Page 2 of 15 FirstFirst 123412 ... LastLast
  1.    14 Apr 2017 #11
    Join Date : Apr 2015
    Posts : 12,824
    W10Prox64

    Quote Originally Posted by HippsieGypsie View Post
    Wow, @simrick. You've been busy. Impressive list you made!

    So what do we do about all this?
    I didn't make the list - it's copied from BleepingComputer's article on it.

    Apparently, they've been released specifically for this weekend, when people will be home for the Easter Holiday, using their computers alot, and business computers will be left unattended (easy prey on both parts). So they expect high hacking activity over this weekend.

    I've also read that some of these are not even detectable using VirusTotal.com scanning tool. This is serious stuff: nation-state-grade hacking tools out in the wild, many of them 0-day exploits. I've warned my friends to get their images done before turning in for the night, and stay off the NET over the weekend as much as possible. Until we know more, what else can we do? I am concerned about disruptions to municipalities (water/electricity, etc.); I mean, look what just happened in Dallas the other day - someone hacked into the tornado siren system and set all 156 sirens off.
      My ComputerSystem Spec
  2.    14 Apr 2017 #12
    Join Date : Nov 2013
    Chicagoland
    Posts : 33,747
    Dual boot Windows 10 FCU Pro x 64 & Insider 10 Pro

    Quote Originally Posted by simrick View Post
    I didn't make the list - it's copied from BleepingComputer's article on it.

    Apparently, they've been released specifically for this weekend, when people will be home for the Easter Holiday, using their computers alot, and business computers will be left unattended (easy prey on both parts). So they expect high hacking activity over this weekend.

    I've also read that some of these are not even detectable using VirusTotal.com scanning tool. This is serious stuff: nation-state-grade hacking tools out in the wild, many of them 0-day exploits. I've warned my friends to get their images done before turning in for the night, and stay off the NET over the weekend as much as possible. Until we know more, what else can we do? I am concerned about disruptions to municipalities (water/electricity, etc.); I mean, look what just happened in Dallas the other day - someone hacked into the tornado siren system and set all 156 sirens off.
    Thanks for your good work here, simrick. This is terrible.
      My ComputersSystem Spec
  3.    15 Apr 2017 #13
    Join Date : Jun 2015
    UK
    Posts : 2,082
    Windows 10 Home x64 (Laptop), Windows 10 Pro x64 (Desktop)

    Quote Originally Posted by HippsieGypsie View Post
    It's beyond crazy. It's absolutely ludicrous. Wonder if MS is doing anything about this.
    I don't expect any action from MS any time soon. They can't even update Windows without creating major problems.
      My ComputersSystem Spec
  4.    15 Apr 2017 #14
    Join Date : Mar 2017
    Posts : 42
    win10

    Should I shift to Linux? Recently I have concerns of data on my PC being stolen by a business competitor whom I know he is personally a software programmer/engineer as well.
      My ComputerSystem Spec
  5.    15 Apr 2017 #15
    Join Date : Nov 2014
    The Netherlands
    Posts : 628
    Win 10 Pro x64 1607 (Build 14393.953)

    Very disturbing news indeed!

    Cheers
      My ComputerSystem Spec
  6.    15 Apr 2017 #16
    Join Date : Feb 2016
    Maribor, Slovenia
    Posts : 8,897
    Windows 10 (Pro and Insider Pro)
    Thread Starter

    Quote Originally Posted by HippsieGypsie View Post
    Wow, @simrick. You've been busy. Impressive list you made!

