Stories
Slash Boxes
Comments

SoylentNews is people

posted by martyb on Thursday March 29 2018, @03:11PM   Printer-friendly
from the Windows-TCO dept.

A derivative of Microsoft Windows ransonware, Wannacry, has hit a Boeing production plant in Charleston, South Carolina. An internal memo from Mike VanderWel, chief engineer of Boeing Commercial Airplane production engineering, warned that the company's production systems and airline software were "at risk".

Wannacry was based on Microsoft Windows' CVE 2017-0144 which is used in the EternalBlue exploit kit. EternalBlue was initially utilized in apparent coordination with Microsoft's long delay in patching. Despite massive media spin, Wannacry was found to have hit all recent versions of Microsoft Windows.

From:
The Verge: Boeing production plant hit with WannaCry ransomware attack
The New York Times: Boeing Possibly Hit by ‘WannaCry’ Malware Attack
The Daily Express: Vital Boeing computer network INFECTED with WannaCry VIRUS - is it safe to fly?.

Previously: UK Blames North Korea for WannaCry Attacks, Says NHS Didn't Follow Cybersecurity Guidelines
WannaCry Ransomware Attack Linked to North Korea by Symantec


Original Submission

 
This discussion has been archived. No new comments can be posted.
Display Options Threshold/Breakthrough Mark All as Read Mark All as Unread
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.
  • (Score: 2) by SomeGuy on Thursday March 29 2018, @05:46PM (2 children)

    by SomeGuy (5632) on Thursday March 29 2018, @05:46PM (#660095)

    EternalBlue was initially utilized in apparent coordination with Microsoft's long delay in patching. Despite massive media spin, Wannacry was found to have hit all recent versions of Microsoft Windows.

    So in other words, they were all running the absolute latest and greatest and were still vulnerable.

    Because up to date + using HTTPS = Perfect security!

    Duh.

    People bitch and wine about Windows XP or old browsers, but remember: Whatever up-to-date OS you are using has security vulnerabilities RIGHT NOW. And there is good chance the bad guys already know about them. Don't believe me, come back in a year and see how many vulnerabilities get documented. (Right, but you won't care because you have moved on to an even more "up-to-date" system that still has security vulnerabilities but you just don't know about them, and besides the new thing-a-majig has even brighter bluer LEDs!)

    It doesn't matter if you are running Windows Eleventeen or whatever, pretend that you are running Windows 95 and take extra security precautions.

    Some of the follow up news after the City of Atlanta ransomware mentioned city employees were switching their computer to use public Wifi hotspots for internet access because the internal networks were shut down. My face is still bruised from the epic face palm.

    Starting Score:    1  point
    Karma-Bonus Modifier   +1  

    Total Score:   2  
  • (Score: 1) by anubi on Friday March 30 2018, @06:21AM

    by anubi (2828) on Friday March 30 2018, @06:21AM (#660291) Journal

    I have a system still running WIN95. It works perfectly... Why change it?

    Still have the same garage door too.

    --
    "Prove all things; hold fast that which is good." [KJV: I Thessalonians 5:21]
  • (Score: 0) by Anonymous Coward on Sunday April 01 2018, @05:52AM

    by Anonymous Coward on Sunday April 01 2018, @05:52AM (#661059)

    While this creed certainly does have some merit as in new systems will have bugs too it's still crazy to use an OS that is so old that the bugs are public knowledge. In that case not only the richest criminal syndicates and national states can attack you but literally anybody in the world and their dog.

    I agree about killing blue LEDs and defense in depth. Maybe don't real any news for awhile so your face gets to heal... :)