[194558] in North American Network Operators' Group
Re: Please run windows update now
daemon@ATHENA.MIT.EDU (Alexander Maassen)
Fri May 12 14:02:17 2017
X-Original-To: nanog@nanog.org
In-Reply-To: <CAD6AjGTXWekAFvTadsgSTe-Bpwk09N+W09=EVZ6nqv8Q=L3D8g@mail.gmail.com>
Date: Fri, 12 May 2017 20:02:52 +0200
From: "Alexander Maassen" <outsider@scarynet.org>
To: "Ca By" <cb.list6@gmail.com>
X-SA-Exim-Mail-From: outsider@scarynet.org
Reply-To: outsider@scarynet.org
Cc: "nanog@nanog.org" <nanog@nanog.org>
Errors-To: nanog-bounces@nanog.org
Hail backups, and whoever keeps those ports accessible to the outside
without a decent ACL in the firewall, or restricting it to (IPsec) VPN's
should be shot on sight anyways.
On Fri, May 12, 2017 7:35 pm, Ca By wrote:
> This looks like a major worm that is going global
>
> Please run windows update as soon as possible and spread the word
>
> It may be worth also closing down ports 445 / 139 / 3389
>
> http://www.npr.org/sections/thetwo-way/2017/05/12/528119808/large-cyber-attack-hits-englands-nhs-hospital-system-ransoms-demanded
>
