Liliputing

  • Reviews
  • Deals
  • How To…
  • Mini PCs
  • Shop
  • About
    • About Liliputing
    • Contact us
    • Advertise on Liliputing
    • Support Liliputing
    • Privacy Policy

Wannacrypt ransomware halted (for now), Microsoft patches Windows XP and up

05/13/2017 at 9:03 AM by Brad Linder 9 Comments

On Friday a ransomware attack hit tens of thousands of computers around the world before it was (at least temporarily) stopped by a security researcher who found and activated a killswitch. But it’s possible the developer of the malware could tweak the code and try again, so the best protection is to make sure your computer’s software is up to date.

The good news is that Microsoft already released an update that patches this vulnerability in March. The bad news is, as we learned this week, many computers haven’t had that update installed yet… and some weren’t even eligible.

Although anywhere from 5 percent to 7 percent of the world’s computers run Windows XP, official support for the operating system ended years ago… which means Microsoft typically doesn’t release any bug fixes, security updates, or any other new code for Windows XP. But the company is making an exception to patch this particular security issue.

Microsoft is making an update available for  all users running Windows XP, Windows 8, and Windows Server 2003. Since those operating systems only get automatic updates if you’re paying for “custom support” you won’t get the patch via Windows Update. But you can download and install the update directly from Microsoft.

If you’re running a version of Windows that is actively supported, odds are that you already have the patch, but you should probably check to make sure that your system is up to date (if you haven’t “installed updates and shut down” or rebooted in a while, now’s a good time to try that).

Microsoft has also added WannaCrypt detection to Windows Defender. And the company notes that Windows 10 was not targeted by the attack.

And generally speaking, one of the best ways to protect yourself against ransomware is to regularly back up the data on your computer to a system that uses versioning, whether that means copying everything to an external hard drive or a cloud-based backup service like Carbonite or Crashplan.

That way if a ransomware attack encrypts all the data on your computer and demands payment before it can be unlocked, you can wipe your system, reinstall your operating system, and restore data from a backup. But the reason you want versioning is so that you can restore versions of your files from before they were encrypted by the ransomware. If your backup only includes the latest version of each file on your computer, once they’re encrypted on your main drive they’ll also be encrypted and password-protected in your backup.

By the way, the story of how @MalwareTechBlog temporarily halted the WannaCrypt attack is kind of interesting. In a nutshell, the malware included code that allowed its developer to shut it off at any time (possibly not because a killswitch was needed, but in order to help the virus avoid detection in some circumstances). But that technique provided a way to render the malware relatively harmless… for now: the software checks a specific URL to see if that website is active. If it is, the virus does not infect a computer.

The developer never actually registered that domain name though. So a third-party was able to do so and then make the website active, thus causing the ransomware to go dormant… although it’s possible the person or persons responsible for unleashing it could remove that killswitch and re-release it. So make sure your computer is up to date.

Share this:

  • Facebook
  • Twitter
  • Reddit
  • Pocket
  • Tumblr
  • Pinterest
  • LinkedIn
  • Email

Daily Deals (12-13-2019)

Every week this year, the Epic Games Store has offered up at least one game for free, and sometimes two. This week is one of the twofer weeks -- you … [Read More...]



Support Liliputing

Liliputing’s primary sources of revenue are advertising and affiliate links (if you click the “Shop” button at the top of the page and buy something on Amazon, for example, we’ll get a small commission).

But there are several ways you can support the site directly even if you’re using an ad blocker and hate online shopping.

Contribute to our Patreon campaign

or…

Contribute via PayPal

  • donate monthly
  • donate once only
Select a Donation Option (USD)

Enter Donation Amount (USD)

9
Leave a Reply

Login with
Facebook Google Twitter WordPress Yahoo! Disqus Reddit Stackoverflow GitHub
avatar
This comment form collects your name, email address, and content to allow us to keep track of comments placed on this website. Please read our privacy policy for more details.
Save my name, email, and website in this browser cookies for the next time I comment.
4 Comment threads
5 Thread replies
2 Followers
 
Most reacted comment
Hottest comment thread
8 Comment authors
YCAUSnazzyAdophe Drumpfeldmarkhenry Recent comment authors
avatar
This comment form collects your name, email address, and content to allow us to keep track of comments placed on this website. Please read our privacy policy for more details.
Save my name, email, and website in this browser cookies for the next time I comment.

This site uses Akismet to reduce spam. Learn how your comment data is processed.

