Omega Owners Forum

Please login or register.

Login with username, password and session length
Advanced search  

News:

Please play nicely.  No one wants to listen/read a keyboard warriors rants....

Pages: 1 2 [3] 4 5  All   Go Down

Author Topic: Massive ransomware attack on NHS  (Read 13315 times)

0 Members and 1 Guest are viewing this topic.

Entwood

  • Omega Queen
  • *****
  • Offline Offline
  • Gender: Male
  • North Wiltshire
  • Posts: 19566
  • My Old 3.2 V6 Elite (LPG)
    • Audi A6 Allroad 3.0 DTI
    • View Profile
Re: Massive ransomware attack on NHS
« Reply #30 on: 15 May 2017, 11:33:22 »

I develop software for some kit that still runs Windows 2000.  :o

The fact is that some things (normally very expensive things) have a longer life cycle than the operating system they use to interact with the user. Successive Windows versions seem designed to deliberately break things that worked in previous versions, so upgrading is not usually an option.

None of this is a problem, except that there is a fascination with connecting everything to the internet these days.

If you have something that needs to run an unsupported cheap, nasty consumer OS, for god's sake, take a tube of epoxy to the ethernet and USB ports. ::)

The problem is that much of the medical equipment needs to be connected to a network to be of any practical use as the data it is collecting needs to be shared, saved in patients notes etc.

But that network does NOT need internet access, it just needs access to its own network ... do the employees REALLY need to use google, BBC, personal email servers etc etc etc whilst "supposed" to be working ??

Yes, as information needs to be shared over multiple networks. During treatments where I have a rare eye condition the doctors have resorted, twice in my presence to an Internet expert database to find out more and also for emailing a London hospital for a second opinion. Where I had some US research papers on the condition the neurologist I was seeing over an MRI scan, the detailed images which were online, looked up the papers I had found and bookmarked them for his own background reading. This is the real world where the Internet is a vast database of expert knowledge (as well as much populist trash) and a wide area communication system.

Not disputing any of that .. but the MRI scanner does NOT need to be linked to the internet, so can run win XP quite safely in a secure environment. The consultant who DOES need access to the internet uses a separate system with win 10 updated as he is NOT using any specialist software, just a browser and email. All to do with access control, risk management and attention to detail .. just what an IT manager is actually paid to do ???
Logged

Migv6 le Frog Fan

  • Omega Queen
  • *****
  • Online Online
  • Gender: Male
  • Webs End.
  • Posts: 12613
  • Nicole's Papa
    • 3.2 Elite. Boxster. C1.
    • View Profile
Re: Massive ransomware attack on NHS
« Reply #31 on: 15 May 2017, 11:44:53 »

Just heard a report  on LBC which said this was supposed to be prevented by an expensive upgrade in 2009, but Gormless refused to spens the money, so it was cancelled. Sounds about right.  ::)
Logged
Women are like an AR35. lovely things, but nobody really understands how they work.

Rods2

  • Omega Lord
  • *****
  • Offline Offline
  • Gender: Male
  • Sandhurst Berkshire
  • Posts: 7604
    • 1999 3.0 Elite Estate
    • View Profile
Re: Massive ransomware attack on NHS
« Reply #32 on: 15 May 2017, 11:50:19 »

So it seems this is yet another example of the USA security services trying to take advantage of a "weapon" that they can use but ends up being turned against us all.  If the NSA had not intervened then Microsoft would have been able to take far more effective action to stop this attack, and probably those to come:

http://www.bbc.co.uk/news/technology-39905509

 ::) ::) ::)

I say bring in the young army of IT experts; those aged between 5 and 25, who will fight these attacks very quickly! :D :D ;)

So NSA / GCHQ should as these sort of exploits are what keep us safe, where since traitor Snowden terrorists extensively use encryption. The use of such vulnerabilities allows them access, with court orders, to their IT systems to subvert their activities. Perfect systems + encryptions means they can plan and execute their evil deeds with our intelligence and security services blinded. :(
Logged
US Fracking and Saudi Arabia defending its market share = The good news of an oil glut, lower and lower prices for us and squeaky bum time for Putin!

