Bay 12 Games Forum

Please login or register.

Login with username, password and session length
Advanced search  
Pages: 1 [2] 3 4

Author Topic: Update ALL THE THINGS. [WPA2 Vulnerability] [Infosec Thread]  (Read 5548 times)

feelotraveller

  • Bay Watcher
  • (y-sqrt{|x|})^2+x^2=1
    • View Profile
Re: Apache Struts 2 Vulnerability [Infosec Thread]
« Reply #15 on: March 10, 2017, 11:36:58 am »

Looks like the biggest Infosec threat is the CIA.  No great surprises there, but for a change we can read about (some of) it...  Seriously it's pretty big but I'm a bit too tired to summarize it succintly.

https://wikileaks.org/ciav7p1/index.html

And yes, it is pretty certain once you have visited the link/site that you will be on the watched list.  But it's pretty unlikely that you aren't already.
Logged

MetalSlimeHunt

  • Bay Watcher
  • Gerrymander Commander
    • View Profile
Re: Apache Struts 2 Vulnerability [Infosec Thread]
« Reply #16 on: May 12, 2017, 09:07:47 pm »

If you are running Windows and have not updated since March, do so immediately. As you might have heard, the NHS database (among others) recently got hit with an incredibly effective ransomware program, this program is making use of an exploit in Windows to spread between networked computers without user action. The recent Windows update patch will prevent this.
Logged
Quote from: Thomas Paine
To argue with a man who has renounced the use and authority of reason, and whose philosophy consists in holding humanity in contempt, is like administering medicine to the dead, or endeavoring to convert an atheist by scripture.
Quote
No Gods, No Masters.

TheBiggerFish

  • Bay Watcher
  • Somewhere around here.
    • View Profile
« Last Edit: May 12, 2017, 09:15:31 pm by TheBiggerFish »
Logged
Sigtext

It has been determined that Trump is an average unladen swallow travelling northbound at his maximum sustainable speed of -3 Obama-cubits per second in the middle of a class 3 hurricane.

Folly

  • Bay Watcher
  • Steam Profile: 76561197996956175
    • View Profile

http://money.cnn.com/2017/05/12/technology/ransomware-attack-nsa-microsoft/

Just updated my Windows for the first time in over 8 months.
Logged

martinuzz

  • Bay Watcher
  • High dwarf
    • View Profile

Menwhile, the Dutch government is wondering why the Netherlands was spared. Only 4 incidents were reported, none in vital services or industry.
Their best guess so far is that 'we Dutch have a better update culture'.

Apart from that, it's kinda impossible to get a computer with anything other than windows 10 over here. The day win 10 came out, all computer retailers removed their shelf stock of computers with win7 and win8 pre-installed and switched them out / updated them to come pre-installed with win10.
« Last Edit: May 13, 2017, 06:39:14 am by martinuzz »
Logged
Friendly and polite reminder for optimists: Hope is a finite resource

We can ­disagree and still love each other, ­unless your disagreement is rooted in my oppression and denial of my humanity and right to exist - James Baldwin

http://www.bay12forums.com/smf/index.php?topic=73719.msg1830479#msg1830479

McTraveller

  • Bay Watcher
  • This text isn't very personal.
    • View Profile

Too many more of these incidents and I think we're going to start seeing legislation regulating internet-facing software and OSs.  Think FDA or FAA regs, but for computing.  I'm still not sure if that would be a good or bad thing.

EDIT: This is coming from the standpoint that this is very clearly a public safety issue.
« Last Edit: May 13, 2017, 07:54:14 am by McTraveller »
Logged
This product contains deoxyribonucleic acid which is known to the State of California to cause cancer, reproductive harm, and other health issues.

smjjames

  • Bay Watcher
    • View Profile

Too many more of these incidents and I think we're going to start seeing legislation regulating internet-facing software and OSs.  Think FDA or FAA regs, but for computing.  I'm still not sure if that would be a good or bad thing.

EDIT: This is coming from the standpoint that this is very clearly a public safety issue.

It would help if we had politicians who understood the internet and computers, for a start.
Logged

wierd

  • Bay Watcher
  • I like to eat small children.
    • View Profile

I think that is too easy an out.

