Ransomware - Wannacry/wcry and everything else ...
Ransomware in general is something none of us wish to deal with. The latest Wannacry problem is worse. This is not because of what it is but rather of the extent to which it has affected our users. There have been a plethora of great suggestions all over this site. I would add to those with the following suggestions:
• Completely check your system for viruses with a reputable virus checker
• Check any suspected files and or links at virustotal.com
• Make sure you have a tested versioning backup system
• Do a complete scan of your system
o Make sure all your programs and your operating system is up to date (even old Windows OS’s now
have updates, like windows XP – check the Microsoft website and do a windows update)
o If you are unable to do updates on your own machine due to company policy, make sure that your IT
department is doing the updates.
• Do not, click on an attachment in your email, even if it is from someone you know – call them up and check
that they sent it – they’ll understand.
Whenever I touch a system I do a “ransomware check” which involves the following:
• Create a blank text file called myapp.txt in the root drive (c:\) and rename it to myapp.exe
• Run FoolishIT’s Cryptoprevent
• Install an anti-ransomware tool such as BD Antiransomware, MBAM Antiransomware, Kaspersky
Antiransomware for business, etc.
• Run SpyBHORemover and SpyDLLRemover from securityxploded.com
• Run a full scan
• Disable Autorun and Autoplay
The rest of what I do involves anti virus procedures. It is important to do all of this at the very least to protect your systems. I highly recommend using tools/software such as Cylance, SentinelOne, MBAM, Kaspersky, etc.
I changed my computer's to download Windows Updates Automatically a few months ago, but I've never really trusted it.
Today my mistrust in counting on things to happen automatically was vindicated when I manually opened Windows Update to check manually for updates and promptly got a Windows Update Error 0x80070003
Windows 7 Action Centre, set to warn me if there was a problem with Automatic Updates, reported no problems.
After fixing the problem and getting Windows Updates to work again, (the standard fixes didn't work - a hotfix needed to be installed) it's now installing about ~700MB of critical updates that it just downloaded as I type.
The moral of this post?
Don't trust automatic Windows updates! In fact, don't trust Automatic anything. Use automated updating by all means, I even encourage it to all my clients, but periodically check to ensure that whatever you've set to update automatically is in fact, updating.
According to a google search, the problem I just fixed on my Win 7 Pro 64bit system has been reported occurring on Windows 7, 8, 8.1 and Windows 10 systems during December of 2017 and January of this year. It seems to only happen on certain system configurations.
More key findings from the Spectre and Meltdown patches.
Microsoft found that users running Windows 10 on newer chips (2016-era PCs with Skylake, Kabylake or newer CPUs) should not notice any slowdowns. While there are some single-digit performance penalties, they are reflected in milliseconds.
On Windows 10, Windows 8 or Windows 7 on devices with older chips (2015-era PCs with Haswell or older CPUs), benchmark tests showed more significant penalties and users may actually notice a decrease in performance. On Windows 10, only some users should experience slowdowns, but on older versions of the operating system most users are expected to notice performance issues.
Azure cloud platform had not seen any noticeable performance impact. Some users may experience networking performance impact, but that can be addressed using the Azure Accelerated Networking feature.
Red Hat has also reported seeing measurable performance impact, ranging between 8 and 19 percent, for operations involving highly cached random memory.
Amazon said it had not observed any significant performance impact for the overwhelming majority of EC2 workloads, but some AWS customers have complained about degraded performance after the patches were applied starting with December.
Apple, which started performing tests after releasing updates in December, also said it had not seen any measurable reduction in the performance of macOS and iOS.
Google also claimed to have observed negligible impact…