Rods2

  • Omega Lord
  • *****
  • Offline Offline
  • Gender: Male
  • Sandhurst Berkshire
  • Posts: 7604
    • 1999 3.0 Elite Estate
    • View Profile
Re: Massive ransomware attack on NHS
« Reply #33 on: 15 May 2017, 11:52:31 »

I develop software for some kit that still runs Windows 2000.  :o

The fact is that some things (normally very expensive things) have a longer life cycle than the operating system they use to interact with the user. Successive Windows versions seem designed to deliberately break things that worked in previous versions, so upgrading is not usually an option.

None of this is a problem, except that there is a fascination with connecting everything to the internet these days.

If you have something that needs to run an unsupported cheap, nasty consumer OS, for god's sake, take a tube of epoxy to the ethernet and USB ports. ::)

The problem is that much of the medical equipment needs to be connected to a network to be of any practical use as the data it is collecting needs to be shared, saved in patients notes etc.

But that network does NOT need internet access, it just needs access to its own network ... do the employees REALLY need to use google, BBC, personal email servers etc etc etc whilst "supposed" to be working ??

Yes, as information needs to be shared over multiple networks. During treatments where I have a rare eye condition the doctors have resorted, twice in my presence to an Internet expert database to find out more and also for emailing a London hospital for a second opinion. Where I had some US research papers on the condition the neurologist I was seeing over an MRI scan, the detailed images which were online, looked up the papers I had found and bookmarked them for his own background reading. This is the real world where the Internet is a vast database of expert knowledge (as well as much populist trash) and a wide area communication system.

Not disputing any of that .. but the MRI scanner does NOT need to be linked to the internet, so can run win XP quite safely in a secure environment. The consultant who DOES need access to the internet uses a separate system with win 10 updated as he is NOT using any specialist software, just a browser and email. All to do with access control, risk management and attention to detail .. just what an IT manager is actually paid to do ???

Like everything else in the real world, where does the cost-benefit analysis draw the line?
Logged
US Fracking and Saudi Arabia defending its market share = The good news of an oil glut, lower and lower prices for us and squeaky bum time for Putin!

Lizzie Zoom

  • Omega Lord
  • *****
  • Offline Offline
  • Gender: Female
  • South
  • Posts: 7560
    • Omega 3.2 V6 ELITE 2003
    • View Profile
Re: Massive ransomware attack on NHS
« Reply #34 on: 15 May 2017, 12:02:08 »

So it seems this is yet another example of the USA security services trying to take advantage of a "weapon" that they can use but ends up being turned against us all.  If the NSA had not intervened then Microsoft would have been able to take far more effective action to stop this attack, and probably those to come:

http://www.bbc.co.uk/news/technology-39905509

 ::) ::) ::)

I say bring in the young army of IT experts; those aged between 5 and 25, who will fight these attacks very quickly! :D :D ;)

Microsoft issued a patch that prevented this attack working over 2 months ago. All the machines affected have simply not been updated regularly. Microsoft told the world years back they were no longer supporting Win XP .. yet numerous, nay, thousands, of computers still run it ... so whose fault is it really ?? 

If you don't update it is your fault, not the company providing the updates. Anyone with half an interest in IT will tell you that the hackers are one step ahead of the latest systems ... and about 200 miles ahead of outdated software like XP .....

So, if the NHS network managers had done their job PROPERLY .......   :)

EDIT ...  Interesting reading .  :)

https://blogs.technet.microsoft.com/msrc/2017/05/12/customer-guidance-for-wannacrypt-attacks/?utm_source=t.co&utm_medium=referral

As one of the globe's richest companies with over $100bn in the bank, they could afford to maintain these older embedded systems but to keep the money profit-making engine turned up to 11 and shareholders happy, they must continue to create new income streams by making new incompatible systems and make old systems obsolete to force you to update, so the cash keeps rolling in.

The good news is that Microsoft is steadily losing ground to Linux with the smartphone/tablet market already lost and the majority of web servers using Linux. The desktop/laptop market is shrinking and I suspect that this trend will continue.

