NHS computer systems hacked!?

[KIA]

Well in the case of the SR, the FBI distracted him from his laptop which give them enough time to take it without letting him power it off.

Before Ross was busted, he made a lot of opsec mistakes.

This is a great read, if you have the time.

 

[h4rm0ny]

I wasn't looking for your permission to disagree. His Bio written by him about himself he calls himself a hero. He's arrogant & now he's in jail. If found guilty his arrogance may have just cost him his freedom for years

You've never met the guy and you're making confident pronouncements about his character? Also, rather worryingly, you seem to think his character justifies sentencing. He stopped the spread of a major attack that was paralysing much of our healthcare and also infrastructure in countries around the world. He can call himself "an accidental hero" without being an arrogant ******.

 

[Fishbait]

Computer law expert says British hacker arrest problematic.
A computer law expert on Friday described the evidence so far presented to justify the U.S. arrest of a British cybersecurity researcher as being problematic — an indictment so flimsy that it could create a climate of distrust between the U.S. government and the community of information-security experts.
Attorney Tor Ekeland told The Associated Press that the facts in the indictment fail to show intent.

Had to chuckle at his name

 

[JessieD]

You've never met the guy and you're making confident pronouncements about his character? Also, rather worryingly, you seem to think his character justifies sentencing. He stopped the spread of a major attack that was paralysing much of our healthcare and also infrastructure in countries around the world. He can call himself "an accidental hero" without being an arrogant ******.

No I didn't say that I said his arrogant behaviour may have got him caught. And I disagree, calling yourself a hero is arrogant.

 

[h4rm0ny]

Computer law expert says British hacker arrest problematic.
A computer law expert on Friday described the evidence so far presented to justify the U.S. arrest of a British cybersecurity researcher as being problematic — an indictment so flimsy that it could create a climate of distrust between the U.S. government and the community of information-security experts.
Attorney Tor Ekeland told The Associated Press that the facts in the indictment fail to show intent.

Had to chuckle at his name

Interesting. But this is the same attorney who represented Laurie Love so take that as you will.

 

[Rroff]

Before Ross was busted, he made a lot of opsec mistakes.

This is a great read, if you have the time.

This kind of thing will be one of the issues the US intelligence services are facing - it can be hard, without significant forensics to tell the difference between someone getting sloppy and logging into a system without masking themselves and someone dabbling to analyse the malware and wouldn't be the first time someone has used a seemingly legit company as a front for illegal stuff online.

Kind of strange though if that was the case they didn't go through the UK authorities.

 

[Homer-Simpson]

https://twitter.com/MabbsSec/status/893624617142759425

https://www.facebook.com/ChristyNews3LV/videos/1746478715365613/

 

[Em3bbs]

No I didn't say that I said his arrogant behaviour may have got him caught. And I disagree, calling yourself a hero is arrogant.

It says "accidental hero" in quotes in his bio.

Let's look at the whole bio in context:
Malware Researcher, Developer, "Accidental Hero". Tweets are not my own they are the opinions of my employer, family, and even my cat.

It doesn't read as arrogant to me at all.

 

[JessieD]

It says "accidental hero" in quotes in his bio.

Let's look at the whole bio in context:
Malware Researcher, Developer, "Accidental Hero". Tweets are not my own they are the opinions of my employer, family, and even my cat.

It doesn't read as arrogant to me at all.

Yes teacher lets... hmm still reads as arrogant to me

 

[Em3bbs]

Yes teacher lets... hmm still reads as arrogant to me

It's let's with an apostrophe. Stay on for detention.

 

[bobbyspangles]

23 years old earning a 6-figure salary, whilst still living at home with his parents by the coast in North Devon. Where do I learn to code?

 

[JessieD]

It's let's with an apostrophe. Stay on for detention.

Someone must have stolen the apostrophe, call the feds! My god is nothing sacred anymore?

 

[Fishbait]

It's let's with an apostrophe. Stay on for detention.

And waterboarding?

 

[JessieD]

And waterboarding?

If that is like snow boarding I have a note from my mum. Seriously yeah, my lack of coordination is disturbing to see.

 

[Fishbait]

If that is like snow boarding I have a note from my mum. Seriously yeah, my lack of coordination is disturbing to see.

After inspecting said "note from my mum" I realised the signature stating "from JessieD mum" seemed a bit suspicious. Perhaps it was because it was written in edible crayon

 

[JessieD]

"from JessieD mum"

Oh no, look the apostrophe tea leaf has struck again. As a repeat victim of crime I am devastated

 

[Fishbait]

Oh no, look the apostrophe tea leaf has struck again. As a repeat victim of crime I am devastated

Was going to insert one there (hehehe) but I thought it'd either confuse or get stolen

 

[CREATIVE!11]

Before Ross was busted, he made a lot of opsec mistakes.

This is a great read, if you have the time.

Yes sir that was exactly what I was thinking of when I said he was sloppy.

But thinking about it really he was a physics grad then doing a masters in a physics subject. So no background knowledge at all of cyber security etc I assume... just taught himself programming and went to work.

 

[Nelly]

The UK’s NHS to upgrade to Windows 10 in the wake of WannaCry attack

Last year, the WannaCry ransomware outbreak devastated many systems across the world, with the UK’s National Health Service (NHS) being caught among them. Since then, the NHS has been under fire for its lack of cybersecurity, prompting the decision to upgrade all systems to Windows 10.

Due to the expense of upgrading OS en masse, it’s common for institutions to remain on older, outdated operating systems. It was exactly this choice that put the NHS at risk of the WannaCry attack, seeing over 6,900 appointments cancelled in the process.

In the wake of this, the NHS has announced that it will adopt the more secure Windows 10 platform, with officials stating SmartScreen and the latest version of Windows Defender as the main reasons for the move. The move is just one part of the larger effort for NHS Digital to respond to online attacks.

“The new Windows Operating System has a range of advancements in security and identity protection that will help us to support Trusts to keep their data safe from attacks and which will cover both desktop and mobile devices,” explains NHS Digital’s Deputy Chief Executive, Rob Shaw.

“The additional funding will mean we can add an extra layer of protection, whilst boosting our existing services, with real-time monitoring of NHS networks and the ability to see potential threats right down to individual NHS organisations.”

This plan is backed by the UK government, which has already been said to have spent £60 million on institutions affected by the WannaCry attack. Over the next three years, the UK gov will be spending a further £150m on its cybersecurity efforts, as fears of attacks from other countries mounts up.

“The importance of helping to protect the NHS from the growing threat of cyber-attacks cannot be overstated,” describes chief executive of Microsoft UK, Cindy Rose. “The introduction of a centralised Windows 10 agreement will ensure a consistent approach to security that also enables the NHS to rapidly modernise its IT infrastructure.”

It hasn’t been revealed just how much the overhaul will cost to put Windows 10 on all NHS systems across the UK, which is a part of the “multi-million-pound” deal.

Source

 

[Rroff]

I'm not sure that inspires me :S