By now, the biggest ransom cyber attack in history, dubbed WannaCry, is being dealt with. Microsoft released security updates to Windows and is actively trying to keep their users secure. First off, we absolutely detest hackers. As a tech company, they are one of our primary concerns. Now on the points Microsoft is making, they are generally correct. Updates for your Operating system, which in MOST cases are going to be either Windows 10 or Windows 7, are security updates. It is important that as users, we as a collective keep our systems up to date no matter how inconvenient updating may seem at the time. Even most updates to our Database are generally security features to help keep our clients safe.
However, there was more to the situation than people just not updating their computers. Our own American government was keeping tabs on backdoors into operating systems. Now obviously as a user, this is an invasion of privacy, but the NSA in just trying to do their job. Unfortunately, their job is quite literally to invade people’s privacy. The major problem is hackers were able to get the information from the NSA, implying that they aren’t as secure with their secrets as they probably should be. Then, to make matters absolutely worse, they tried to cover it up and prevent the public from knowing about their blunder. Since, the companies had no clue their system’s vulnerabilities were in the hands of a malicious hacker organization, they couldn’t react. When Microsoft finally heard about the attack, they were able to update the exposed programs and close the breach.
The NSA hasn’t released their list of vulnerabilities that they have so we won’t know if there are other threats looming over the ones and zeroes. Companies around the world are tightening their systems in hopes to prevent future attacks. In the end, the situation could have been avoided. We could start with saying the NSA probably shouldn’t keep a list of vulnerabilities to spy on people, however, that’s probably an unrealistic solution. If they are going to keep lists of weak spots, maybe they should invest a bit more heavily in security.
Read the original article here: https://www.theverge.com/2017/5/15/15639890/microsoft-wannacry-security-vulnerabilities-ransomware