I found this out just last week when I went to Vodafone to renew my contract. No Nokia/Window phones are now offered by Vodafone. I have had Nokia, then Windows for ever, but the manager explained Windows and Apple are in decline and it is all down to the other main players like Samsung. Since Gates and Job left the scene those companies have lost their direction.

How things in IT change so quickly! ::) ::) :o
Logged

Migv6 le Frog Fan

  • Omega Queen
  • *****
  • Online Online
  • Gender: Male
  • Webs End.
  • Posts: 12613
  • Nicole's Papa
    • 3.2 Elite. Boxster. C1.
    • View Profile
Re: Massive ransomware attack on NHS
« Reply #35 on: 15 May 2017, 12:27:26 »

NHS has confirmed it was offered details of a patch last month which could have prevented the attack, but they failed to act on it.
Will heads roll ? Will they f....
Logged
Women are like an AR35. lovely things, but nobody really understands how they work.

TD

  • Omega Knight
  • *****
  • Offline Offline
  • Gender: Male
  • Swindon
  • Posts: 1235
    • Nowt!
    • View Profile
Re: Massive ransomware attack on NHS
« Reply #36 on: 15 May 2017, 13:59:51 »

But that network does NOT need internet access, it just needs access to its own network ... do the employees REALLY need to use google, BBC, personal email servers etc etc etc whilst "supposed" to be working ??

Exactly.  :y

As soon as you put Windows on something, users will assume it's for social networking, watching YouTube videos, etc. not, in this case, making ill people better. The answer is that windows was not an appropriate choice for a device with a long life cycle, but it was the cheap one at the time and plenty fell into that hole.

The choices are there, really. Use something with a smaller attack surface than windows, lock down what users can do to the bare minimum needed to get their jobs done and ignore their moaning, or invest in porting everything to the latest, fully supported Windows. Even then, though you're in trouble if your users are stupid.

When I goto my surgery for a check up with the diabetic nurse, Ive seen her google certain tablets to find out side effects/if they can be prescribed with other tablets/etc....and this is on the same pc that's running the surgery software.....not sure of the OS tho....but I bet it isn't the latest with the latest patches installed . I guess this is what happens when you have nurses qualified to write prescriptions but
not the experience of a doctor and a doctors surgery that has a couple of doctors and about 8 nurses....everything where possible gets
left to the nurses.
Logged

Kevin Wood

  • Global Moderator
  • *****
  • Offline Offline
  • Gender: Male
  • Alton, Hampshire
  • Posts: 36417
    • Jaguar XE 25t, Westfield
    • View Profile
Re: Massive ransomware attack on NHS
« Reply #37 on: 15 May 2017, 14:23:53 »

When I goto my surgery for a check up with the diabetic nurse, Ive seen her google certain tablets to find out side effects/if they can be prescribed with other tablets/etc....and this is on the same pc that's running the surgery software.....not sure of the OS tho....but I bet it isn't the latest with the latest patches installed . I guess this is what happens when you have nurses qualified to write prescriptions but
not the experience of a doctor and a doctors surgery that has a couple of doctors and about 8 nurses....everything where possible gets
left to the nurses.

Yes, and it's not an unreasonable thing for them to do, so, if any software they are using is holding the system back from being updated then the whole system is unfit for purpose. It's no use waving hands in the air and blaming hackers. Unpatched systems with internet access get hacked, just as unlocked bikes parked at the station get nicked. That's the way the world works, except that, outside IT, we seem to be able to adapt to how the world works. ;)
Logged
Tech2 services currently available. See TheBoy's price list: http://theboy.omegaowners.com/

zirk

  • Omega Queen
  • *****
  • Offline Offline
  • Gender: Male
  • Epping Forest
  • Posts: 11443
  • 3.2 Manual Special Saloon ReMapped and LPG'd and
    • 3.2 Manual Special Estate
    • View Profile
Re: Massive ransomware attack on NHS
« Reply #38 on: 15 May 2017, 14:52:08 »

I found this out just last week when I went to Vodafone to renew my contract. No Nokia/Window phones are now offered by Vodafone. I have had Nokia, then Windows for ever, but the manager explained Windows and Apple are in decline and it is all down to the other main players like Samsung. Since Gates and Job left the scene those companies have lost their direction.

