Do you have adblock enabled?
 
If you can read this, either the style sheet didn't load or you have an older browser that doesn't support style sheets. Try clearing your browser cache and refreshing the page.

(Ars Technica)   Zero day remote exploits for every Windows system from XP to Windows 8 and Server 2012 are now in the wild. Shut down everything listening to port 445 and 139. In other news, we're pretty good at the cyber   ( arstechnica.com) divider line
    More: Scary, Shadow Brokers, Microsoft, Windows Server 2008, Operating system, swift service bureau, Windows 2000, Windows, exploits  
•       •       •

10749 clicks; posted to Main » on 15 Apr 2017 at 7:06 AM (27 weeks ago)   |   Favorite    |   share:  Share on Twitter share via Email Share on Facebook   more»



198 Comments     (+0 »)
 
View Voting Results: Smartest and Funniest


Oldest | « | 1 | 2 | 3 | 4 | » | Newest | Show all

 
2017-04-15 07:13:40 AM  
Weren't we told to close those ports (in both directions even) back when Windows XP was new?
 
2017-04-15 07:16:43 AM  

Basket Case: Weren't we told to close those ports (in both directions even) back when Windows XP was new?


Yes.  WTF doesn't know about the port 139 issues?
 
2017-04-15 07:30:16 AM  

Hack Patooey: Basket Case: Weren't we told to close those ports (in both directions even) back when Windows XP was new?

Yes.  WTF doesn't know about the port 139 issues?


Companies that have legacy systems that no one wants to upgrade because the only guy who really knew how any of this w Tied retired ten years ago.
 
2017-04-15 07:30:50 AM  
I don't know weeks what any of that means
 
2017-04-15 07:35:46 AM  

Crewmannumber6: I don't know weeks what any of that means


img.fark.net
 
2017-04-15 07:38:03 AM  
Dammit Liara!
 
2017-04-15 07:57:44 AM  
Samba (windows directory/printer sharing), okay, most techies already know to disable that service outright or at least firewall port 139, and nobody'll miss it. But a svchost exploit? Hoo boy.

Okay, it should be enough to firewall port 445 (in and out) at the router. Failing that, firewalling port 445 at the local machine while _allowing_ connections to and from 127.0.0.1 (localhost) should block hostile connections without crippling those windows functions.

/  Fark microsoft right through the floorboards for making me not trust their patches.
 
2017-04-15 08:00:22 AM  
Unless I'm mistaken, these are old tools of the NSA.

FTA-"There's no indication any of the exploits work on Windows 10 and Windows Server 2016"

Thought so.

But keep screaming for everybody to PANIC!!!!

/Oh, and keep on using Win7. That'll show 'em!
 
2017-04-15 08:02:17 AM  

Basily Gourt: Unless I'm mistaken, these are old tools of the NSA.

FTA-"There's no indication any of the exploits work on Windows 10 and Windows Server 2016"

Thought so.

But keep screaming for everybody to PANIC!!!!

/Oh, and keep on using Win7. That'll show 'em!


I might be wrong but I don't see a whole lot of server 16 in the wild just yet. Still a lot of 12 out there.
 
2017-04-15 08:02:41 AM  
Oh, and it looks like MS already patched this.

https://www.engadget.com/2017/04/15/microsoft-says-it-already-patched​-​several-shadow-brokers-nsa-l/

FTA-"Microsoft has responded with a blog post, saying it has evaluated all of the exploits listed. Its response to the release is surprisingly simple: most of them have already been fixed."

/Old news is so exciting!
 
2017-04-15 08:10:37 AM  
I should save this for the rare times I still run into people using XP. It won't change their ways but at least they'll get the idea.
 
2017-04-15 08:16:34 AM  

Basily Gourt: Unless I'm mistaken, these are old tools of the NSA.

FTA-"There's no indication any of the exploits work on Windows 10 and Windows Server 2016"

Thought so.

But keep screaming for everybody to PANIC!!!!

/Oh, and keep on using Win7. That'll show 'em!


surly they haven't developed any new and better tools
 
2017-04-15 08:17:27 AM  

holdmybones: Basily Gourt: Unless I'm mistaken, these are old tools of the NSA.

