NHS England hit by cyber attack, phone and IT systems down

Fed up talking videogames? Why?
User avatar
Karl
Consider The Following
Consider The Following
Joined in 2008
Contact:

PostRe: NHS England hit by cyber attack, phone and IT systems down
by Karl » Sun May 14, 2017 6:19 pm

Green Gecko wrote:Thanks. Would you recommend Linux?


I feel it's generally accepted that the open-source nature of Linux, the centralised software repositories common on most flavours, and its popularity for server applications - meaning a strong incentive to find and fix bugs - make it the most secure OS, even more so if you put a little effort into setting it up properly.
User avatar
Ironhide
Member
Joined in 2008
Location: Autobot City

PostRe: NHS England hit by cyber attack, phone and IT systems down
by Ironhide » Sun May 14, 2017 6:20 pm

Lagamorph wrote:
Return_of_the_STAR wrote:
Gently-Parted Ringpiece wrote:Win 10 isnt affected is it?


Ive only read about xp being affected. What slightly confuses me is I though Microsoft discontinued supporting xp a year or more ago but I've read articles that Microsoft released a fix for this vulnerability 3 months ago and those systems affected simply hadn't updated to the latest patches. Does anyone know if that's correct?

General support for Windows XP was discontinued but companies could purchase ongoing support if they wanted, though it was expensive to do so, so new patches are still being developed for it.

I think Microsoft have now released a patch for this specific exploit for Windows XP/Server 2003 for everyone though.


I've heard that it would have cost something like 5 million to purchase ongoing support for the entire NHS, which I consider relatively cheap considering how much the government wastes on other far less important things, but they didn't want to pay their much so didn't bother.
Image
User avatar
Lagamorph
Member ♥
Joined in 2010

PostRe: NHS England hit by cyber attack, phone and IT systems down
by Lagamorph » Sun May 14, 2017 6:35 pm

Ironhide wrote:
Lagamorph wrote:
Return_of_the_STAR wrote:
Gently-Parted Ringpiece wrote:Win 10 isnt affected is it?


Ive only read about xp being affected. What slightly confuses me is I though Microsoft discontinued supporting xp a year or more ago but I've read articles that Microsoft released a fix for this vulnerability 3 months ago and those systems affected simply hadn't updated to the latest patches. Does anyone know if that's correct?

General support for Windows XP was discontinued but companies could purchase ongoing support if they wanted, though it was expensive to do so, so new patches are still being developed for it.

I think Microsoft have now released a patch for this specific exploit for Windows XP/Server 2003 for everyone though.


I've heard that it would have cost something like 5 million to purchase ongoing support for the entire NHS, which I consider relatively cheap considering how much the government wastes on other far less important things, but they didn't want to pay their much so didn't bother.

I think they were told at the time it was for 1 year only though, so during that year they would have to upgrade. Looking at one article on the Guardian the migration of computers away from Windows XP was a condition of the deal.
Lagamorph's Underwater Photography Thread
Zellery wrote:Good post Lagamorph.
Turboman wrote:Lagomorph..... Is ..... Right
User avatar
lex-man
Member
Joined in 2008
Contact:

PostRe: NHS England hit by cyber attack, phone and IT systems down
by lex-man » Sun May 14, 2017 7:13 pm

Lagamorph wrote:
Ironhide wrote:
Lagamorph wrote:
Return_of_the_STAR wrote:
Gently-Parted Ringpiece wrote:Win 10 isnt affected is it?


Ive only read about xp being affected. What slightly confuses me is I though Microsoft discontinued supporting xp a year or more ago but I've read articles that Microsoft released a fix for this vulnerability 3 months ago and those systems affected simply hadn't updated to the latest patches. Does anyone know if that's correct?

General support for Windows XP was discontinued but companies could purchase ongoing support if they wanted, though it was expensive to do so, so new patches are still being developed for it.

I think Microsoft have now released a patch for this specific exploit for Windows XP/Server 2003 for everyone though.


I've heard that it would have cost something like 5 million to purchase ongoing support for the entire NHS, which I consider relatively cheap considering how much the government wastes on other far less important things, but they didn't want to pay their much so didn't bother.

I think they were told at the time it was for 1 year only though, so during that year they would have to upgrade. Looking at one article on the Guardian the migration of computers away from Windows XP was a condition of the deal.


