Who was REALLY behind the Microsoft Backdoor...
ฝัง
- เผยแพร่เมื่อ 28 ก.ย. 2024
- Head to brilliant.org/... to start your free 30-day trial, and get 20% off an annual premium subscription.
PART TWO IS OUT NOW 👉 • Who was REALLY behind ...
In this video, we take a deep dive into EternalBlue, the infamous exploit behind many of the most impactful cyber-attacks, such as WannaCry, NotPetya, TrickBot, and more. This is the most sophisticated exploit I have covered on this channel, due to the sheer rigor and length of the exploit chain. I wanted to build up to a comprehensive understanding of the exploit, starting with the buffer overflow / out-of-bounds write, as well as the arbitrary memory allocation, before outlining how the attack is executed. Whether you're a pen tester, security researcher, or cyber security expert, I hope you'll find this attack as fascinating as I did.
JOIN THE DISCORD! 👉 / discord
EternalBlue technical sources:
research.check...
• DEF CON 26 - zerosum0x...
media.defcon.o...
• SteelCon 2018 EternalB...
www.cs.toronto....
www.virusbulle...
EternalBlue non-technical sources:
www.foi.se/res...
web.archive.or...
www.kaspersky....
steemit.com/sh...
web.archive.or...
www.justice.go...
www.fbi.gov/wa...
• Three North Korean Mil...
SMB documentation:
learn.microsof...
MUSIC CREDITS:
LEMMiNO - Cipher
• LEMMiNO - Cipher (BGM)
CC BY-SA 4.0
LEMMiNO - Firecracker
• LEMMiNO - Firecracker ...
CC BY-SA 4.0
LEMMiNO - Nocturnal
• LEMMiNO - Nocturnal (BGM)
CC BY-SA 4.0
LEMMiNO - Siberian
• LEMMiNO - Siberian (BGM)
CC BY-SA 4.0
LEMMiNO - Encounters
• LEMMiNO - Encounters (...
CC BY-SA 4.0
#programming #software #softwareengineering #computerscience #code #hacking #hack #cybersecurity #exploit #tracking #softwareengineer #vulnerability #pentesting #privacy #spyware #malware #cyber #cyberattack #zeroday #security #cybersecurity #breaches #databreaches #bug #bugbounty #pentesting #penetrationtesting #backdoor #hacked #CPU #eternalblue #wannacry #notpetya #ransomware #worms #computerworm #NSA #leak #bufferoverflow #memory #exploitchain #zeroclick #microsoftexploit #windowsexploit #cyberattack
![Who was REALLY behind the Microsoft Backdoor [PART 2]](http://i.ytimg.com/vi/L1LZpWqbJG8/mqdefault.jpg)
![Who was REALLY behind the Microsoft Backdoor [PART 2]](/img/tr.png)
To try everything Brilliant has to offer -free- for a full 30 days, visit 👉 brilliant.org/DanielBoctor/. You'll also get 20% off an annual premium subscription!
PART TWO IS OUT NOW 👉 th-cam.com/video/L1LZpWqbJG8/w-d-xo.html
THANKS FOR WATCHING ❤
**EDIT - please read**
Just to be clear, Kaspersky are the ones who discovered the Equation Group in the first place. They announced the discovery on February 16, 2015, at the Kaspersky Security Analysts Summit held in Mexico. The quote @ 3:38 was actually taken from their official report, that they published on the same day. I definitely should have made this more clear, and I can see why there is a lot of confusion.
JOIN THE DISCORD! 👉 discord.gg/WYqqp7DXbm
👇 Let me know what type of content you would like to see next! 👇
Thank you for all of the support, I love all of you
Change the thumbnail it’s easier to share if it doesn’t look like I’m sharing some conspiracy stuff
SOMEONE WITH HACKING SKILLS could be very dangerous in the coming months and yrs,all it take is the right motivations/attitude and mind set /bad bad actor villain lvl
So many malware tutorials all using the same attack vector clearly emphasize how exactly nothing has been patched. The real upsell of updating your OS is free tech support (monitoring) for the current generation OS
$300 seems like a really reasonable price for an online course on the importance of making regular backups 😁
Thanks. Shalom.
Kaspersky calling them out on this (and many other things) makes banning them now look like a move to protect future backdoors and get revenge
That makes sense!
Saving this
What was their reasoning to ban Deepcool then? it is actually just as simple as their relation to Russia... And what of the other previous bans years prior like DJI or SMIC?