FTA-"There's no indication any of the exploits work on Windows 10 and Windows Server 2016"

Thought so.

But keep screaming for everybody to PANIC!!!!

/Oh, and keep on using Win7. That'll show 'em!

I might be wrong but I don't see a whole lot of server 16 in the wild just yet. Still a lot of 12 out there.


Using Windows Server before the R2 update is like praying the Gay away...
 
2017-04-15 08:19:04 AM  

Flab: Hack Patooey: Basket Case: Weren't we told to close those ports (in both directions even) back when Windows XP was new?

Yes.  WTF doesn't know about the port 139 issues?

Companies that have legacy systems that no one wants to upgrade because the only guy who really knew how any of this w Tied retired ten years ago.


Worked.   WTF autocorrect?
 
2017-04-15 08:20:19 AM  

Basily Gourt: Oh, and it looks like MS already patched this.

https://www.engadget.com/2017/04/15/microsoft-says-it-already-patched-​several-shadow-brokers-nsa-l/

FTA-"Microsoft has responded with a blog post, saying it has evaluated all of the exploits listed. Its response to the release is surprisingly simple: most of them have already been fixed."

/Old news is so exciting!


Keyword: most.
 
2017-04-15 08:26:11 AM  
I'm running windows 3.1 with a modem so I'm getting a kickATZ~~~~~~~~NO CARRIER ~~~~~~~~~~~~~~~~~~~~~~
 
2017-04-15 08:27:43 AM  
"Why do you have a Mac, skippy?"

"I know better."

(I do development work on Windows. I need a build machine, and a machine with nothing else installed for testing. *And* I need a machine to read my email and browse the web, store my music, etc. Plus I need to work from home or at the office. So a MacBook with VirtualBox for the win. Double bonus points: I can make backup images For the twice annual "Windows Update Bricked my Machine.")
 
2017-04-15 08:33:35 AM  

Crewmannumber6: I don't know what any of that means


Ditto.  I'm mildly computer literate, know how to fix most common problems, but port 445 and 139 are foreign to me.  Hell, even going to my usual tech support hotline (google) isn't really helping me figure out how to close them on windows 10.
 
2017-04-15 08:35:00 AM  

Feel_the_velvet: I'm running windows 3.1 with a modem so I'm getting a kickATZ~~~~~~~~NO CARRIER ~~~~~~~~~~~~~~~~~~~~~~


Kids and their new fangled personal computers......
I'll keep my C64 with a 300 BAUD modem
 
2017-04-15 08:40:29 AM  
Wait until the Linux exploits hit the net
 
2017-04-15 08:42:41 AM  

GrymRpr: Feel_the_velvet: I'm running windows 3.1 with a modem so I'm getting a kickATZ~~~~~~~~NO CARRIER ~~~~~~~~~~~~~~~~~~~~~~

Kids and their new fangled personal computers......
I'll keep my C64 with a 300 BAUD modem


My PDP6 works fine for me.
 
2017-04-15 08:46:05 AM  

swamp_of_dumb: Crewmannumber6: I don't know weeks what any of that means

[img.fark.net image 400x225]


PANIC!!!
Kermit panic
Youtube R8vvzZCdeXU
 
2017-04-15 08:47:36 AM  

eyeq360: GrymRpr: Feel_the_velvet: I'm running windows 3.1 with a modem so I'm getting a kickATZ~~~~~~~~NO CARRIER ~~~~~~~~~~~~~~~~~~~~~~

Kids and their new fangled personal computers......
I'll keep my C64 with a 300 BAUD modem

My PDP6 works fine for me.


Bronze Goddess all the way.
 
2017-04-15 08:57:36 AM  
Shadow Broker Good,
img.fark.net


Shadow Broker Bad,

img.fark.net


Shadow Broker Ugly,

img.fark.net
 
2017-04-15 08:59:57 AM  
Can we just admit that the NSA are cyberterrorists?
 
2017-04-15 09:03:45 AM  

cman: Wait until the Linux exploits hit the net


They'll hit right after the year of the Linux desktop.

No seriously. Stop laughing!
 
