Hacking tools were stolen from NSA - Almost all Windows affected

Page 13 of 15 FirstFirst ... 31112131415 LastLast

  1. Posts : 16,278
    W10Prox64
       #121

    Interesting tidbit about WCry:

    Hacking tools were stolen from NSA - Almost all Windows affected-image.png
      My Computer


  2. Posts : 5,833
    Dual boot Windows 10 FCU Pro x 64 & current Insider 10 Pro
       #122

    simrick said:
    Interesting tidbit about WCry:

    Hacking tools were stolen from NSA - Almost all Windows affected-image.png
    Hmm. Intersting. Thanks for that, simrick. :)
      My Computers


  3. Posts : 1,983
    Windows 10 x86 14383 Insider Pro and Core 10240
       #123

    One thing from Malwarebytes update at The worm that spreads WanaCrypt0r - Malwarebytes Labs | Malwarebytes Labs

    UPDATE: The second argument to InternetOpenA is 1 (INTERNET_OPEN_TYPE_DIRECT), so the worm will still work on any system that requires a proxy to access the Internet, which is the case on the majority of corporate networks. Thanks to Didier Stevens for spotting what was missed by most.

    The accidental kill-switch will not protect those who are running through a proxy server, nor the variants that have the link to the backdoor website removed
      My Computers


  4. Posts : 26,993
    Windows 10 (Pro and Insider Pro)
    Thread Starter
       #124

    Fafhrd said:
    One thing from Malwarebytes update at The worm that spreads WanaCrypt0r - Malwarebytes Labs | Malwarebytes Labs



    The accidental kill-switch will not protect those who are running through a proxy server, nor the variants that have the link to the backdoor website removed
    Danger from this attack is far from over. We'll see variants in the next weeks at least.

    Interesting article on Ars Technica | massive-cryptocurrency-botnet-used-leaked-nsa-exploits-weeks-before-wcry

    Like WannaCry, this earlier, previously unknown attack used an exploit codenamed EternalBlue and a backdoor called DoublePulsar, both of which were NSA-developed hacking tools leaked in mid April by a group calling itself Shadow Brokers. But instead of installing ransomware, the campaign pushed cryptocurrency mining software known as Adylkuzz. WannaCry, which gets its name from a password hard-coded into the exploit, is also known as WCry.
    Last edited by AndreTen; 16 May 2017 at 03:23.
      My Computers


  5. Posts : 2,120
    Win 11 x 64 Home. Pro x 64 on Surface.
       #125

    AndreTen said:
    You're right there. I've connected this two statements without carefully reading articles. But then who read this stuff carefully?
    not me anyway. Lets face it 99% of the 'news' on the net is faked anyway.
      My Computer


  6. Posts : 53
    Windowes 10 Pro 15063.332
       #126

    actually about 25% is fake and the rest you need to double and triple check with other sources
      My Computer


  7. Posts : 16,278
    W10Prox64
       #127

    Fafhrd said:
    One thing from Malwarebytes update at The worm that spreads WanaCrypt0r - Malwarebytes Labs | Malwarebytes Labs
    UPDATE: The second argument to InternetOpenA is 1 (INTERNET_OPEN_TYPE_DIRECT), so the worm will still work on any system that requires a proxy to access the Internet, which is the case on the majority of corporate networks. Thanks to Didier Stevens for spotting what was missed by most.
    The accidental kill-switch will not protect those who are running through a proxy server, nor the variants that have the link to the backdoor website removed
    Hopefully everyone is patched/getting patched by now. (Although I have 1 Vista laptop that hasn't been able to download updates since last year, so it's a problem.)
    AndreTen said:
    Danger from this attack is far from over. We'll see variants in the next weeks at least.

    Interesting article on Ars Technica | massive-cryptocurrency-botnet-used-leaked-nsa-exploits-weeks-before-wcry
    Yes, reading this....makes you wonder what else is out there that we don't know about...

    Assembling a botnet the size of the one that managed WannaCry and keeping it under wraps for two to three weeks is a major coup. Monday's revelation raises the possibility that other botnets have been built on the shoulders of the NSA but have yet to be identified.
    I cleaned a system that had been hit with a Bitcoin Miner once - scary stuff!
      My Computer


  8. Posts : 1,983
    Windows 10 x86 14383 Insider Pro and Core 10240
       #128

    Latest WanaCrypt infection rates from MalwareTech site ( The tracker site went down from 1600, but is back online now). Showing nearly 4.5k new infections/hour and rising for a total of over 350k machines infected so far since Friday.

    Hacking tools were stolen from NSA - Almost all Windows affected-image.png
    Hacking tools were stolen from NSA - Almost all Windows affected-image.png

    PewPewPew (realtime tracker) is getting really noisy, and unstable as the number of exploits increase.
      My Computers


  9. Posts : 26,993
    Windows 10 (Pro and Insider Pro)
    Thread Starter
       #129

    Fafhrd said:
    Latest WanaCrypt infection rates from MalwareTech site ( The tracker site went down from 1600, but is back online now). Showing nearly 4.5k new infections/hour and rising for a total of over 350k machines infected so far since Friday.

    Hacking tools were stolen from NSA - Almost all Windows affected-image.png
    Hacking tools were stolen from NSA - Almost all Windows affected-image.png

    PewPewPew (realtime tracker) is getting really noisy, and unstable as the number of exploits increase.
    Thanks for the update Fafhrd. Compromised servers are also huge problem. This attack was well prepared, and attackers won't stop easy.
      My Computers


  10. Posts : 16,278
    W10Prox64
       #130

    I noticed the infection rate seemed to be climbing earlier today - many more PEWS.
      My Computer


 

  Related Discussions
Our Sites
Site Links
About Us
Windows 10 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 10" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd
All times are GMT -5. The time now is 15:44.
Find Us




Windows 10 Forums