There is a registry hack that you can use to extend the life of your XP by 5 years. It basically tells Microsoft Update that you're using the embedded version of XP.

https://www.forbes.com/sites/gordonkell ... 26961a70fc
User avatar
Gently-Parted Ringpiece
Member ♥
Joined in 2008

PostRe: NHS England hit by cyber attack, phone and IT systems down
by Gently-Parted Ringpiece » Sun May 14, 2017 8:58 pm

Doesnt really fly in an enterprise though, does it?
User avatar
Errkal
Social Sec.
Joined in 2011
Location: Hastings
Contact:

PostRe: NHS England hit by cyber attack, phone and IT systems down
by Errkal » Sun May 14, 2017 8:59 pm

Also there is very very little reason to be on XP, the major issue at least where I was was 16bit apps as 7 didn't support them, however 8 and up added it back so it was easier to them move if you stays 32 bit.
User avatar
Somebody Else's Problem
Member ♥
Joined in 2008
Location: Wherever you want me to be, baby

PostRe: NHS England hit by cyber attack, phone and IT systems down
by Somebody Else's Problem » Sun May 14, 2017 9:01 pm

Ironhide wrote:I've heard that it would have cost something like 5 million to purchase ongoing support for the entire NHS, which I consider relatively cheap considering how much the government wastes on other far less important things, but they didn't want to pay their much so didn't bother.


But there are nukes to buy!
Image
User avatar
massimo
Member
Joined in 2008

PostRe: NHS England hit by cyber attack, phone and IT systems down
by massimo » Sun May 14, 2017 10:47 pm

Green Gecko wrote:
massimo wrote:
Green Gecko wrote:Am I safe if I'm on a Mac?

From this particular exploit, yes as it's a windows XP vulnerability. Who knows what other macOS based Zero days have been leaked from the NSA and are now out in the wild though.

Thanks. Would you recommend Linux?

I'm not cool enough to use Linux, couldn't say.
User avatar
lex-man
Member
Joined in 2008
Contact:

PostRe: NHS England hit by cyber attack, phone and IT systems down
by lex-man » Sun May 14, 2017 10:50 pm

massimo wrote:
Green Gecko wrote:
massimo wrote:
Green Gecko wrote:Am I safe if I'm on a Mac?

From this particular exploit, yes as it's a windows XP vulnerability. Who knows what other macOS based Zero days have been leaked from the NSA and are now out in the wild though.

Thanks. Would you recommend Linux?

I'm not cool enough to use Linux, couldn't say.


There are loads of tin foil hat stuff about the NSA back doors in Linux. Linus Torvalds parents were communists don't you know.
User avatar
Karl
Consider The Following
Consider The Following
Joined in 2008
Contact:

PostRe: NHS England hit by cyber attack, phone and IT systems down
by Karl » Mon May 15, 2017 4:52 am

lex-man wrote:
massimo wrote:I'm not cool enough to use Linux, couldn't say.


There are loads of tin foil hat stuff about the NSA back doors in Linux. Linus Torvalds parents were communists don't you know.


In all seriousness the NSA probably does have Linux vulnerabilities on file. Not a conspiracy, like, they're just good at what they do. But I feel since they likely have vulnerabilities for everything on file, it's inescapable and therefore not worth worrying about.
User avatar
lex-man
Member
Joined in 2008
Contact:

PostRe: NHS England hit by cyber attack, phone and IT systems down
by lex-man » Mon May 15, 2017 6:15 am

Karl wrote:
lex-man wrote:
massimo wrote:I'm not cool enough to use Linux, couldn't say.


There are loads of tin foil hat stuff about the NSA back doors in Linux. Linus Torvalds parents were communists don't you know.


In all seriousness the NSA probably does have Linux vulnerabilities on file. Not a conspiracy, like, they're just good at what they do. But I feel since they likely have vulnerabilities for everything on file, it's inescapable and therefore not worth worrying about.


Yeah but the Linux top brass aren't involved.
User avatar
Errkal
Social Sec.
Joined in 2011
Location: Hastings
Contact:

PostRe: NHS England hit by cyber attack, phone and IT systems down
by Errkal » Mon May 15, 2017 7:07 am

Yeah just use the os that is best for the job you are doing and make sure it is fully patched etc.

Vulnerabilities happen, it isn't worth panicking about or you will never stop worrying about it, just make sure you update etc. and that's the best you can do.
User avatar
Green Gecko
Director
Joined in 2008
Location: Sussex
Contact:

PostRe: NHS England hit by cyber attack, phone and IT systems down
by Green Gecko » Mon May 15, 2017 8:48 pm

There is no such thing as a secure system.
Support GRcade | t: @GRcade | FB: GRcadeUK | YT: GRcadeVideo | Twitch: GRcadeUK
User avatar
Meep
Member
Joined in 2010
Location: The north of Ireland.

PostRe: NHS England hit by cyber attack, phone and IT systems down
by Meep » Mon May 15, 2017 9:09 pm

It's not exactly a secret that the NSA are, dangerously, stockpiling zero day exploits rather than alerting developers to them so they can be patched. In my opinion this is a more a danger because agencies that are supposed to be protecting the public are actually sitting on vulnerabilities rather than trying to protect us from them. The average person does not have much to fear from the agencies per say. Still doesn't mean I don't mind the fact that security agencies are so obsessed with hoarding data that they are completely failing to do their actual jobs.

Return to “Stuff”