Mark Minasi's Tech Forum
Register Calendar Latest Topics Chat
 
 
 


Reply
  Author   Comment  
DennisMCSE

Senior Member
Registered:
Posts: 134
Reply with quote  #1 
Microsoft is even supplying patches for Windows XP and Windows Server 2003:

https://blogs.technet.microsoft.com/msrc/2017/05/12/customer-guidance-for-WannaCrypt-attacks/


0
jsclmedave

Administrator
Registered:
Posts: 414
Reply with quote  #2 
There is this as well which may help in a pinch.

How to check for ransom ware patches  -  https://github.com/kieranwalsh/PowerShell/blob/master/Get-WannaCryPatchState/Get-WannaCryPatchState.ps1

__________________
Tim Bolton @jsclmedave
Email: [string](0..20|%{[char][int](32+('527377347976847978324785847679797514357977').substring(($_*2),2))}) -replace ' '  

New to the forum? Please Read this
0
donoli

Senior Member
Registered:
Posts: 459
Reply with quote  #3 
Certainly use the MS patches but be aware that other strains of the worm have already been released.
0
cspanburgh

Avatar / Picture

Senior Member
Registered:
Posts: 188
Reply with quote  #4 
Impressive.  I wonder if MSFT was forced to show the "Holes" that would allow Devs to create the tool.


__________________
Curt Spanburgh
0
donoli

Senior Member
Registered:
Posts: 459
Reply with quote  #5 
Someone in another forum posted part of the code taken from blog.malwarebytes.com.  The point was that the worm wouldn't work if the company or user used a proxy server. 
0
jsclmedave

Administrator
Registered:
Posts: 414
Reply with quote  #6 

YOUR “WANNACRY” TAKEAWAY

 DON JONES

https://donjones.com/2017/05/15/your-wannacry-takeaway/


Everything you need to know about the WannaCry / Wcry / WannaCrypt ransomware

Troy hunt 13 MAY 2017

 https://www.troyhunt.com/everything-you-need-to-know-about-the-wannacrypt-ransomware/


Don't tell people to turn off Windows Update, just don't

 

https://www.troyhunt.com/dont-tell-people-to-turn-off-windows-update-just-dont/

"You know what really surprised me about this whole WannaCry ransomware problem? No, not how quickly it spread. Not the breadth of organizations it took offline either and no, not even that so many of them hadn't applied a critical patch that landed a couple of months earlier. It was the reactions to this tweet that really surprised me:"


__________________
Tim Bolton @jsclmedave
Email: [string](0..20|%{[char][int](32+('527377347976847978324785847679797514357977').substring(($_*2),2))}) -replace ' '  

New to the forum? Please Read this
0
Previous Topic | Next Topic
Print
Reply

Quick Navigation: