- Thread starter Balaji G
- Start date
- Replies: Replies 32
- Views: Views 3,522
- Joined
- 27 Oct 2016
- Messages
- 4,569
- Solutions
- 3
- Reaction score
- 6,777
RE: New virus is attacking the PCs running Windows 7
Microsoft issues ‘highly unusual’ Windows XP patch to prevent massive ransomware attack
While Microsoft quickly issued fixes for the latest versions of Windows last month, this left Windows XP unprotected. Many of the machines attacked today have been breached simply because the latest Windows updates have not been applied quickly enough, but there are still organizations that continue to run Windows XP despite the risks. Microsoft is now taking what it describes as a “highly unusual” step to provide public patches for Windows operating systems that are in custom support only. This includes specific fixes for Windows XP, Windows 8, and Windows Server 2003.
PS: Anyone affected by this ransomware in our forum :huh
Microsoft issues ‘highly unusual’ Windows XP patch to prevent massive ransomware attack
While Microsoft quickly issued fixes for the latest versions of Windows last month, this left Windows XP unprotected. Many of the machines attacked today have been breached simply because the latest Windows updates have not been applied quickly enough, but there are still organizations that continue to run Windows XP despite the risks. Microsoft is now taking what it describes as a “highly unusual” step to provide public patches for Windows operating systems that are in custom support only. This includes specific fixes for Windows XP, Windows 8, and Windows Server 2003.
PS: Anyone affected by this ransomware in our forum :huh
- Joined
- 27 Oct 2016
- Messages
- 4,569
- Solutions
- 3
- Reaction score
- 6,777
RE: New virus is attacking the PCs running Windows 7
Bro Microsoft initially announced the vulnerability on March 14 and recommended users patch their devices. Microsoft fixed MS17-010 in its March release. So, if your pc is up to date then no need to worry :tup
M.J.Sadiq said:Yes, how it is coming in? Even I am using Windows 7 laptop provided by my office which is also running Symantec anti virus. Not sure if it will affect my laptop too
Bro Microsoft initially announced the vulnerability on March 14 and recommended users patch their devices. Microsoft fixed MS17-010 in its March release. So, if your pc is up to date then no need to worry :tup
- Joined
- 27 Oct 2016
- Messages
- 4,569
- Solutions
- 3
- Reaction score
- 6,777
RE: New virus is attacking the PCs running Windows 7
While the source of infection has not yet been confirmed, Belani said almost all attacks have been delivered via phishing email.
Wanna Decryptor wncry ransomware NSA hack explained | WIRED UK
Gobinaath said:
While the source of infection has not yet been confirmed, Belani said almost all attacks have been delivered via phishing email.
Wanna Decryptor wncry ransomware NSA hack explained | WIRED UK
Jithin91
Contributor
- Joined
- 31 Jan 2017
- Messages
- 2,134
- Reaction score
- 3,583
RE: New virus is attacking the PCs running Windows 7
It's not just limited to Win 7. All systems running Windows, especially Win XP has been affected. If you are on Windows 10, no need to worry. Patch has been given to Win 10 user's through March security patch. It's a ransomware by the name "WannaCry" send via email. If it's downloaded, the user data will be encrypted and locks out the user. And to decrypt the data they are asking for money. If the system is connected to a network, the entire systems connected in that network will get affected.
And the main highlight of this is all hackings are done by leaked tools of NSA.
have already made a thread about this on morning.
Link Removed
It's not just limited to Win 7. All systems running Windows, especially Win XP has been affected. If you are on Windows 10, no need to worry. Patch has been given to Win 10 user's through March security patch. It's a ransomware by the name "WannaCry" send via email. If it's downloaded, the user data will be encrypted and locks out the user. And to decrypt the data they are asking for money. If the system is connected to a network, the entire systems connected in that network will get affected.
And the main highlight of this is all hackings are done by leaked tools of NSA.
have already made a thread about this on morning.
Link Removed
Basil
Contributor
- Joined
- 6 Oct 2013
- Messages
- 4,888
- Reaction score
- 3,013
RE: New virus is attacking the PCs running Windows 7
"The malware was circulated by email -- the targets were sent an encrypted, compressed file that, once loaded, allowed the ransomware to infiltrate its targets."
Here are ways to prevent not just Wannacry/ WannaCrypt Ransomware, but also any other cyber attack, as suggested by cyberswachhtakendra
— Maintain updated Antivirus software on all systems
— Check regularly for the integrity of the information stored in the databases
— Regularly check the contents of backup files of databases for any unauthorized encrypted contents of data records or external elements, (backdoors /malicious scripts.)
— Ensure integrity of the codes /scripts being used in database, authentication and sensitive systems
— Establish a Sender Policy Framework (SPF) for your domain, which is an email validation system designed to prevent spam by detecting email spoofing by which most of the ransomware samples successfully reaches the corporate email boxes.
— Keep the operating system third party applications (MS office, browsers, browser Plugins) up-to-date with the latest patches.
— Application whitelisting/Strict implementation of Software Restriction Policies (SRP) to block binaries running from %APPDATA% and %TEMP% paths. Ransomware sample drops and executes generally from these locations.
— Perform regular backups of all critical information to limit the impact of data or system loss and to help expedite the recovery process. Ideally, this data should be kept on a separate device, and backups should be stored offline.
— Don't open attachments in unsolicited e-mails, even if they come from people in your contact list, and never click on a URL contained in an unsolicited e-mail, even if the link seems benign. In cases of genuine URLs close out the e-mail and go to the organization's website directly through browser
— Follow safe practices when browsing the web. Ensure the web browsers are secured enough with appropriate content controls.