2017-04-15 09:04:43 AM  
*turns off windows*
*turns on ubuntu machine*

FTFP
 
2017-04-15 09:20:19 AM  

cman: Wait until the Linux exploits hit the net


They're out there (e.g. openSSL).  The VxWorks ones that don't hit the net are the "small demographic" ones to look out for.
 
2017-04-15 09:29:14 AM  

cman: Wait until the Linux exploits hit the net


yea, thats why the navy switched their drone program to linux and why the Int space station switched their laptops to linux. and why the ny stock exchange did same.....
 
2017-04-15 09:30:38 AM  

Linux_Yes: cman: Wait until the Linux exploits hit the net

yea, thats why the navy switched their drone program to linux and why the Int space station switched their laptops to linux. and why the ny stock exchange did same.....


So the NSA finds exploits for Windows and Mac that no one else can find, but they wont find shiat for Linux?

Why would the NSA not have exploits?
 
2017-04-15 09:32:53 AM  

Evil Twin Skippy: cman: Wait until the Linux exploits hit the net

They'll hit right after the year of the Linux desktop.

No seriously. Stop laughing!


laughing all the way to the future. Linux/open source is in no hurry. things that last for the long term never are.
 
2017-04-15 09:35:35 AM  

cman: Linux_Yes: cman: Wait until the Linux exploits hit the net

yea, thats why the navy switched their drone program to linux and why the Int space station switched their laptops to linux. and why the ny stock exchange did same.....

So the NSA finds exploits for Windows and Mac that no one else can find, but they wont find shiat for Linux?

Why would the NSA not have exploits?


ADDENDUM

There is no such thing a secure system

When you have a state actor with great resources in its disposal, they will eventually find ways to break in

To believe that Linux is 100% secure is absurd and it shows how much you know about technology: dick
 
2017-04-15 09:39:21 AM  
Why in the bloody blue fark does the goddamn page self-scroll *back* to the farking top?
 
2017-04-15 09:39:54 AM  

cman: Linux_Yes: cman: Wait until the Linux exploits hit the net

yea, thats why the navy switched their drone program to linux and why the Int space station switched their laptops to linux. and why the ny stock exchange did same.....

So the NSA finds exploits for Windows and Mac that no one else can find, but they wont find shiat for Linux?

Why would the NSA not have exploits?


They find them im sure but with so many eyeballs around the world looking, the holes are patched quickly. Its hard to keep up with Democracy.
 
2017-04-15 09:40:13 AM  

cman: cman: Linux_Yes: cman: Wait until the Linux exploits hit the net

yea, thats why the navy switched their drone program to linux and why the Int space station switched their laptops to linux. and why the ny stock exchange did same.....

So the NSA finds exploits for Windows and Mac that no one else can find, but they wont find shiat for Linux?

Why would the NSA not have exploits?

ADDENDUM

There is no such thing a secure system

When you have a state actor with great resources in its disposal, they will eventually find ways to break in

To believe that Linux is 100% secure is absurd and it shows how much you know about technology: dick


Ok, that escalated fairly quickly for 9 am on a Saturday morning.
 
2017-04-15 09:41:26 AM  

cman: Linux_Yes: cman: Wait until the Linux exploits hit the net

yea, thats why the navy switched their drone program to linux and why the Int space station switched their laptops to linux. and why the ny stock exchange did same.....

So the NSA finds exploits for Windows and Mac that no one else can find, but they wont find shiat for Linux?

Why would the NSA not have exploits?


Btw, the NSA uses open source tools to find exploits too. The best tools available.
 
2017-04-15 09:41:42 AM  

Linux_Yes: cman: Linux_Yes: cman: Wait until the Linux exploits hit the net

yea, thats why the navy switched their drone program to linux and why the Int space station switched their laptops to linux. and why the ny stock exchange did same.....

So the NSA finds exploits for Windows and Mac that no one else can find, but they wont find shiat for Linux?

Why would the NSA not have exploits?

They find them im sure but with so many eyeballs around the world looking, the holes are patched quickly. Its hard to keep up with Democracy.


Except for the exploits that dont go noticed for years, right?
 
