Woody Leonhard's no-bull news, tips and help for Windows, Office and more… Please disable your ad blocker – our (polite!) ads help keep AskWoody going!
Home icon Home icon Home icon Email icon RSS icon
  • The original WannaCry does NOT infect Windows XP boxes

    Home Forums AskWoody blog The original WannaCry does NOT infect Windows XP boxes

    This topic contains 10 replies, has 6 voices, and was last updated by  Noel Carboni 2 months, 1 week ago.

    • Author
      Posts
    • #116464 Reply

      woody
      Da Boss

      I’ve been saying that for a week now – sometimes fighting over it. I’m not saying the EternalBlue infection method doesn’t work on XP. (Sorry for the
      [See the full post at: The original WannaCry does NOT infect Windows XP boxes]

    • #116479 Reply

      John in Mtl
      AskWoody Lounger

      So what then, was all the fuss about disabled NHS computers running under XP?

      • #116486 Reply

        PKCano
        AskWoody MVP

        XP Embeded computers, those paying MS for extended support, were updated in March like the rest of the versions of Windows. Those computers must not have been XP Embeded or they had not been updated with the March patch that fixed the vulnerability.

        • This reply was modified 2 months, 1 week ago by  PKCano.
      • #116493 Reply

        satrow
        AskWoody MVP

        I think the fuss was mainly the Press jumping to conclusions, aka fake news.

        • This reply was modified 2 months, 1 week ago by  satrow.
        1 user thanked author for this post.
        • #116541 Reply

          woody
          Da Boss

          That’s precisely correct.

          I fought many a battle over this. I was right – the overwhelming majority of those in the press were (and still are) wrong. The “NHS doesn’t have enough money and their ancient XP machines got hit” reporting was complete BS.

          The Win10 infections are likely self-inflicted. XP doesn’t even make the list. Source: Kaspersky.

          1 user thanked author for this post.
    • #116478 Reply

      anonymous

      Microsoft issued a fix for XP that was supposed to stop this exploit (gratis and all that). So it was just all PR stunt on their part. They were congratulated for releasing the patch – did they know otherwise?

      How does this boost their trust quotient?

      • #116484 Reply

        PKCano
        AskWoody MVP

        I’m not saying the EternalBlue infection method doesn’t work on XP. (Sorry for the double negative.) What I am saying is that no Windows XP boxes were infected, in the wild, by the original WannaCry worm.

        The post says the original WannaCry worm did not infect XP boxes.

        The patch Microsoft issued for XP fixed the EXPLOIT. It includes the original worm because it fixes the vulnerability that it uses. It will also prevent any new versions that use that vulnerability as well.

        So, yes, Microsoft should be congratulated for making it available for free to ALL versions of XP

        • This reply was modified 2 months, 1 week ago by  PKCano.
        2 users thanked author for this post.
        • #116543 Reply

          woody
          Da Boss

          Precisely correct, on all counts.

    • #116507 Reply

      anonymous

      Microsoft didn’t really need to release the patch for XP because security firms were providing signatures to antivirus and endpoint security products as soon as the threat was identified. Most were already out before MS released their patch.

      Windows XP has accumulated hundreds of vulnerabilities since extended support came to an end. They all require a premium payment to fix. Releasing the patch helped – don’t get me wrong- but you will notice that they made a big deal about it. They geared up their PR machine at the same time they released the patch.

      • #116544 Reply

        woody
        Da Boss

        I disagree. Signatures for AV products are great, but the EternalBlue exploit is devious.

        Far better to cut it off at the source – buggy SMBv1 drivers – with MS17-010.

        As far as gearing up the PR: Sure. Absolutely.

      • #116652 Reply

        Noel Carboni
        AskWoody MVP

        Typical active antivirus “security” is tantamount to inviting all the local criminals into your house for tea and hiring a security guard to watch them closely. Sure, you catch most of them most of the time before they pocket your silverware, and they often do actually leave when the guard kicks them out, but…

        Wouldn’t it be much, much better just not to invite them in to begin with? Don’t forget that the security guard eats your food and drinks your beer, and calls his company occasionally to report on you…

        Never, but never put blind faith in an antivirus package. It’s a LAST line of defense, not a security strategy, and you might find you’re having to pay that security guard an awful lot, all the while you’re not enjoying your home as much.

        -Noel

        1 user thanked author for this post.

    Please follow the -Lounge Rules- no personal attacks, no swearing, and politics/religion are relegated to the Rants forum.

    Reply To: The original WannaCry does NOT infect Windows XP boxes

    You can use BBCodes to format your content.
    Your account can't use Advanced BBCodes, they will be stripped before saving.

    Your information:


    Comments are closed.