Kaspersky isn't under the thumb of the US gov, so they can't be forced into silence. Easy as
kaspersky didn't call out anyone and isn't even mentioned in the video. wannacry is old and has nothing to do with kaspersky's banning.
The fact that this exploit was only discovered by hacking the NSA is insane.
haha, every security department of a government has those tools under their sleeve, specially "capitalist" ones, you will be surprised if you catch the embebed code of VISA and MasterCard debit and credit card code, those also work in that way, macOS is the one with the most notable backdoors, microsoft second, and for linux you need to cling into the tools the system use (because you can find a custom linux OS that does not require outside the country code to mitigate backdoors).
They hacked a sub contractor who had an exploit but nobody wanted to buy because they would become a target because NSA spent millions in development of the exploit.
Now we all have to pay the price for their negligence.
@@EdwardM919 the MS17 EthernalBlue exploit doesent work anymore. The damage was done in the past.
@@EdwardM919no no now they have total access to your computer and telephone 😂😂😂🎉😅
"It was North Korean hackers"
Yeah... riiiight. How convenient.
Also - NK only have shitty old western computers..
@@homeistheearth That's really all you need. 'Brute force' style attacks are the ones that require insane computational power, and for the most part those don't happen any more.
@@homeistheearth got sanctioned by the us to death. literally.
@@homeistheearth and the ever glorious RedStar OS
@@mycelia_ow nothing wrong with the OS tho, its linux and probably runs faster than windows 11
Common NSA and Big Tech moment
More like NSA. They never informed Microsoft until it was too late. Microsoft patched the vulnerability almost as soon as they were eventually made aware by the NSA. So big tech doesn't really have much guilt on this, the guilt lies with the NSA.
@@danwic You assume that Microsoft did an oopsie that noone discovered within their development and the NSA didn't ask for an obscure backdoor... ...again.
Which is a very bold assumption, or should I say, a quite mentally handicapped assumption.
Eternal Blue wasn't necessary an accident or a coding error, it could have been and most likely was a feature, intended for the use of USA government agencies - not necessary limited to the NSA -, then the NSA decided to act like NSA does: not reminding Microsoft in time that they got hacked, hoping their favorite toy wasn't stolen.
@@danwicyou assume this wasn’t intentional by Microsoft. They created it when they were told to and patched it when they were told to. I mean notified
@@danwic just look at Snowden's revelations. Microsoft does was Big 3-Letter Intel tells them to, pun intended.
Microsoft builds soft-side code, alphabet smiths exploit it, not to say they're spoonfed, it has to look innocuous. I have zero proof however similar instances of intentional backdoors have been well documented.
@@christophertoth9810 Not to say it's unlikely, but you're assuming as well.
I must say, after 2 years of studying IT, programming, red and blue team, no one ever explained this vulnerability better than you did here. Subscribed. I'll watch all of your videos, and will be waiting for the 2nd part. And thanks for sharing that defcon talk, I'll watch that as well!
wow, thanks for this comment. I appreciate the support, and I'm glad you liked the video. Happy to have you on the channel!
@@DanielBoctor
TBH $300 seems like a really reasonable price for an online course on the importance of making regular backups 😁
@@JPs-q1o or, you could tell people for free...
@@DanielBoctor I have gone so far as to complete my bs in comp sci and have years of IT experience (though I do lack programming experience as a junior dev) and I have to agree with Bobert this video was insanely good especially when explaining this sort of thing to someone non-technical (they’ll tune out often but your “recaps”, visuals, style etc can keep the smarter ones watching)
it's a deep dive without the first step: how did we get infected, thru which channel?
were ports mentioned? ports opened to web, ports opened locally?
in that aspect this doesn't help much to protect yourself, but 'grc shields up' might...
Sounds like Microsoft and NSA are the real adversaries here
Tale old as time
Well MS just wrote Buggy code. NSA found the bug and decided that rather than to alert Microsoft, so people could be protected from malicious actors, do keep it for themselves.
Richard Stallman was right.
No. It's CCP and Russia.
@@MaakaSakuranbo these bug might be introduced by microsoft on behalf of NSA request
That's why you should own 2 computers.
1 plugged to the internet
1 not.
They won't ever steal my quake arena mod maps.
Yup that's how you do it. ❤
RELEASE THE UtubeH8tr MAP PACK!
