|
Thanks Ants posted:What an unfortunate URL lol
|
# ? Nov 18, 2014 04:50 |
|
|
# ? Apr 25, 2024 23:12 |
|
Thanks Ants posted:What an unfortunate URL It is kind of accurate about IT, either way you read it.
|
# ? Nov 18, 2014 05:54 |
|
After a few weeks id say this new set of variants is about an infinite times more common now than cryptolocker was in 2013. Everyone is loving getting it.
|
# ? Nov 20, 2014 16:28 |
|
Any idea what the most common attack vectors are? Sketchy porn and torrent sites?
|
# ? Nov 20, 2014 16:43 |
|
If this is where its coming from i dont know, but the most common malware vector ive seen lately is the "lets search google for itunes, clicks first adwords link for itunes and installs whatever the gently caress is linked"
|
# ? Nov 20, 2014 17:03 |
|
That but also with Adobe Reader, Chrome etc.
|
# ? Nov 20, 2014 17:26 |
|
Thanks Ants posted:That but also with Adobe Reader, Chrome etc. Given the way things are going I am sure it is only a matter of time before it gets bundled with a Java or Flash update from an official channel.
|
# ? Nov 20, 2014 22:36 |
|
Varkk posted:Given the way things are going I am sure it is only a matter of time before it gets bundled with a Java or Flash update from an official channel. It's okay, Chrome won't be supporting Java (or any other NPAPI plugins) anymore soon, and in fact has dropped support on Linux already, and who the gently caress uses Flash anymore for anything other than ads?
|
# ? Nov 20, 2014 23:17 |
|
Face-loving-book games. poo poo loads of (lovely) video content.
|
# ? Nov 20, 2014 23:33 |
|
For all four people who haven't updated to something that can do HTML5, sure.
|
# ? Nov 21, 2014 00:29 |
|
A client of ours got hit by Cryptowall the other day. Good thing they had Shadowprotect! Oh...hey...why does it say the last successful backup was August 2013? That wasn't a fun conversation but they took it a lot better than I expected. We use ShadowProtect as our main backup solution, by the way. It works pretty well. In the above case the client chose to ignore the e-mail alerts which warned them of failed backups. We weren't paid to manage them.
|
# ? Nov 21, 2014 00:33 |
|
snackcakes posted:A client of ours got hit by Cryptowall the other day. Good thing they had Shadowprotect! Oh...hey...why does it say the last successful backup was August 2013? That wasn't a fun conversation but they took it a lot better than I expected. Yea, our mirrored array says degraded or something every time we restart but i press f1 and it works fine.
|
# ? Nov 21, 2014 02:12 |
|
Kazinsal posted:For all four people who haven't updated to something that can do HTML5, sure. And that's the answer to your question, "Who the gently caress still uses Flash ... ?" Millions upon millions of people.
|
# ? Nov 21, 2014 02:46 |
|
Tapedump posted:Okay, but did you mean to dismiss my first statement? Cause HTML5 don't cover a large, if not vast, majority of Facebook games. Facebook is recommending Flash to not be used for game development anymore in favour of HTML5. Flash isn't going anywhere yet, because Chrome for example has PepperFlash (using PPAPI, which is much more secure than NPAPI) and I think Firefox still uses Adobe's Flash Player. But I wouldn't mind seeing it go entirely.
|
# ? Nov 21, 2014 04:03 |
|
Kazinsal posted:Facebook is recommending Flash to not be used for game development anymore in favour of HTML5. That's effectively meaningless.
|
# ? Nov 21, 2014 04:22 |
|
Flash has been "dead" for going on 5+ years now.
|
# ? Nov 21, 2014 23:13 |
|
Yip Yips posted:Flash has been "dead" for going on 5+ years now.
|
# ? Nov 22, 2014 04:22 |
|
Thanks Ants posted:Not running as local admin, and not allowing applications to execute from inside the user profile I thought covered most bases? If you're supporting customers who want local admin for everyone and no restrictions then I guess you're hosed. Just to chip in again, our users are no admins and cant even cha<nge their desktop background color, but this thing manages to gently caress up their harddisks. Just got another notebook with another variant, this time 2048bit encryption. Lol.