How things in IT change so quickly! ::) ::) :o
Windows phones are a dead duck now Lizzie, Microsoft kept threating about a possible new Surface Phone, but it probably wont happen or be any good for non Business use.

In a nut shell, Nokia are now free from MS, so all there new phones will be Android based, there current Nokia 6 in 64gb form is actually a nice spec'ed phone for the price, just under 250 quid with the Nokia 3 and 5 being budget versions. Any time now Nokia are launching the Nokia 8/9 which will be there revival Flagship models to compete with the likes of iPhone and Samsung models, surprised, or maybe not, that Vodafone never told you this.

« Last Edit: 15 May 2017, 15:04:35 by zirk »
Logged

Auto Addict

  • Administrator
  • *****
  • Offline Offline
  • Gender: Male
  • North Birmingham
  • Posts: 13554
  • Back to Vx to keep TB happy
    • Astra K Elite ST
    • View Profile
Re: Massive ransomware attack on NHS
« Reply #39 on: 15 May 2017, 17:04:27 »

I've just upgraded to DOS 6.1 ;)
Logged
I like red cars

Rods2

  • Omega Lord
  • *****
  • Offline Offline
  • Gender: Male
  • Sandhurst Berkshire
  • Posts: 7604
    • 1999 3.0 Elite Estate
    • View Profile
Re: Massive ransomware attack on NHS
« Reply #40 on: 15 May 2017, 19:59:14 »

I've just upgraded to DOS 6.1 ;)

You won't get me moving to such new-fangled Operating Systems, I will stick with CP/M. :P :P :P
Logged
US Fracking and Saudi Arabia defending its market share = The good news of an oil glut, lower and lower prices for us and squeaky bum time for Putin!

Lizzie Zoom

  • Omega Lord
  • *****
  • Offline Offline
  • Gender: Female
  • South
  • Posts: 7560
    • Omega 3.2 V6 ELITE 2003
    • View Profile
Re: Massive ransomware attack on NHS
« Reply #41 on: 15 May 2017, 20:23:16 »

I found this out just last week when I went to Vodafone to renew my contract. No Nokia/Window phones are now offered by Vodafone. I have had Nokia, then Windows for ever, but the manager explained Windows and Apple are in decline and it is all down to the other main players like Samsung. Since Gates and Job left the scene those companies have lost their direction.

How things in IT change so quickly! ::) ::) :o
Windows phones are a dead duck now Lizzie, Microsoft kept threating about a possible new Surface Phone, but it probably wont happen or be any good for non Business use.

In a nut shell, Nokia are now free from MS, so all there new phones will be Android based, there current Nokia 6 in 64gb form is actually a nice spec'ed phone for the price, just under 250 quid with the Nokia 3 and 5 being budget versions. Any time now Nokia are launching the Nokia 8/9 which will be there revival Flagship models to compete with the likes of iPhone and Samsung models, surprised, or maybe not, that Vodafone never told you this.

Thanks zirk :y

No, all Vodafone said was something about an old phone of theirs being relaunched, but with a new operating system; the number, 6310 or was it 3110 (??) seemed very familiar, as a phone I once had years back. I love Nokia, and currently have a Nokia (Windows) Lumia 930, which is almost brand new after I made a warranty claim for the same phone. I will be hoping the new ones are available when I need it ;)
Logged

zirk

  • Omega Queen
  • *****
  • Offline Offline
  • Gender: Male
  • Epping Forest
  • Posts: 11443
  • 3.2 Manual Special Saloon ReMapped and LPG'd and
    • 3.2 Manual Special Estate
    • View Profile
Re: Massive ransomware attack on NHS
« Reply #42 on: 15 May 2017, 22:46:11 »

I found this out just last week when I went to Vodafone to renew my contract. No Nokia/Window phones are now offered by Vodafone. I have had Nokia, then Windows for ever, but the manager explained Windows and Apple are in decline and it is all down to the other main players like Samsung. Since Gates and Job left the scene those companies have lost their direction.

