Groups | Search | Server Info | Login | Register

Groups > alt.comp.os.windows-xp > #6379

Re: DIRECT LINK: Windows XP SP3 WanaCry/WanaCrypt patch

From Steve Hayes <hayesstw@telkomsa.net>
Newsgroups alt.comp.os.windows-xp, alt.os.windows-xp, microsoft.public.windowsxp.general
Subject Re: DIRECT LINK: Windows XP SP3 WanaCry/WanaCrypt patch
Date 2017-05-14 16:10 +0200
Organization Khanya Publications
Message-ID <e4pghch5en1ct72rgurkp3d8bvlppebd17@4ax.com> (permalink)
References <EDHRA.55459$oF6.17013@fx26.iad> <enq0nbF8vf8U1@mid.individual.net> <of8rhg$1t0$1@dont-email.me>

Cross-posted to 3 groups.

Show all headers | View raw

On Sun, 14 May 2017 01:59:21 -0400, Paul <nospam@needed.invalid>
wrote:

>This one can be delivered in two stages:
>
>1) Real threat arrives as an email attachment.
>    Employee clicks attachment. Weapon is armed.
>
>2) Now, the malware is inside the network, on the LAN
>    side of the router. Port 445 is open on other machines
>    on the LAN, allowing a worm-like attack. So now it
>    spreads to all your machines, like it was Sality.
>
>    This threat really isn't all that much different than
>    some other Ransomware, which can encrypt any file shares
>    that it can discover. Existing Ransomware could do a lot
>    of damage in any case. The new vector will just be
>    doing a much-more-complete exploitation. You still
>    have to do (1) to let them in.
>
>If you are the sole occupant of your home LAN, and
>have half-a-clue about email attachments, your risk
>is low. And the NAT IPV4 router you use with your broadband
>connection should be enough.


Thanks for that.

None of the articles I've read said how it was delivered, and someone
in a comment on Facebook said it was not delivbered by e-mail
attachment but by a backdoor. 


-- 
Steve Hayes
http://www.khanya.org.za/stevesig.htm
http://khanya.wordpress.com

Back to alt.comp.os.windows-xp | Previous | NextPrevious in thread | Next in thread | Find similar

Thread

DIRECT LINK: Windows XP SP3 WanaCry/WanaCrypt patch XP-SP3 <none@none.no> - 2017-05-13 17:46 +0000
  Re: DIRECT LINK: Windows XP SP3 WanaCry/WanaCrypt patch VanguardLH <V@nguard.LH> - 2017-05-13 22:20 -0500
    Re: DIRECT LINK: Windows XP SP3 WanaCry/WanaCrypt patch Paul <nospam@needed.invalid> - 2017-05-14 01:59 -0400
      Re: DIRECT LINK: Windows XP SP3 WanaCry/WanaCrypt patch Steve Hayes <hayesstw@telkomsa.net> - 2017-05-14 16:10 +0200
        Re: DIRECT LINK: Windows XP SP3 WanaCry/WanaCrypt patch Paul <nospam@needed.invalid> - 2017-05-14 11:17 -0400
    Re: DIRECT LINK: Windows XP SP3 WanaCry/WanaCrypt patch "J. P. Gilliver (John)" <G6JPG-255@255soft.uk> - 2017-05-14 11:50 +0100
      Re: DIRECT LINK: Windows XP SP3 WanaCry/WanaCrypt patch Paul <nospam@needed.invalid> - 2017-05-14 14:41 -0400

csiph-web