Instead, you have government that is addicted to ripping through people's personal correspondence, suddenly seeing that there are serious consequences to NOT DOING THEIR DAMNED JOBS. (The NSA's job is to safeguard americans. They failed, bigtime, by enabling this cockup. How? Not by somehow not preventing the breach that resulted in the leak, no-- that is and was inevitable. NO-- they cocked up by hoarding a shitload of nuclear-grade exploits, which then all got introduced to the malware and scamware community *ALL AT ONCE*, resulting in a shitstorm that no-one could have prepared for properly. Why? Because they need to keep track of "The terrorists!" and the like. Never mind that the US was perfectly capable of tracking "Terrorists" (even freaking actual SPIES!) long before "the internet", and before "Mass surveillance". They are just addicted to having everyone's communications poured into their troughs, and addicted to being able to do whatever the fuck they want, without consequences. Well-- Natural consequences like this one are hard to keep down, M'kay?)

How many times does this need to happen before people stop listening to their horseshit excuses, and take away their secret court, and take away their precious mass surveillance power, and hold them accountable again?

That is to say-- the congress critters know full well about how the internet works-- they dont really care. They consider having hospitals shut down, massive disruptions of the banking industry, and cyber criminals making use of military grade zero days in massive quantities to be "Perfectly OK!" as long as it allows them to exercise absurd power, and be bossy, manipulative assholes all over the globe.

I think we should stop treating them like ignorant old fools, and treat them like the sociopathic tyrants they actually are-- personally.
« Last Edit: May 13, 2017, 09:48:12 am by wierd »
Logged

SalmonGod

  • Bay Watcher
  • Nyarrr
    • View Profile

I think we should stop treating them like ignorant old fools, and treat them like the sociopathic tyrants they actually are-- personally.

Yes.  That old phrase "Never attribute to malice what could be attributed to ignorance" is given far, far too much credibility.  It makes us easy victims.  Even though the saying has some merit as a consideration, not an absolute, I've seen it so heavily abused for so long that my immediate response whenever it's cited anymore is revulsion.
Logged
In the land of twilight, under the moon
We dance for the idiots
As the end will come so soon
In the land of twilight

Maybe people should love for the sake of loving, and not with all of these optimization conditions.

hector13

  • Bay Watcher
  • It’s shite being Scottish
    • View Profile

This is probably a wise ptw.
Logged
Look, we need to raise a psychopath who will murder God, we have no time to be spending on cooking.

If you struggle with your mental health, please seek help.

MaximumZero

  • Bay Watcher
  • Stare into the abyss.
    • View Profile
Logged
  
Holy crap, why did I not start watching One Punch Man earlier? This is the best thing.
probably figured an autobiography wouldn't be interesting

Levi

  • Bay Watcher
  • Is a fish.
    • View Profile

I keep my windows NT server behind a firewall, so its probably fine, haha.
Logged
Avid Gamer | Goldfish Enthusiast | Canadian | Professional Layabout

scriver

  • Bay Watcher
  • City streets ain't got much pity
    • View Profile

Posting to watch here too.
Logged
Love, scriver~

Starver

  • Bay Watcher
    • View Profile

Some interesting information (apart from the typical politician stuff) in this article... Also P(ing)TW
Logged

martinuzz

  • Bay Watcher
  • High dwarf
    • View Profile

Europol reports that already, a new variant of the ransom worm using WannaCry has been detected, unleashed by hackers. This one does not have a killswitch, at least not of the type that the previous one had. Europol warns that there will probably be another escalation of infections this monday, when banks and business resume work week schedule.

Already, 200 thousand new infections have been reported, mainly in Russia and in the UK.

http://www.volkskrant.nl/media/nieuwe-variant-ransomware-duikt-op-zonder-noodknop-europol-waarschuwt-voor-nieuwe-uitbraken~a4494681/

http://www.bbc.co.uk/news/technology-39913630

EDIT: I think my newspaper meant the total infections since the first attack are 200 thousand, not 200 thousand new ones already. Just that throughout the weekend, the number has risen to 200 thousand.
« Last Edit: May 14, 2017, 08:50:59 am by martinuzz »
Logged
Friendly and polite reminder for optimists: Hope is a finite resource

We can ­disagree and still love each other, ­unless your disagreement is rooted in my oppression and denial of my humanity and right to exist - James Baldwin

http://www.bay12forums.com/smf/index.php?topic=73719.msg1830479#msg1830479
Pages: 1 [2] 3 4