  Subscribe  
newest oldest most voted
Notify of
ldrn
Member
ldrn

Wow! What an amazing read that story was, thank you. 🙂

You Must Be Logged In To Vote1You Must Be Logged In To Vote  Reply
2 years ago
Logik
Member
Logik

It is clear what the illicit uses of Bitcoin are. What are the legitimate uses of Bitcoin?

You Must Be Logged In To Vote-1You Must Be Logged In To Vote  Reply
2 years ago
json
Guest
json

i think dell still accepts it as a form of payment. doesn that count?

You Must Be Logged In To Vote1You Must Be Logged In To Vote  Reply
2 years ago
mark
Guest
mark

Transferring money anywhere in the world without needing specific third parties, and very low fees. Supporting legal sites that credit companies don’t want to support. Transferring money between individuals that down have good bank systems like the UK. In some countries there are specific uses in response to economic situations or political controls, to get money out of the country (China, Greece).

I remember when Silk Road was taken down, people said it’d be the end of Bitcoin because it only had illegitimate uses – in fact the price rocketed up.

You Must Be Logged In To Vote2You Must Be Logged In To Vote  Reply
2 years ago
YCAU
Member
YCAU

That’s like asking what the legitimate uses of large USD bills are. They’re still the top choice for criminals, but obviously they’re not only used in crime (as my math textbook years ago put it, “all deer like lettuce, but not everyone who likes lettuce is a deer). I don’t mean to be rude, but this is an easily Googleable question.

You Must Be Logged In To Vote1You Must Be Logged In To Vote  Reply
2 years ago
henry
Guest
henry

When you segued into online storage, I didn’t expect to see the two services you mentioned.

Just finished looking them both over and Crashplan (with it’s Linux support) looks especially appealing. Unlimited backup, encryption, backup from external drives. If keeping my data online didn’t scare me so much (prefer local backups, online=honeypot), Crashplan looks like a great, plug-n-play, option.

You Must Be Logged In To Vote0You Must Be Logged In To Vote  Reply
2 years ago
Adophe Drumpfeld
Guest
Adophe Drumpfeld

“so the best protection is to make sure your computer’s software is up to date.”

And even better use an operating system designed with security eg BSD or GNU/Linux rather than one prioritized on user convenience viz Microsoft Windoze to run unauthorized programs without even a mouse-click.

But we all know that the insecuries of Windoze make millions for anti-malware companies, so just keep on paying out for the latest commercial software because it is the patriotic thing to do!

You Must Be Logged In To Vote1You Must Be Logged In To Vote  Reply
2 years ago
Snazzy
Guest
Snazzy

Just because it’s BSD or Linux doesn’t magicly make it more secure. DirtyCow and several other Linux only ‘hacks’ have shown us this.

You Must Be Logged In To Vote0You Must Be Logged In To Vote  Reply
2 years ago
YCAU
Member
YCAU

To a fair extent, actually, yes, it does. The open source nature of these OSs make it so problems can be spotted and fixed more easily. No one will claim *nix to be perfect, but the data support it being much more secure than Windows.

You Must Be Logged In To Vote1You Must Be Logged In To Vote  Reply
2 years ago

Follow Liliputing:

Facebook Twitter YouTube tumblr RSS Patreon
Disclosure: Some links on this page are monetized by Skimlinks and Amazon's and eBay's affiliate programs.

Latest News

Apple and Spotify bring podcasts to Amazon Echo devices (and other Alexa-enabled gadgets)

Amazon's Echo line of products may have introduced the world to the idea of … [Read More...]

Lenovo Tab M8 HD

Lenovo may have a Chrome OS tablet on the way

Chrome OS tablets have been a thing for the past year and a half or so, but … [Read More...]

Xbox Series X coming in late 2020 (It’s pretty much a gaming PC in console form)

Microsoft has taken the wraps off its next-gen Xbox game console and the Xbox … [Read More...]

Featured articles

Magic Ben MAG1 8.9 inch mini laptop review

It's tricky to make a great mini-laptop. Want a super-small screen and a device … [Read More...]

Amazon Fire tablet hacking resources (Fall 2019 edition)

As usual, Amazon is offering deep discounts on Fire tablets for the holiday … [Read More...]

Dell XPS 13 2-in-1 review (Ice Lake convertible laptop)

Dell's XPS 13 line of laptops have set the standard in recent years for just how … [Read More...]

Login

  • Register
  • Log in
  • Entries feed
  • Comments feed
  • WordPress.org

Copyright © 2019 Liliputing · About Liliputing · Contact Us · Privacy Policy · Go to top of page

wpDiscuz
loading Cancel
Post was not sent - check your email addresses!
Email check failed, please try again
Sorry, your blog cannot share posts by email.