joined
Jun 29, 2006
Messages
24,230
I have one isolated XP PC still running. Checked Windows update and it wasn't there. So it required a manual install. A rather big Microsoft fail. Should have been automated.

Hardly Microsoft's fault. XP support was ended over 3 years ago. Their update infrastructure has probably long been removed for XP. At least they released a patch for it.
 

sajunky

Honorary Master
Joined
Nov 1, 2010
Messages
13,124
Hardly Microsoft's fault. XP support was ended over 3 years ago. [-]Their update infrastructure has probably long been removed for XP[/-]. At least they released a patch for it.
A patch for XP was released in March, it was available only for corporates who pay Microsoft for supporting XP. Don't try to defent if you don't know the all story.
 

gregmcc

Honorary Master
Joined
Jun 29, 2006
Messages
24,230
Do you have proof of this? If so I stand corrected then. Was it also available via automatic updates for those clients?
 

The_Librarian

Another MyBB
Super Moderator
Joined
Nov 20, 2015
Messages
33,166
I have one isolated XP PC still running. Checked Windows update and it wasn't there. So it required a manual install. A rather big Microsoft fail. Should have been [-]automated[/-]euthanized.

FTFY - behind the shed... :p
 
Top