Difference between revisions of "Malware/Meeting Notes 2017-06-12"
< Malware
Jump to navigation
Jump to search
BobJonkman (talk | contribs) (Added meeting notes) |
BobJonkman (talk | contribs) (Added meeting notes) |
||
| Line 13: | Line 13: | ||
* WannaCry ransomware seemed to be more prevalent on Win7, not so much WinXP | * WannaCry ransomware seemed to be more prevalent on Win7, not so much WinXP | ||
** https://www.spacelabshealthcare.com/wp-content/uploads/2017/05/WannaCry-Malware-Assessment-and-Compatibility-Statement_23_May_2017.pdf | ** https://www.spacelabshealthcare.com/wp-content/uploads/2017/05/WannaCry-Malware-Assessment-and-Compatibility-Statement_23_May_2017.pdf | ||
| + | ** https://www.sans.org/ has vulnerability reports | ||
** Apple malware, adware | ** Apple malware, adware | ||
| Line 21: | Line 22: | ||
*** AdAware bought by MalwareBytes, good for Apple platform, free for home use | *** AdAware bought by MalwareBytes, good for Apple platform, free for home use | ||
| + | ** Android | ||
| + | *** Large platform, biggest vulnerability | ||
| + | *** Old, refurbished phones may be vulnerable, they don't get updates | ||
| + | *** Same for routers, security cams | ||
| + | *** Fragmentation in market, but providers (Samsung, Verizon) don't provide updates after a year or two | ||
| + | *** Reluctance to update phones because it takes too long (10 minutes!) | ||
| + | *** People are more likely to replace a device than upgrade it | ||
| + | **** Both desktop and mobile devices | ||
| + | *** Change is scary, can't even deal with a moved icon on the desktop | ||
| + | *** SysAdmins are not able to meet the expectations of clients | ||
| + | *** Google is taking heat for lack of Android updates | ||
| + | **** THought it might have been like GNU/Linux distros (stable, testing, Sid), didn't work out that way | ||
| + | **** Proprietary applications contribute to this, only Google can upgrade their apps | ||
Revision as of 18:56, 12 June 2017
Malware
- Date
- Monday, 12 June 2017 from 7:00pm to 9:00pm
- Event Announcement
- https://www.meetup.com/NetSquared-Kitchener-Waterloo/events/239940239/
- Location
- Communitech Jelly Bean Room 1st Floor, 151 Charles Street West, Kitchener, Ontario Map
Breaking News: Dozens of countries affected by ransomware cyberattack (CBC News, 12 May 2017)
Are you protected from malware? On your desktop computers? On your servers? Does your staff have malware protection at home? Is anti-virus software enough? What's "ransomware"? What's the difference between a virus, a trojan, and a phishing attack? Does it matter? How do you protect yourself from malware? What's the best way to react to a malware outbreak? How do you recover from a malware attack?
We'll share our experiences in a round table discussion, and perhaps have a guest from the industry to provide some of the answers.
--Marc Paré and Bob Jonkman
- Video on encryption in WannaCrypt ransomware: How WanaCrypt Encrypts Your Files - Computerphile
- Tekkshare demonstration by guest Scott
- Malware stories
- from the days of floppy drives
- WannaCry ransomware seemed to be more prevalent on Win7, not so much WinXP
- Apple malware, adware
- Nothing super malicious, but affects the browser, user libraries inc. user preferences
- Backup with TimeMachine, but that takes malware with it
- Free TV websites and proxy sites seem to be sources of malware
- Manual restore (not Time Machine) to restore each file individually
- AdAware bought by MalwareBytes, good for Apple platform, free for home use
- Apple malware, adware
- Android
- Large platform, biggest vulnerability
- Old, refurbished phones may be vulnerable, they don't get updates
- Same for routers, security cams
- Fragmentation in market, but providers (Samsung, Verizon) don't provide updates after a year or two
- Reluctance to update phones because it takes too long (10 minutes!)
- People are more likely to replace a device than upgrade it
- Both desktop and mobile devices
- Change is scary, can't even deal with a moved icon on the desktop
- SysAdmins are not able to meet the expectations of clients
- Google is taking heat for lack of Android updates
- THought it might have been like GNU/Linux distros (stable, testing, Sid), didn't work out that way
- Proprietary applications contribute to this, only Google can upgrade their apps
- Android