Run one of those self-learning AIs in a match for a decade and they'll develop world peace.
@@Thalanoxthat’s how you start judgement day. That will find a way to get itself off the computer.
They won't collect my Club Penguin LAN server
Department of Defence is a misnomer. It's actually the Department of War
It was it's original name! They changed to try to cover the truth ! !! 😮😢
So do other ministries of defense in other countries, which may not be for defense only
the little hats control it all
Is that you, Winston?
Yes, countries should rename their departments of "defence" back to departments of war, like how it was before world war 1. Because it sounds more epic.
The US State Department just accuses however meets their current strategic goals the best, so I really don't trust their attributions to North Korea and Russia.
Ultimately their cyber weapons are to blame regardless.
Well the USA did invent the internet and they accelerated computer development to where the world could have computers so, they basically own everyone's computers anyway. No matter how much China tries to steal our technology we will always be ahead.
DOH. Deciet in the Deceit, deflection is the new projection, actually since 1776.
If it was just US whatever or NSA i'd get you, but no software engineer who looked at it, from US to S. Korea has objected to the evidence, of which there are more than plenty. And you, worm for a brain, are doing _exactly_ what all US enemies whant you to do. Becoming an enemy to yourselves.
Russian, Iran, North Korean hackers = Euh.... Bad man...
US, UK, EU hackers = It's not exist, not bad man.
What a braindead take.
So what is the REAL reason the US government has labeled Kaspersky a national threat?
Maybe it's because Eugene Kaspersky was an FSB graduate? That's a secondary reason, the main reason was that KAV has ring 0 permissions (required to scan for rootkits) and is able to push overnight updates. Just add 2 and 2.
Ring 0 is the most privileged ring. Everything that runs here is said to be in kernel mode because, well, the Windows kernel runs here. Also the drivers. Here everything has the most privileges. The other ring in Windows is ring 3. Processes that run here are said to run in user mode. There are no rings 1 and 2 in Windows (technically Windows wasn't implemented with rings, but the principles of segregating the privileges still do apply). Any antivirus needs to run in kernel mode for obvious, now, reasons. And, to make that 2+2 for you, albeit Eugene Kaspersky didn't prove to do everything his "colleague" Putin probably asked, the risk is there and the risk is to have in the morning tens to hundreds of thousands of computers being completely Russian puppets. It would be impossible to scan every antivirus update for backdoors especially when you don't see the source code. That scan would have been mandatory because Russia put cyberwarfare in its Military Doctrine in 2014 as part of the hybrid war, basically declaring war on the whole West. So the US took the sane approach: when you have no defense against an unconvicted criminal, better not invite him into your home.
He literally says it in this video. They discovered closed backdoors that the NSA was using
Truth
It's based on Kaspersky Antivirus being the source of a leak of classified material originating from a NSA contractor's home computer. That's it.
In the empire of lies, truth is a national threat.
And just like that their sudden banning of Kaspersky makes sense. They will not tolerate any whistle blower exposing their crime.
It would help if you thought a little more globally. How much do you trust a Russian program? They likely have trojans, too. The lesson is to trust neither without being unpatriotic. It is cyber-warfare that has been continually going on.
Like Edward Snowden the champ. Add to that Gates personally bashed Snowden.
@@dvoiceotruth Exactly.
This highlights why closed-source is inherently dangerous.
Had this been open source, it is still uncertain that anyone would have noticed this exploit. In fact, had it been open source, the hack might have been discovered sooner and used longer. Don't get me wrong, I gave up Windows long ago and now use Linux strictly.
@@douglasgoodall3612 if it would have been discovered sooner it would've been patched sooner
@@baconofburger8784 - You ASSUME discovery by White Hats. Black Hats keep their own secrets.
Potentially* not inherently. You're using a closed-sourced platform, if you really believed that then you wouldn't.
lol this is why Elon is freaking out at the people he gave money to in order to research AI for humanities greater good (i.e. open source).. now they’re turning around and selling it directly to the highest bidder. We’re screwed.
American government responsible... Blame Russia and DPRK... Jobs done!
Jobs done!?
La banda che opprime e sfrutta i cittadini usa e del mondo, e tu sei contento?
O sei uno che ci mangia, o sei uno che non ha capito un gran ché.
Pensi che "lo stato profondo" abbia a cuore l'interesse del cittadino?
