Massive ransomware attack just took out my work and ukraine, anyone else affected?

[aaron]

http://www.independent.co.uk/news/w...y-airport-rozenko-pavlo-cabinet-a7810471.html

Just shut us completely down, exact same screen as the Ukraine image.

Interesting times.

 

[CREATIVE!11]

Seems these attacks are becoming regular occurrence, maybe it's time for companies to stop forcing IT departments to operate on a shoe string budget....

 

[StriderX]

Meh, it's just Ukraine.

But in seriousness, just two factor everything and it stops being a problem.

 

[sneakysnail]

Got me here. Work in UK. Very very large telecomms company

 

[On Holiday]

Meh, it's just Ukraine.

But in seriousness, just two factor everything and it stops being a problem.

Not sure you understand the situation

There are vulnerabilities within Windows and the services it has enabled by default itself being exploited to remotely execute commands, i.e. reach back to a command and control server and download the malware.

A very large one recently was a service that had been known to be vulnerable for almost 9 years.

Once that's done, all data is corrupt, unobtainable, gone, without paying unless the malware authors have been lazy or made mistakes.

Two factor has absolutely no relevance or protection against this, entry is not being gained by password in most cases.

 

[Mynight]

2FA wouldn't do anything. Now outlawing encryption would! Or running Windows 10 S .


Wonder how they got in this time.

 

[aaron]

Got me here. Work in UK. Very very large telecomms company

Yeah we are a large courier company

 

[StriderX]

What an earth has 2FA got to do with a ransomware attack

Well in the case of email's, an admin should really be authorizing the use of the internet, or just closing the entire system off. Too many liberal users in company and too liberal an IT department are issues.

 

[Ayahuasca]

Seems these attacks are becoming regular occurrence, maybe it's time for companies to stop forcing IT departments to operate on a shoe string budget....

Indeed, it's absolutely shocking how poorly funded and supported many companies IT departments are.

On the plus side anyone looking to get into IT security which is already understaffed should make the jump.

 

[sneakysnail]

Yeah we are a large courier company

Yeah might be working in the same system.
We work impart with a courier. M5?

 

[glenimp617]

Indeed, it's absolutely shocking how poorly funded and supported many companies IT departments are.

Agreed!!!!

 

[Rroff]

Feeling glad I've taken to doing a regular full system image (which I've been a bit slack about previously) as well as backing up critical data offline (which I've always done) just in case :s

Hopefully won't be affected but needs more than just good practises with internet<>LAN border security these days.

 

[Jamesyboyjim]

Seems these attacks are becoming regular occurrence, maybe it's time for companies to stop forcing IT departments to operate on a shoe string budget....

Please tell that to our directors!

The attitude is "everything works, why are we paying you" shortly followed by "nothing works why are we paying you"

 

[aaron]

Yeah might be working in the same system.
We work impart with a courier. M5?

I work up north on the international side. But yeah possibly the same one.

 

[Arazi]

Got me here. Work in UK. Very very large telecomms company

Yeah we are a large courier company

Yeah might be working in the same system.
We work impart with a courier. M5?

Just name the companies ffs.

 

[jpaul]

Two factor has absolutely no relevance or protection against this, entry is not being gained by password in most cases.

may not be the case here, but patient zero infection could be established into an organisation via remote VPN access into the password protected network,
albeit many organisations do have a secure key (2fa) to enable access.

 

[Nodiggidy123]

The entire Saint gobain group of companies has had its systems down. Crazy how much we depend on our computers to do anything these days

 

[aaron]

Edit

 

[Nodiggidy123]

That's what we got

 

[antijoke]

Ouch.