— Disable remote Desktop Connections, employ least-privileged accounts.
— Restrict users' abilities (permissions) to install and run unwanted software applications.
— Individuals or organizations are not encouraged to pay the ransom, as this does not guarantee files will be released. Report such instances of fraud to CERT-In and Law Enforcement agencies
— Block the attachments of file types, exe|pif|tmp|url|vb|vbe|scr|reg|cer|pst|cmd|com|bat|dll|dat|hlp|hta|js|wsfCarry out vulnerability Assessment and Penetration
— Testing (VAPT) and information security audit of critical networks/systems, especially database servers from CERT-IN empaneled auditors. Repeat audits at regular intervals.
Gobinaath said:
"The malware was circulated by email -- the targets were sent an encrypted, compressed file that, once loaded, allowed the ransomware to infiltrate its targets."
Here are ways to prevent not just Wannacry/ WannaCrypt Ransomware, but also any other cyber attack, as suggested by cyberswachhtakendra
— Maintain updated Antivirus software on all systems
— Check regularly for the integrity of the information stored in the databases
— Regularly check the contents of backup files of databases for any unauthorized encrypted contents of data records or external elements, (backdoors /malicious scripts.)
— Ensure integrity of the codes /scripts being used in database, authentication and sensitive systems
— Establish a Sender Policy Framework (SPF) for your domain, which is an email validation system designed to prevent spam by detecting email spoofing by which most of the ransomware samples successfully reaches the corporate email boxes.
— Keep the operating system third party applications (MS office, browsers, browser Plugins) up-to-date with the latest patches.
— Application whitelisting/Strict implementation of Software Restriction Policies (SRP) to block binaries running from %APPDATA% and %TEMP% paths. Ransomware sample drops and executes generally from these locations.
— Perform regular backups of all critical information to limit the impact of data or system loss and to help expedite the recovery process. Ideally, this data should be kept on a separate device, and backups should be stored offline.
— Don't open attachments in unsolicited e-mails, even if they come from people in your contact list, and never click on a URL contained in an unsolicited e-mail, even if the link seems benign. In cases of genuine URLs close out the e-mail and go to the organization's website directly through browser
— Follow safe practices when browsing the web. Ensure the web browsers are secured enough with appropriate content controls.
— Disable remote Desktop Connections, employ least-privileged accounts.
— Restrict users' abilities (permissions) to install and run unwanted software applications.
— Individuals or organizations are not encouraged to pay the ransom, as this does not guarantee files will be released. Report such instances of fraud to CERT-In and Law Enforcement agencies
— Block the attachments of file types, exe|pif|tmp|url|vb|vbe|scr|reg|cer|pst|cmd|com|bat|dll|dat|hlp|hta|js|wsfCarry out vulnerability Assessment and Penetration
— Testing (VAPT) and information security audit of critical networks/systems, especially database servers from CERT-IN empaneled auditors. Repeat audits at regular intervals.
Last edited by a moderator:
RE: New virus is attacking the PCs running Windows 7
Time will give answers to all your questions.
Aadhaar data along with everyone's finger print and iris scan and personal data can be leaked anytime now.It is not a question of if but when rather when.
Next target will be banks and remember compensation to customers if a bank goes insolvent is Rs 1 each.
You can abuse your govt and even the so called supreme leader then but no one will care.
Today's event seems to be just a trailor of things to come.
Sarkar said:
Time will give answers to all your questions.
Aadhaar data along with everyone's finger print and iris scan and personal data can be leaked anytime now.It is not a question of if but when rather when.
Next target will be banks and remember compensation to customers if a bank goes insolvent is Rs 1 each.
You can abuse your govt and even the so called supreme leader then but no one will care.
Today's event seems to be just a trailor of things to come.
RE: New virus is attacking the PCs running Windows 7
Disconnect everything from Internet, burn your atm card and never pay online, cancel all cheques and revert back to withdrawl slip with passbook.
Best way to ensure your money is safe is to keep all cash under bed.
If you cannot then make sure you open saving account in a remote post office where there is no power to run computer. I am sure there are lots of post-offices like these throuout India.
This way our money will be absolutely safe.
Newb_Dxer said:
Disconnect everything from Internet, burn your atm card and never pay online, cancel all cheques and revert back to withdrawl slip with passbook.
Best way to ensure your money is safe is to keep all cash under bed.
If you cannot then make sure you open saving account in a remote post office where there is no power to run computer. I am sure there are lots of post-offices like these throuout India.
This way our money will be absolutely safe.
Last edited by a moderator:
Sai Jai
Member
- Joined
- 5 Jan 2015
- Messages
- 39,360
- Reaction score
- 26,262
RE: New virus is attacking the PCs running Windows 7
But , PO employees are best public sector employees I have ever seen .. They may not have technology but they big heart to serve is very politely in nature and clear our doubts
..
In fact at lack of tech they only get tense but some public sector bank have full technology but they don't have heart to serve us politely just stretching their seats , giving their angry face for doubts as answer ..
Just my experience .. I'll give 101 mark to po employees in our country
..
But , PO employees are best public sector employees I have ever seen .. They may not have technology but they big heart to serve is very politely in nature and clear our doubts
..In fact at lack of tech they only get tense but some public sector bank have full technology but they don't have heart to serve us politely just stretching their seats , giving their angry face for doubts as answer ..
Just my experience .. I'll give 101 mark to po employees in our country
..