Petya is obviously russian
There's only one country that can target specifically Ukraine and name their virus as "petya"
I'd rather give my data to ruZZia rather than a gay country.
Because they are responsible lol
@@Athenaa13Least mental challenged americunt
I don't see the work "Kaspersky" anywhere in the transcript for this video.
3:39
@@NorthernChimp Thanks!
After the Snowden incident, they won't repeat the same mistake near soon.
The NSA was engaged in cyber gain of function research, and it got away from them.
😂
I feel like I’ve been hacked just by watching this video.
I am by no means a hacker, just an everyday computer-user, but I still watched the whole video. I understood very little, and I feel like I am not qualified to comment or compliment. That said, I felt as if the explanations were very thorough and yet succinct at the same time! Well done!
idk why but my brain read your channel as Daniel Backdoor.
haha, that's would be quite fitting
Welp, that's stuck in my mind now. Can't unread... xD
immutable buffer. (:
Daniel's backdoor 😈
Hits close to home. My Dad built most of the fundamentals of NFS while at Sun Microsystems. Suddenly he got an invite to give a lecture about it at the NSA. This was around the mid to late 90s.
you are uniquely very good at laying out these exploits in a way that's simple to follow. awesome video
I'm honoured, thank you 😊
On behalf of all Linux users, let me just say, "Not EVERY computer."
Linux users were lucky the xz utils backdoor CVE-2024-3094 was caught in time, Different OS, different exploit, nobody is really safe these days
Didn’t someone try to insert a back door in SSH and only found out by accident?
That’s just laughable.
Just as aside, our servers were invulnerable to WannaCry because we disabled SMBv1 YEARS ago as per MS security guidance, which is freely published.
That’s the difference between knowing what to to and “install Linux because ima rocket scientist now, hurdy durdy”
@@o0Donuts0o 🤣
@@o0Donuts0o I don’t know which is more laughable. The fact that the attack was planned years only to get discovered because some dev didn’t like his performance numbers. Actually thanks to that we learned not to rely on critical libraries that are maintained by a single person.
If something connects to a network. It can be accessed. Nothing is safe unless it's completely unattached. If you have files you want to keep safe, back them on up external drives and after back up disconnect it from the network and store it away. Use a computer not connected to the main network to access files. Middle man if you will. It's a hassle but it will guarantee security.
So... the root cause is the NSA.
yes
Root cause is complicated code. KISS
BR
Root cause Is a SMB protocol bug.
@@kristofferjohansson3768 More like the "SMB protocol RCE suite".
11:47 This is why Hungarian Notation is good. If that was used they could have used it to indicate the data type. Unfortunately the language they used didn't inforce the data type of the variable which was the main problem. If the compile warned that the data type didn't match (2 byte vs 4 byte) we wouldn't have this problem. I hope C/C++ compilers are smart enough to catch buffer overflows and type mismatches now.
C compilers has been catching that kind of bug since decades and C++ completely disallow it without a reinterpret cast. The problem was not the tools, it was the devs who choose to disregard compiler warnings.
This is why open source operating systems (like Linux) and open source software in general is better.
Anyone can look into the code, and if they find a bug, they can fix it themselves, or ask someone else to fix it.
With closed source software, like Windows, you are forced to just ask Microsoft if they could fix the issue... which in many cases they just ignore (there are several security issues that are in Windows 11 that have been there since at least Windows 7)
This is why all servers use Linux, including much of Azure (Microsoft actually maintains their own distro), any person or group who knows the dangers of proprietary software should avoid it like the plague. Microsoft is forced to share their source code with the US government, so they can develop all the Eternal Blues they want, and Windows will be at the whims of whoever has access to that network, be it spys on our side, or North Korea. Use Linux, and samba to serve your files, it will save you much headache and security.
It works the other way around and the reason why security agencies like the NSA and CIA don't use open source products.
Because with open source, you can go to the source code itself, find bugs and exploit them.
One of the requirements to store secret and top secret information is for the device it's stored in to not use any open source code or libraries.
Specially since other foreign states with almost unlimited resources and some of the smartest security actors could easily find and exploit open source bugs that no one else has found.
Most corporations and enterprises do the same, you're only allowed to use open source projects if your security team has vetted an open source project and agreed there is minimal risk in using that project
@@artu165"specially since other foreighn states could easily find and exploit open source bugs that no one else has found" and what makes the argument different for closed source?
