Page 1 of 2 12 LastLast
  1.    27 Jun 2017 #1
    Join Date : Jul 2015
    Posts : 113
    Windows 10 Pro 64bit

    Another big malware attack ripples across the world


    Hackers launched blistering ransomware attacks Tuesday against companies and agencies across the world, particularly targeting Ukranian businesses.

    Major global firms reported that they had been targeted, including British advertising agency WPP (WPPGY), Russian oil and gas giant Rosneft and Danish shipping firm Maersk.

    "IT systems in several WPP companies have been affected by a suspected cyber attack," WPP said on its Twitter account.

    Maersk issued a similar statement, saying its tech systems "are down across multiple sites and business units due to a cyberattack."

    The U.S.-based pharmaceutical company Merck (MRK) also said it was hit.

    "We confirm our company's computer network was compromised today as part of global hack," Merck said on Twitter.

    The source of the attack is not yet clear. It is similar to WannaCry, which spread globally in May, but there are differences. Both asked victims to pay Bitcoin to get their files back, and both use a similar flaw to spread through networks...


    Read More:
    Another big malware attack ripples across the world - Jun. 27, 2017
    Last edited by Brink; 27 Jun 2017 at 18:53. Reason: Fixed to meet news posting guidelines
      My ComputerSystem Spec
  2.    28 Jun 2017 #2
    Join Date : Jun 2015
    UK
    Posts : 2,099
    Windows 10 Home x64 (Laptop), Windows 10 Pro x64 (Desktop)

    Posts in the AntiVirus section suggest disabling the vulnerable SMBv1 file sharing protocol
      My ComputersSystem Spec
  3.    28 Jun 2017 #3
    Join Date : Jul 2015
    Posts : 113
    Windows 10 Pro 64bit
    Thread Starter

    Quote Originally Posted by Steve C View Post
    Posts in the AntiVirus section suggest disabling the vulnerable SMBv1 file sharing protocol
    Yes, I have done this long ago as there is no need to have it enabled anyway. But the important question now is: Are those of us having latest windows update and SMBv1 disabled safe with the new attack or other precautions should be taken!?
      My ComputerSystem Spec
  4.    28 Jun 2017 #4
    Join Date : Oct 2014
    Posts : 2,459
    W10 Pro + W10 Preview

    Quote Originally Posted by rezpower View Post
    Yes, I have done this long ago as there is no need to have it enabled anyway. But the important question now is: Are those of us having latest windows update and SMBv1 disabled safe with the new attack or other precautions should be taken!?
    The site responsible for this particular malware has already been closed down.
      My ComputersSystem Spec
  5.    28 Jun 2017 #5
    Join Date : Jul 2015
    Posts : 879
    Windows 10 Home

    "Are those of us having latest windows update and SMBv1 disabled safe with the new attack"

    Apparently this protocol will default to OFF in the Fall Creators Update. For those who want to disable but don't know how: open Powershell (Admin) then type and Enter -
    Disable-WindowsOptionalFeature -Online -FeatureName smb1protocol

    or, in Control Panel/Programs and Features/Turn Windows Features on or off and untick box. Restart is required
      My ComputerSystem Spec
  6.    28 Jun 2017 #6
    Join Date : Jun 2015
    Posts : 297
    Windows 7 (SP1)

    Apparently some software could be to blame ?

    Tax software blamed for cyber-attack spread - BBC News

    And it is suspected was spread via the software's automatic updates !

    Alan Woodward, a computer scientist from the University of Surrey, said: The ironic thing about this situation (if it proves to be the case) is that we always advise users to keep their software up to date, ideally using automated updates.

    "However, it assumes hackers can't take over the update process and misuse it.

    I've always worried about this with Microsoft's own auto update system, could it be abused in the same or similiar way.
      My ComputerSystem Spec
  7.    28 Jun 2017 #7
    Join Date : Oct 2014
    Posts : 17,584
    Windows 10 Insider Preview Build 16281
      My ComputerSystem Spec
  8.    28 Jun 2017 #8
    Join Date : Nov 2014
    The Netherlands
    Posts : 628
    Win 10 Pro x64 1607 (Build 14393.953)

    Announcing Windows 10 Insider Preview Build 16226 for PC


    Done. Thanks for the heads up!

    Cheers
      My ComputerSystem Spec
  9.    28 Jun 2017 #9
    Join Date : Jul 2015
    Posts : 775
    Windows 10 Pro x64 Build 17035

    Can someone write a simple .bat file to run this?

    Petya Ransomware Vaccine: This Will Protect You From Latest Attack

    Use elevated CMD prompt to enter:

    cd \windows
    copy notepad.exe perfc
    copy notepad.exe perfc.dat
    copy notepad.exe perfc.dll
    attrib +R perfc
    attrib +R perfc.dat
    attrib +R perfc.dll
      My ComputerSystem Spec
  10.    28 Jun 2017 #10
    Join Date : Oct 2014
    Posts : 2,459
    W10 Pro + W10 Preview

    This version of ransomware has been terminated at source because the perpetrator never attempted to cover its address, it is pointless installing this file as it is no longer live in the wild.
      My ComputersSystem Spec

 
Page 1 of 2 12 LastLast


Similar Threads
Thread Forum
Every...i mean every anti malware blocked by unknown malware/virus
i have looked up this issue and apparently this must be a new one since there is no solution what so ever, even the hidden admin account is defenseless, here is what's going on 1. the PC got infected on windows defenders watch, the infection...
AntiVirus, Firewalls and System Security
Keyboard Malware Attack?
Some keys/ key combinations that were previously working are no longer working. It has affected the backspace key and the Right Shift Key (RSK). Occasionally when typing, text might start being erased from nowhere. Key combination like the RSK and...
AntiVirus, Firewalls and System Security
New Ransomware attack
Only 5 days out and Win10 being screwed with. This link was in an E-Mail today: New Windows 10 scam will encrypt your files for ransom | ZDNet
AntiVirus, Firewalls and System Security
Flash zero-day flaw under attack to spread ad malware...
More
Windows 10 News
Our Sites
Site Links
About Us
Windows 10 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 10" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd
All times are GMT -5. The time now is 06:15.
Find Us
Twitter Facebook Google+ Ten Forums iOS App Ten Forums Android App



Windows 10 Forums