2017-04-15 09:42:01 AM  

Sugarbombs: cman: cman: Linux_Yes: cman: Wait until the Linux exploits hit the net

yea, thats why the navy switched their drone program to linux and why the Int space station switched their laptops to linux. and why the ny stock exchange did same.....

So the NSA finds exploits for Windows and Mac that no one else can find, but they wont find shiat for Linux?

Why would the NSA not have exploits?

ADDENDUM

There is no such thing a secure system

When you have a state actor with great resources in its disposal, they will eventually find ways to break in

To believe that Linux is 100% secure is absurd and it shows how much you know about technology: dick

Ok, that escalated fairly quickly for 9 am on a Saturday morning.


Nevermind, I thought that was to me.  Iooking at the reply chain, your response is warranted. Carry on!
 
2017-04-15 09:45:58 AM  

Sugarbombs: cman: cman: Linux_Yes: cman: Wait until the Linux exploits hit the net

yea, thats why the navy switched their drone program to linux and why the Int space station switched their laptops to linux. and why the ny stock exchange did same.....

So the NSA finds exploits for Windows and Mac that no one else can find, but they wont find shiat for Linux?

Why would the NSA not have exploits?

ADDENDUM

There is no such thing a secure system

When you have a state actor with great resources in its disposal, they will eventually find ways to break in

To believe that Linux is 100% secure is absurd and it shows how much you know about technology: dick

Ok, that escalated fairly quickly for 9 am on a Saturday morning.


No OS is without issues. All bugs are shallow if enough eyeballs are looking. With closed source, a very limited number of eyeballs are looking. Backdoors are easier to install too.
 
2017-04-15 09:47:52 AM  

Linux_Yes: Sugarbombs: cman: cman: Linux_Yes: cman: Wait until the Linux exploits hit the net

yea, thats why the navy switched their drone program to linux and why the Int space station switched their laptops to linux. and why the ny stock exchange did same.....

So the NSA finds exploits for Windows and Mac that no one else can find, but they wont find shiat for Linux?

Why would the NSA not have exploits?

ADDENDUM

There is no such thing a secure system

When you have a state actor with great resources in its disposal, they will eventually find ways to break in

To believe that Linux is 100% secure is absurd and it shows how much you know about technology: dick

Ok, that escalated fairly quickly for 9 am on a Saturday morning.

No OS is without issues. All bugs are shallow if enough eyeballs are looking. With closed source, a very limited number of eyeballs are looking. Backdoors are easier to install too.


All that open source means that the evil folks have the source code, too

Why would they share what they know?

For 9 years this exploit existed under everyone's noses

https://arstechnica.com/security/2016/10/most-serious-linux-privilege​-​escalation-bug-ever-is-under-active-exploit/
 
2017-04-15 09:48:00 AM  

cman: Linux_Yes: cman: Linux_Yes: cman: Wait until the Linux exploits hit the net

yea, thats why the navy switched their drone program to linux and why the Int space station switched their laptops to linux. and why the ny stock exchange did same.....

So the NSA finds exploits for Windows and Mac that no one else can find, but they wont find shiat for Linux?

Why would the NSA not have exploits?

They find them im sure but with so many eyeballs around the world looking, the holes are patched quickly. Its hard to keep up with Democracy.

Except for the exploits that dont go noticed for years, right?


True, some do but fewer than with closed source. Its all about the numbers.
 
2017-04-15 09:50:38 AM  
Been using Linux for 10 yrs and have yet to pick up any type of infection. No anti virus used either. My distro of choice is Linux Mint.
 
2017-04-15 09:51:26 AM  

Linux_Yes: cman: Linux_Yes: cman: Linux_Yes: cman: Wait until the Linux exploits hit the net

yea, thats why the navy switched their drone program to linux and why the Int space station switched their laptops to linux. and why the ny stock exchange did same.....

So the NSA finds exploits for Windows and Mac that no one else can find, but they wont find shiat for Linux?

Why would the NSA not have exploits?

They find them im sure but with so many eyeballs around the world looking, the holes are patched quickly. Its hard to keep up with Democracy.

Except for the exploits that dont go noticed for years, right?

True, some do but fewer than with closed source. Its all about the numbers.