    So what do we do about all this?
    Stay extra careful who you trust and what to click. And be prepare to change you online passwords. No need to do it now, ...
    Last edited by AndreTen; 15 Apr 2017 at 04:17.
      My ComputerSystem Spec
  7.    15 Apr 2017 #17
    Join Date : Feb 2016
    Maribor, Slovenia
    Posts : 8,897
    Windows 10 (Pro and Insider Pro)
    Thread Starter

    Quote Originally Posted by Steve C View Post
    I don't expect any action from MS any time soon. They can't even update Windows without creating major problems.
    MS responded to Softpedia article (or somewhere) and I think they'll provide some fixes. Hope it'll be quick enough...
      My ComputerSystem Spec
  8.    15 Apr 2017 #18

    I like ENGLISHMANSDENTIST lol
      My ComputersSystem Spec
  9.    15 Apr 2017 #19
    Join Date : Feb 2016
    Maribor, Slovenia
    Posts : 8,897
    Windows 10 (Pro and Insider Pro)
    Thread Starter

    WinBeta reported that MS responded and some security fixes are available...

    Click image for larger version. 

Name:	image.png 
Views:	5 
Size:	116.6 KB 
ID:	130200

    Update: here is direct link to MS blog article with the list of security fixes..
      My ComputerSystem Spec
  10.    15 Apr 2017 #20
    Join Date : Apr 2015
    Posts : 12,824
    W10Prox64

    Based on the comprehensive leaked list posted over at BleepingComputer, it appears that MS have only addressed the ones they have an acceptable answer for; many still remain unanswered, and therefore active vulnerabilities:

    EASYBEE appears to be an MDaemon email server vulnerability [source, source, source]

    EASYPI is an IBM Lotus Notes exploit [source, source] that gets detected as Stuxnet [source]

    EWOKFRENZY is an exploit for IBM Lotus Domino 6.5.4 to 7.0.2 [source, source]

    EXPLODINGCAN is an IIS 6.0 exploit that creates a remote backdoor [source, source]

    EMPHASISMINE is a remote IMAP exploit for IBM Lotus Domino [source, source]

    ENGLISHMANSDENTIST sets Outlook Exchange WebAccess rules to trigger executable code on the client's side to send an email to other users [source, source]

    ERRATICGOPHER is a SMBv1 exploit targeting Windows XP and Server 2003 [source, source]
    Addressed prior to the release of Windows Vista

    ETRE is an exploit for IMail 8.10 to 8.22 [source]

    FUZZBUNCH is an exploit framework, similar to MetaSploit [source, source], which was also part of the December-January "Windows Tools" Shadow Brokers auction [source]

    DOUBLEPULSAR is a RING-0 multi-version kernel mode payload [source]
    EquationGroup had scripts that could scrape Oracle databases for SWIFT data [source, source]

    ODDJOB is an implant builder and C&C server that can deliver exploits for Windows 2000 and later [source, source], also not detected by any AV vendors [source]
      My ComputerSystem Spec

 
Page 2 of 15 FirstFirst 123412 ... LastLast


Similar Threads
Thread Forum
Remote hacking
I believe I am being remotely monitored. My task manager spikes whenever this person uses their computer and I have very odd programs running. I have a dell windows 10 upgraded from 7. Can someone lead me thru steps on how to find it and eliminate...
AntiVirus, Firewalls and System Security
will dual boot windows 10 1511 and ubuntu 16.04 be affected.
Will dual boot windows 10 1511 and ubuntu 16.04 be affected by anniversary update. Henry
Installation and Upgrade
Laptop was stolen, how do I remove acces to my Microsoft account?
As the title says, my old laptop was stolen how do I remove access to my Microsoft account form it?
General Support
Stolen asus laptop s/n f6n0cv02692323a
Hi guys, new to this forum and requesting any possible help. My laptop has been stolen and I didn't have any tracking program installed. Is there any way it can be located again? It also has a password on the startup lockscreen but I am not sure if...
AntiVirus, Firewalls and System Security
Would Windows 10 Phone affected by the same virus with Win 10 PC?
So I just had a thought: if Windows 10 for Phone can run continuum and be a PC, then a virus or any malicious software can infect a phone just like it would in a laptop/desktop? Another thought: what if the virus can manipulate OneDrive sync and...
AntiVirus, Firewalls and System Security
Our Sites
Site Links
About Us
Windows 10 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 10" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd
All times are GMT -5. The time now is 21:32.
Find Us
Twitter Facebook Google+ Ten Forums iOS App Ten Forums Android App



Windows 10 Forums