|
# ? Dec 3, 2014 14:38 |
Yolomon Wayne posted:Just to chip in again, our users are no admins and cant even cha<nge their desktop background color, but this thing manages to gently caress up their harddisks. This is why Linux guys love to talk mad poo poo about Windows. I love what it lets me do, I don't have anything else, but it's so trusting and you can hosed up so bad even without admin rights. It's too late to redo it because of all the legacy stuff. Cryptowall doesn't seem to be on Mac, and it's likely not as easy to get even if it was.
|
|
# ? Dec 4, 2014 07:47 |
|
skooma512 posted:This is why Linux guys love to talk mad poo poo about Windows. I love what it lets me do, I don't have anything else, but it's so trusting and you can hosed up so bad even without admin rights. It's too late to redo it because of all the legacy stuff. I hear this a lot, and my usual reply is that if i had to chose wchich platform to design a virus for, id naturally chose the one with the most potential victims. Im sure you could get some poo poo like this going on macs or even linux, but why bother with the handful of those if theres billions of windows out there to target?
|
# ? Dec 4, 2014 13:54 |
|
Weren't there several versions of cryptolocker that targeted Macs, as well?
|
# ? Dec 4, 2014 14:00 |
|
psydude posted:Weren't there several versions of cryptolocker that targeted Macs, as well? Yes, one came into my job a few weeks ago.
|
# ? Dec 4, 2014 16:23 |
|
skooma512 posted:This is why Linux guys love to talk mad poo poo about Windows. I love what it lets me do, I don't have anything else, but it's so trusting and you can hosed up so bad even without admin rights. It's too late to redo it because of all the legacy stuff. All the user's files are user-accessible in Linux too.
|
# ? Dec 4, 2014 16:29 |
|
Yeah, there's no reason crypto* would need or even want to gently caress up all of the c drive. How is it going to run and extort money if it fucks system files up? All they need are basic user rights to get at the files worth encrypting.
|
# ? Dec 4, 2014 17:14 |
|
skooma512 posted:This is why Linux guys love to talk mad poo poo about Windows. I love what it lets me do, I don't have anything else, but it's so trusting and you can hosed up so bad even without admin rights. It's too late to redo it because of all the legacy stuff. I know it's XKCD, but Don't really see how Linux changes anything in Cryptolocker's case. NT6 does have low privileges by default and raises them (almost always only) due to a user saying so, but even that annoys some. Maybe there's a better way, but it doesn't seem they're worlds apart. HalloKitty fucked around with this message at 12:02 on Dec 5, 2014 |
# ? Dec 5, 2014 11:59 |
|
OS X has the Applications directory and various other important directories made writable by all administrators by default, no confirmation dialog or sudo required.
|
# ? Dec 6, 2014 07:55 |
|
HalloKitty posted:Don't really see how Linux changes anything in Cryptolocker's case. Most Linux software I install comes from the package manager from a distro managed archive whereas most windows software comes from a website. But if was downloading a cryptolocker bin for linux from a sketchy website it would still fail to run due to dependency hell.
|
# ? Dec 6, 2014 11:22 |
|
|
# ? Apr 25, 2024 23:12 |
|
Yolomon Wayne posted:I hear this a lot, and my usual reply is that if i had to chose wchich platform to design a virus for, id naturally chose the one with the most potential victims. Have we forgotten shell shock already? Most viruses that horribly mess up the system use an exploit to get admin. They might hook into another program but if Linux was the main OS users would have unupdated versions of things running too. Its pretty hard to hit a server because you don't have flash or java usually without a drat good reason. Give someone enough motivation and they will crack anything. People crack videogame consoles cellphones and other odd operating systems all the time to run at higher user levels.
|
# ? Dec 6, 2014 14:35 |