Global Ransomware Attack

Printable View

Show 40 post(s) from this thread on one page

30th June 2017, 10:59 AM
Tins

Quote:

Originally Posted by d@rk51d3

Apparently money is an afterthought with sloppy implementation of payment procedures.

Given that people were apparently paying, I imagine that will change....
30th June 2017, 12:20 PM
JDNSW

Quote:

Originally Posted by incisor

Most of the bot armies are compromised linux boxes..

I rather doubt that - simply on the basis of numbers. Any references?

Any delusion that your safer running an out of the box version of Linux is exactly that.

Most of the time people simply don't know they are being used because the box still appears to be fine from the desktop...

The last line I agree entirely - which is why these bot armies work.
30th June 2017, 12:22 PM
JDNSW

Quote:

Originally Posted by johntins

Given that people were apparently paying, I imagine that will change....

One suggestion i have heard is that the whole ransomware slant is a cover for a state (or quasi state) operator. In the aftermath of the last one, certain to gain headlines round the world.
30th June 2017, 12:30 PM
d@rk51d3

Everything you need to know about the Goldeneye/Petya attack – HOTforSecurity
5th August 2017, 04:48 PM
incisor

Quote:

Originally Posted by JDNSW

The last line I agree entirely - which is why these bot armies work.

here is another in the news re compromised linux boxes ...

Botnet builder gets almost four years in prison - Security - iTnews

there are a few more coming to face the music over the next few months...

10's of thousands of them have been shutdown over the last couple years and they are only touching the surface imho

and now they worked out how to inject code into android so it is going to even more interesting very shortly, google play store is getting to be a bit of a nightmare

Dvmap: the first Android malware with code injection - Securelist

time to dig out that old iphone [biggrin] [biggrin] [biggrin]
5th August 2017, 07:26 PM
JDNSW

Quote:

Originally Posted by incisor

here is another in the news re compromised linux boxes ...

Servers not desktops!

And to make you feel happier about your Android phone:-
Privacy warnings spell trouble for millions of low-cost Android phone owners | Ars Technica

"the low-cost phones sent massive amounts of personal data about the phones and their users’ activities to servers that were owned by AdUps Technologies, a China-based firmware update provider.The data sent to AdUps servers at the time included the full body of text messages, contact lists, call histories with full telephone numbers, unique device identifiers including the International Mobile Subscriber Identity and the International Mobile Equipment Identity. ...................
Representatives from Blu, meanwhile, strongly disputed claims that any of its phones collect sensitive personal information.
"The data that is currently being collected is standard for [over-the-air update] functionally and basic informational reporting," Blu Marketing Director Carmen Gonzalez wrote"

I wonder whether the data collected is standard for other Android suppliers? Actually, the company collecting the data is a third party that sells support to phone manufacturers.
5th August 2017, 07:29 PM
incisor

How many linux desktops run samba..
5th August 2017, 07:51 PM
Eevo

Quote:

Originally Posted by incisor

How many linux desktops run samba..

im guess a fair few?
5th August 2017, 08:20 PM
donh54

Quote:

Originally Posted by incisor

How many linux desktops run samba..

Any that have to live/work on a windows-centric network, I'd say.
6th August 2017, 06:52 AM
JDNSW

Not mine.

Show 40 post(s) from this thread on one page