Post new topic Reply to topic  [ 8 posts ] 
Author Message
 Post Posted: Mon May 15, 2017 11:05 am | Post subject: WannaCrypt Patch for Windows XP?
 
Offline
User avatar

Joined: Wed Nov 23, 2016 12:07 pm
Location: Long Island, NY
Why did Microsoft decide to patch XP to fix the exploit used by this ransomware if they stopped supporting it in 2014? I thought for sure they'd completely cut off anything to do with with XP at all. Do you think there may be more security patches in the future since they're acknowledging that a lot of people still use XP in businesses and hospitals?


Top
 Profile  
Reply with quote  
 Post Posted: Mon May 15, 2017 11:32 am | Post subject: Re: WannaCrypt Patch for Windows XP?
 
Offline
User avatar

Joined: Sat Oct 18, 2014 4:35 am
Mainly because it would look bad if they don't, and you said it yourself:

Quote:
they're acknowledging that a lot of people still use XP in businesses and hospitals?


But no, this is likely the one in a million that microsoft actually patched an unsupported os.

I've got a Server 2003 vm to spare, I actually want to go download this virus and see what gives.


Top
 Profile  
Reply with quote  
 Post Posted: Mon May 15, 2017 1:19 pm | Post subject: Re: WannaCrypt Patch for Windows XP?
 
Offline
User avatar

Joined: Wed Nov 23, 2016 12:07 pm
Location: Long Island, NY
Quote:
you said it yourself

Yeah true, I tend to do that.

I wonder if they'd do this if another one in a million widespread virus comes up in the future, or if they'll just push even harder for everyone to leave XP for real this time. Again.


Top
 Profile  
Reply with quote  
 Post Posted: Mon May 15, 2017 1:51 pm | Post subject: Re: WannaCrypt Patch for Windows XP?
 
Offline
User avatar

Joined: Sun Sep 13, 2015 10:08 am
Location: Glasgow, Scotland, UK
Well, those businesses had it coming for not getting up their backsides and take the time to upgrade their bloody machines, and lack of funding is not an excuse. And, I hope that's not the first patch Microsoft has made for XP since they cut support for it. If there's going to be another, then something's wrong. Very wrong.

_________________
"I fear the day that technology will surpass our human interaction. The world will have a generation of idiots."
~ Albert Einstein


Top
 Profile  
Reply with quote  
 Post Posted: Mon May 15, 2017 2:39 pm | Post subject: Re: WannaCrypt Patch for Windows XP?
 
Offline
Library Director
User avatar

Joined: Fri Feb 01, 2013 1:46 am
Those businesses had it coming for not implementing network security. Who would have thought that exposing SMB ports to the internet and/or shared public networks would still be an issue after all the vulnerabilities in the past?

I remember back in the 95 days when one could connect to any shared folder with a Linux box, change directory to "\..", or some such, and see the entire user's hard drive.

THIS TIME it looks like Windows 10 was not affected, but don't be so sure and smug that that won't be the case next time.


Top
 Profile  
Reply with quote  
 Post Posted: Mon May 15, 2017 4:57 pm | Post subject: Re: WannaCrypt Patch for Windows XP?
 
Offline

Joined: Tue Jun 21, 2016 4:11 pm
Location: North Carolina
Microsoft just fueled the fire they've been trying to extinguish. Releasing a patch for XP now is going to make the few hold-outs (who thank God are a minority) stick with XP that much longer. Honestly, I don't know any place that still uses XP except for a couple point-of-sale machines. The warehouse where I used to work, the local hospital, just about every place I can think of has upgraded to Win7.

yourepicfailure wrote:
Mainly because it would look bad if they don't

My entire point here is that keeping XP patched and up-to-date is not Microsoft's problem anymore, it shouldn't be held against them if they refuse to fix an OS they dropped support of more than three years ago.

How do you even get this ransomware crap? I don't get strange e-mails with infected documents or go to shady warez sites, so I have no clue.

_________________
What is THIS man doing here?!


Top
 Profile  
Reply with quote  
 Post Posted: Mon May 15, 2017 7:31 pm | Post subject: Re: WannaCrypt Patch for Windows XP?
 
Offline
User avatar

Joined: Sat Apr 15, 2017 2:54 pm
I worked for one of the largest multi-national cargo companies in the world and every single machine on the warehouse floor ran XP. XP is not going away because this company refuses to spend any money to replace all the very old Dell Optiplexes they have on the floor.


Top
 Profile  
Reply with quote  
 Post Posted: Mon May 15, 2017 9:11 pm | Post subject: Re: WannaCrypt Patch for Windows XP?
 
Offline
Peace Ownz
User avatar

Joined: Sat Jun 19, 2004 1:50 pm
I think they pretty much had to release this patch simply because there's still so many businesses running XP. But it's dropping all the time... I wouldn't get used to receiving these kind of patches.

As far as WannaCry goes... There seems to be a lot of people that think this SMB vulnerability is the only way to get this virus, but that's just not the case. The primary way it gains a foothold in a network is through malicious email attachments.

Also, even if you didn't receive patches, this vulnerability attacks SMB v1.... turn that shit off. You most likely don't need it unless you have some ancient clients and also, please, please, please... turn file sharing off on workstation machines and non-file share / DC servers... If you aren't explicitly sharing files with other machines, then you don't need that feature running.

And further more, every box should have a firewall on and configured... if you're not providing services to the network, block all inbound traffic. You can pretty much stop infections like this dead in their tracks with some simple network security.

You can (and should) go even further by blocking workstation-to-workstation communication on your switches... especially if you're running a large enterprise network. Workstations don't need to talk to each other.

Slight mini rant, but I've been dealing with this all day.


Top
 Profile  
Reply with quote  
Display posts from previous:  Sort by  
Post new topic Reply to topic  [ 8 posts ] 

Search for:
Powered by phpBB
2003 - 2016 WinWorld