Actuarial Outpost
 
Go Back   Actuarial Outpost > Actuarial Discussion Forum > Software & Technology
FlashChat Actuarial Discussion Preliminary Exams CAS/SOA Exams Cyberchat Around the World Suggestions

DW Simpson
Actuarial Jobs

Visit our site for the most up to date jobs for actuaries.

Actuarial Salary Surveys
Property & Casualty, Health, Life, Pension and Non-Tradtional Jobs.

Actuarial Meeting Schedule
Browse this year's meetings and which recruiters will attend.

Contact DW Simpson
Have a question?
Let's talk.
You'll be glad you did.


Reply
 
Thread Tools Display Modes
  #11  
Old 05-15-2017, 11:24 AM
ALivelySedative's Avatar
ALivelySedative ALivelySedative is offline
Member
CAS
 
Join Date: Dec 2013
Location: Land of the Pine
College: UNC-Chapel Hill Alum
Favorite beer: Red Oak
Posts: 1,063
Default

Spread by email, so I'd really like to know how customized they were, or if they picked something generic enough to get all the people to click on whatever malicious link was used. Our IT dept sends out 'fake'-fake emails about once a quarter as part of employee training stuff to try to dupe us into clicking on a false link that basically says 'oops dont do this'. But they're usually so cheesily obvious that it's just a nuisance.
__________________
1/P | 2/FM | 3F/MFE | LC | ST |4/C | 5 | 6 || 7 | 8 | 9
VEE: Econ, Fin, Stat
OC1, OC2
COP
Reply With Quote
  #12  
Old 05-15-2017, 11:27 AM
BG5150's Avatar
BG5150 BG5150 is online now
Member
Non-Actuary
 
Join Date: Jan 2009
Favorite beer: the one you're buying me
Posts: 19,031
Default

I click on almost anything. I figure my chances of getting a virus are very low.

Last edited by BG5150; 05-16-2017 at 02:40 PM..
Reply With Quote
  #13  
Old 05-15-2017, 11:36 AM
kadsura kadsura is online now
Member
CAS SOA
 
Join Date: Oct 2016
Studying for $
Posts: 380
Default

I don't think it spreads by phishing as some previously thought, because of the speed at which it spreads. And most people actually do identify the phishing emails well.

Quote:
Originally Posted by PeppermintPatty View Post
And it turns out that the virus doesn't do anything if it finds that the domain exists -- probably an intentional kill switch.
Also, the guy that stopped (the first round of) wannacrypt says he doesn't believe now that that was a kill switch, but rather, just a poorly-coded anti-analysis. More rounds of campaigns could start this week, but he did win some time for people to patch their computers.
Reply With Quote
  #14  
Old 05-15-2017, 12:20 PM
erosewater's Avatar
erosewater erosewater is offline
Member
 
Join Date: Aug 2003
Location: my mom's basement
Studying for your mom
Favorite beer: Schlitz
Posts: 65,946
Default

Why are people still running XP?
Reply With Quote
  #15  
Old 05-15-2017, 12:58 PM
yoyo's Avatar
yoyo yoyo is offline
Member
CAS
 
Join Date: Dec 2001
Posts: 20,463
Default

Quote:
Originally Posted by PeppermintPatty View Post
So far they have collected about $50K, which seems really low for such a huge attack. Even with such a modest pay-off, they may have trouble laundering the money. It's hard to know who owns a bitcoin account, but once you use it to pay for something, it's not that hard to know who takes possession of the good or service you pay for.
there are ways to launder bitcoin
Reply With Quote
  #16  
Old 05-15-2017, 01:41 PM
ahow's Avatar
ahow ahow is offline
Member
CAS
 
Join Date: Nov 2003
Location: Burninating the Indiana
Favorite beer: Stone 11th Anniversary Ale
Posts: 12,202
Default

MS needs to stop charging for Windows.

China was hit big-time because most people there run pirated copies because legit licenses are fairly expense compared to the average Chinese salary.

Personally, I have one Windows machine at my house, but it is secondary (runs in boot camp on my Mac) and has only cloud backed up stuff (Steam).
__________________
ahow
Badass
Reply With Quote
  #17  
Old 05-15-2017, 02:26 PM
bitter buffalo's Avatar
bitter buffalo bitter buffalo is offline
Member
SOA
 
Join Date: Aug 2010
Favorite beer: trappistes rochefort 10
Posts: 910
Default

"WannaCry" - who comes up with these names? if i were a hacker i'd try to give my malware way better names, things that would need to be censored in the press e.g. "OhF*ckMe"
__________________
It may be the coldest day of
the year, what does he think of
that? I mean, what do I? And if I do,
perhaps I am myself again.
Reply With Quote
  #18  
Old 05-15-2017, 03:29 PM
bitter buffalo's Avatar
bitter buffalo bitter buffalo is offline
Member
SOA
 
Join Date: Aug 2010
Favorite beer: trappistes rochefort 10
Posts: 910
Default

Quote:
Originally Posted by erosewater View Post
Why are people still running XP?
a flaw in the attack:

__________________
It may be the coldest day of
the year, what does he think of
that? I mean, what do I? And if I do,
perhaps I am myself again.
Reply With Quote
  #19  
Old 05-15-2017, 03:41 PM
PeppermintPatty's Avatar
PeppermintPatty PeppermintPatty is offline
Member
CAS
 
Join Date: Sep 2001
Posts: 31,322
Default

I don't know about this one, but other ransomware attacks have given their victims a link to a helpful FAQ walking them through how to pay, step by step.
Reply With Quote
  #20  
Old 05-15-2017, 03:56 PM
glassy glassy is offline
Member
Non-Actuary
 
Join Date: May 2015
Location: representative of the Midwest
Posts: 1,887
Default

If the value of your encrypted files is well over $300 (ahem, hospitals), I think the motivation would be there to quickly learn how to pay in BTC. I also think it would be a risk I'd be very willing to take for the chance to recover the files.
Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off


All times are GMT -4. The time now is 08:26 AM.


Powered by vBulletin®
Copyright ©2000 - 2017, Jelsoft Enterprises Ltd.
*PLEASE NOTE: Posts are not checked for accuracy, and do not
represent the views of the Actuarial Outpost or its sponsors.
Page generated in 0.40179 seconds with 9 queries