With source code, all they have to do is look thru it

With closed source, hackers need to be more creative

Linux has security thru obscurity. Windows 10 is the most secure OS out there. This article even shows that these exploits released by Wikileaks do not work on Windows 10.
 
2017-04-15 09:53:59 AM  
Windows has patched all these exploits in the March update. The word "most" was just a CYA. It looks like they were tipped off in February that this was coming, because the delayed February's patch entirely until March for a "new and imminent" concern.

And yeah, every system has vulnerabilities. Use the system right for the job, keep up on patches, use a good firewall, and back everything up to 3 places. Its really not that hard.
 
2017-04-15 09:54:01 AM  

Evil Twin Skippy: "Why do you have a Mac, skippy?"

"I know better."

(I do development work on Windows. I need a build machine, and a machine with nothing else installed for testing. *And* I need a machine to read my email and browse the web, store my music, etc. Plus I need to work from home or at the office. So a MacBook with VirtualBox for the win. Double bonus points: I can make backup images For the twice annual "Windows Update Bricked my Machine.")


OS X if you update it on the reg will more than likely brick or or apeshiat as well.

i.stack.imgur.com
 
2017-04-15 09:55:50 AM  
img.fark.net
 
2017-04-15 09:56:23 AM  

cman: Linux_Yes: cman: Linux_Yes: cman: Linux_Yes: cman: Wait until the Linux exploits hit the net

yea, thats why the navy switched their drone program to linux and why the Int space station switched their laptops to linux. and why the ny stock exchange did same.....

So the NSA finds exploits for Windows and Mac that no one else can find, but they wont find shiat for Linux?

Why would the NSA not have exploits?

They find them im sure but with so many eyeballs around the world looking, the holes are patched quickly. Its hard to keep up with Democracy.

Except for the exploits that dont go noticed for years, right?

True, some do but fewer than with closed source. Its all about the numbers.

With source code, all they have to do is look thru it

With closed source, hackers need to be more creative

Linux has security thru obscurity. Windows 10 is the most secure OS out there. This article even shows that these exploits released by Wikileaks do not work on Windows 10.


Yea win10 is secure after the thousands of hits it sends every day to microsoft and who knows who else. Google it.
 
2017-04-15 09:56:33 AM  

Fool_Marquis: Crewmannumber6: I don't know what any of that means

Ditto.  I'm mildly computer literate, know how to fix most common problems, but port 445 and 139 are foreign to me.  Hell, even going to my usual tech support hotline (google) isn't really helping me figure out how to close them on windows 10.


In short, it's how to get files from a Windows server over the network.

I can't think of a single good reason to offer 139 or 445 to the internet. Should be internal only.
 
2017-04-15 09:56:37 AM  
While lot of "Hurr durr non-winders betterr than winderrs" going on.  If Linux (whatever distribution) or Mac OS was on the majority of the worlds computers, then these conversations would just flip-flop the OS names.

Re: "There is no such thing as a fully secure computer". Addendum: unless it's turned off.
 
2017-04-15 09:58:14 AM  

LarrySouth: holdmybones: Basily Gourt: Unless I'm mistaken, these are old tools of the NSA.

FTA-"There's no indication any of the exploits work on Windows 10 and Windows Server 2016"

Thought so.

But keep screaming for everybody to PANIC!!!!

/Oh, and keep on using Win7. That'll show 'em!

I might be wrong but I don't see a whole lot of server 16 in the wild just yet. Still a lot of 12 out there.

Using Windows Server before the R2 update is like praying the Gay away...


Not going to be an R2 of Server 16, IIRC. Now you just have to keep track of all the build names. Because that's much easier. /s
 
Displayed 50 of 198 comments


Oldest | « | 1 | 2 | 3 | 4 | » | Newest | Show all


View Voting Results: Smartest and Funniest

This thread is closed to new comments.

Continue Farking

On Twitter





Top Commented
Javascript is required to view headlines in widget.
  1. Links are submitted by members of the Fark community.

  2. When community members submit a link, they also write a custom headline for the story.

  3. Other Farkers comment on the links. This is the number of comments. Click here to read them.

  4. Click here to submit a link.

Report