How things in IT change so quickly! ::) ::) :o
Windows phones are a dead duck now Lizzie, Microsoft kept threating about a possible new Surface Phone, but it probably wont happen or be any good for non Business use.

In a nut shell, Nokia are now free from MS, so all there new phones will be Android based, there current Nokia 6 in 64gb form is actually a nice spec'ed phone for the price, just under 250 quid with the Nokia 3 and 5 being budget versions. Any time now Nokia are launching the Nokia 8/9 which will be there revival Flagship models to compete with the likes of iPhone and Samsung models, surprised, or maybe not, that Vodafone never told you this.

Thanks zirk :y

No, all Vodafone said was something about an old phone of theirs being relaunched, but with a new operating system; the number, 6310 or was it 3110 (??) seemed very familiar, as a phone I once had years back. I love Nokia, and currently have a Nokia (Windows) Lumia 930, which is almost brand new after I made a warranty claim for the same phone. I will be hoping the new ones are available when I need it ;)

Yes they're also re launching the 3310, but this time with a Colour Screen, about 50 quid Sim Free. No 3 or 4G Connectivity, but it doses make phone calls. Also has a low res 2mp Camera for taking those early 2001 style pictures, and if your Music or Film lover it has, wait for it, ......   a 16Mb internal memory, yes Mb.




Logged

TheBoy

  • Administrator
  • *****
  • Offline Offline
  • Gender: Male
  • Brackley, Northants
  • Posts: 107026
  • I Like Lockdown
    • Whatever Starts
    • View Profile
Re: Massive ransomware attack on NHS
« Reply #43 on: 16 May 2017, 09:32:49 »

I develop software for some kit that still runs Windows 2000.  :o

The fact is that some things (normally very expensive things) have a longer life cycle than the operating system they use to interact with the user. Successive Windows versions seem designed to deliberately break things that worked in previous versions, so upgrading is not usually an option.

None of this is a problem, except that there is a fascination with connecting everything to the internet these days.

If you have something that needs to run an unsupported cheap, nasty consumer OS, for god's sake, take a tube of epoxy to the ethernet and USB ports. ::)

The problem is that much of the medical equipment needs to be connected to a network to be of any practical use as the data it is collecting needs to be shared, saved in patients notes etc.

But that network does NOT need internet access, it just needs access to its own network ... do the employees REALLY need to use google, BBC, personal email servers etc etc etc whilst "supposed" to be working ??
The specialist stuff isn't internet accessible, but is networked for things like electronically storing X-rays etc.

GPs and general purpose PCs do need internet. However, despite media 'dangle berries', these "normal" machines are generally W7, thus supported.

This particular malware needed a human idiot to infect. And the NHS has no shortage. It wasn't the technology that was really the issue in this case.  But that doesn't make a good story.


This attack was actually aimed at telcos, with NHS being collateral damage. Telefonica and O2 took a bit of a hit, bit in an election build up, only NHS will get reported by U.K. Media
Logged
Grumpy old man

aaronjb

  • Guest
Re: Massive ransomware attack on NHS
« Reply #44 on: 16 May 2017, 09:43:23 »

This particular malware needed a human idiot to infect.

Only for the first infection within a properly firewalled enterprise, though.. after that, if unpatched, it could spread all by itself via the hole described by MS017-010. And I am willing to bet the NHS has a lot of unpatched machines, even if their patch programme is up to date..

Heck, in a well controlled environment (ours) a survey of 4000 "machines" (includes VMs) found ~600 unpatched; my own VM was one of them, because it gets fired up so rarely..

And a quick look on something like shodan.io will find 1.5 million servers with port 445 exposed to the internet (for the uninitiated, that's the port required for infection if you are unpatched). A port that, as you know, has precisely no purpose being exposed to the internet.

.. tl;dr: It's not just the users that are idiots ;D
Logged
Pages: 1 2 [3] 4 5  All   Go Up
 

Page created in 0.013 seconds with 17 queries.