emfizz.com
emfizz.com May 30, 2017


Microsoft withheld update that could have slowed WannaCry

19 May 2017, 11:23 | Patty Hardy

Monday morning blues as 'WannaCry' cyberattack hits at workweek's start

EsteemAudit takes advantage of a vulnerability in Microsoft's Remote Desktop Protocol in Windows 2003 and Windows XP allowing an attacker to install and execute malicious code

However, the cost is rather high and this led to several organizations, including the NHS in the United Kingdom, to give up this support after the first year.

The Ransomware attack affected more than 300,000 internet addresses worldwide, including government agencies, large corporations and banks.

Alex is a technical writer for Firebrand Training. And Cheshire and Wirral NHS Trust's website said it was still experiencing "significant IT disruptions" and that its business continuity plans are being implemented as it works to get its systems back up and running.

Mr Wysopal said businesses could learn from how WannaCry spread through the Windows file-sharing system by developing a strict schedule for when computers companywide should automatically install the latest software updates.

EternalBlue has been used by the NSA for more than five years.

If you are already a victim of ransomware, the first thing to do is disconnect your computer from the internet so it does not infect other machines. That Windows flaw was part of the NSA hacking toolbox when it was released by the Shadow Brokers hacking group a few weeks ago.

According to the cyber security experts, many corporate, institutions and individual have been hit by the ransomware. While the attackers failed to hack systems and computers that are running on Apple's iOS operating system, systems running on Microsoft's Window faced hardest hit from the cyber crooks. The ransomware affected organizations using Windows XP, an unsupported, outdated operating system. Microsoft did issue patches for the vulnerabilities before the attacks took place, but not everyone downloaded them.

Could this Fox News host be Sean Spicer's replacement?
Officials said Spicer is expected to stay in the White House "but have less exposure", in the words of one official. Politico reported Thursday that President Donald Trump is considering "scaling back" Spicer's public-facing role.


It's Important to Protect Yourself from Ransomware Attacks. Here's How!
However, it is extremely ironic that just eight weeks ago, Microsoft released a patch for the "WannaCry" vulnerability. But a report at the end of 2016 suggested that 90% of NHS trusts still had at least one XP system.


Q2 2017 EPS Estimates for Southwestern Energy Company (SWN) Increased by Analyst
The stock of Southwestern Energy Company (NYSE:SWN) earned "Sector Perform" rating by RBC Capital Markets on Wednesday, June 15. The energy company reported $0.18 earnings per share (EPS ) for the quarter, meeting the Zacks' consensus estimate of $0.18.


Windows flies in the face of the basic tenets of security. And, while the company did issue early fixes for its newer operating systems, patches for older Windows systems were only issued free of charge over the weekend, after the attacks began. Security experts agree that the best protection is to be on a modern, up-to-date system that incorporates the latest defense-in-depth innovations. Or one can have security. That way, if a hacker locked down your computer, you could simply erase all the data from the machine and restore it from the backup.

But patching systems, especially across large, complex networks, is tricky and often organisations delay doing so. By failing to apply the patch from NHS Digital, individual NHS trusts allowed the Wannacry virus to run rampant.

This is minuscule when we compare it to other ransomware attacks. That makes it a really interesting attack platform because I know that in three and a half years time, any new bugs found aren't going to be fixed. That so many computers were susceptible to the Wannacry virus two months after Microsoft's patch is shocking, showing that top-level employees either don't understand the risk or don't care. "This attack provides yet another example of why the stockpiling of vulnerabilities by governments is such a problem".

"We have seen vulnerabilities stored by the Central Intelligence Agency show up on WikiLeaks, and now this vulnerability stolen from the NSA has affected customers around the world", the company declared. "However, NSA is not entirely responsible for the event, and hence Microsoft should voluntarily accept some accountability".

Microsoft has called on governments to consider the attacks as a wake-up call. An equivalent scenario with conventional weapons would be the US military having some of its Tomahawk missiles stolen.

Experts working on the cyber-attack have expressed a possible North Korean link, although no firm location of origin has been determined yet. Our Switchboard equipment was compromised in the cyber attack.

This will not be fixed quickly. In addition, organizations need to attain continuous visibility at the thread level into every endpoint in the network to hunt and respond effectively to thread-based attacks in the future. He explained that some had been spotted already.



Other News

Trending Now

Turkish president watches as his security detail beat up protesters in Washington
The statement said that the US communicated its concerns to the Turkish government "in the strongest possible terms". The guards surrounded a middle-aged man who had been kicked to the ground and was kicked repeatedly in the face.

Google Play Store 7.8.32 Version Update Download Available with New Fixes
Google is also adding a feature to Photos to create soft-cover and hard-cover albums of pictures at prices beginning at $9.99. In the Play Store, you can find all sorts of cool things to download, everything from games to music and books.

Swedish prosecutor drops rape case against WikiLeaks founder Assange
WikiLeaks says the ball is now in Britain's court after Sweden's decision to drop its rape investigation of Julian Assange. WikiLeaks' release of classified material has continued unabated during Assange's five years in the Ecuadorean embassy.

Mourinho walks out of interview after loss to Spurs
Smalling, Jones, Mata - it is very important for them to play 90 minutes". "I think he deserves another chance". Manchester United have entered the UEFA Europa League Final after beating Celta Vigo 2-1 in the semi-final.

Judge declares Prince's 6 siblings the heirs to his estate
Prince , born Prince Rogers Nelson, died without leaving a will - or at least, none that's so far been found. Appeals from others claiming heirship were rejected and they have since filed appeals.

Ivanka Trump and Jared Kushner allowed to fly with president on Shabbat
In her new book, " Women Who Work ", Ivanka Trump writes about how her family observes the weekly Jewish holiday. Orthodox Judaism prohibits traveling in vehicles after sundown on Friday night until Saturday night.

Cemex SAB de CV (CX) Receives Consensus Recommendation of "Buy" from Brokerages
The difference between the expected and actual EPS was $0.09/share, which represents an Earnings surprise of 180%. The company's consensus rating on Reuter's scale remained unchanged from 2.21 to 2.21 during a month.

President Trump to embark on first foreign trip as president
United States officials had warned that acting now could end the President's hopes of reigniting the Middle East peace process. In Trump, however, many Saudis see a decisive, business-focused leader, who they say shares their goals in the region.

2 victims identified after plane carrying UPS cargo crashed in West Virginia
An airport official says a cargo plane contracted by UPS has gone off the runway and over a hillside at a West Virginia airport. Plante added that accidents at Yeager are rare and that the runway's length is on par with major airports in NY and Chicago.

Growth Analysis of Walt Disney Company (The) (NYSE:DIS)
It is positive, as 67 investors sold DIS shares while 602 reduced holdings. 166 funds opened positions while 593 raised stakes. Perhaps, that suggests something about why 1.16% of the outstanding share supply is held by institutional investors.