Edit: I would assume that your comment was sarcastic, as claiming that closed source is more secure under a video about NSA backdoor exploit is way too ironic.
@@artu165 your point is self invalidating, if you can read the code to find a bug, someone else can to FIX the bug
@@C-aFilmsExcept that having a state funded dedicated team of engineers tend to find vulnerabilities far more efficiently than a bunch of hippies in their free time.
A part 2 on how an adversary could use the out of bounds memory write to gain control of the computer would be very interesting!
You didn´t answer the title "What Kaspersky really discoverd". Clickbait.
100% it's just that because they got banned like they should have. It's like a propaganda video really, "oh the protection works and they find stuff", yeah; but they can still be stealing. I noticed a lot of people in the comments don't understand that.
There is software CIA declared a pain, and its Commodo firewall+AV. Im not sure its authentic, but from experience i can say its tough.
"every computer" shows macs that weren't affected
Shhhh the Apple fanboys might get upset.
Macs just openly funnel all your private data to Apple. No secret backdoor could compete with that.
@@Sauceyjames He is right tho. That should be clearly show affected OS. I dont give a damn about Apple or Windows but this vid is misleading AF
Dont forget about linux
Apple OS is a custom Linux shell behind a paywall.
10/10 graphics and explaination. MORE VIDEOS KEP IT UP!
glad you thought so 😊. More is on the way 🚀🚀🚀
I've read about this before but never knew how it REALLY worked. Security research sure is an amazing field for those courageous enough to dive deep into uncharted territories
Nice vid, very interesting lets see part 2!
glad you liked it!
Let's see Paul Allen's part 2
@@vectorsahel5420 Not getting enough attention from the first time you made that comment?
@@daanmageddon what?
@@vectorsahel5420 Sorry, different account, still not very original and it has nothing to do with this thread. Hit ctrl-f and search for "Paul Allen" on this page. Could be coincidence. Still begs the question "what?" your comment has to do with mine. Maybe i missed something?
NSA kept information about the bug to themselves instead of disclosing it to Microsoft causing all that damage and lost information. Despicable.
Like this format, great balance of context to be descriptive and meaningful so as not to have to go and look up specific things but also not to boil down to a CS for dummies tutorial. Nice work! Longer videos rather than multiple parts would've been much appreciated too
In end of april i was a senior sysadmin of huge company and we was hacked, main problem was about backup which was stored remote in data center, so i won that by creating WINS server and pushed it by dns.. i had 160 infecter servers (ws 2012 and 2008 r2) and recovered it in 2 days... just remember that old technology some times is very usefull
If you are wondering why OS2 gets a mention, it's because IBM invented SMB and Microsoft adopted it for interoperability.
Dude this video is so well done. Tons of history all in one shot. Insta sub.
I'm honoured. Thank you!
As always, great video. I love how you explain things. Eagerly waiting for the next part. Pls keep making such videos :)
Thanks for the support! Will do - part two is almost done 🙌
Super well done video!
I love the visual components to help explain the various copying and data movements.
Really helps to grasp the concept for visual learners.
That background music is obnoxiously loud, why did you add it when it only makes the video worse...?
Nice, awesome.
Now let's wait till they show what the FSB does, too.
I'll be waiting for a long while.
This was so well put together and described. CANT WAIT FOR PART 2
@0:30 Yea, so what? Clean the Drive, reinstall the OS, restore from Backup.
even in 2017 still allowing smb1 was like a stupid idea
Was all that jargon in the niddle of the video literal computer science?
I was working at a factory. They had to erase ALL their machines, because of "cost efficiency" were running XP. All machines stopped, all production stopped for 18 hours. People were walking around, sweeping floors and stuff, because they had nothing to do. I bet that had cost them more than licenses for Win10 for the whole factory.
Great video! nice visuals! soothing voice.
I don't even wanna know why and how they "discovered" that backdoor.
and even more disturbing why they keept it secret until the zeroDay was already on auction.
TL;DW: Security breaches like this aren't just buffer overflow hacks. They also exploit low-level vulnerabilities of weakly-typed data structures.
Dont use software that big corporations wrote - they need to follow the law - the law is malicious
Not necessary the law is the malicious part, it's the interpretation by corrupt government bodies that is most often.
@@Kardfogu there literary are such laws nowadays though
I would go as far as don't use anything written by an US firm. Their law has been designed for WW3, there is no line between commercial and gov agents.
and their unwritten law is even more malicious
Microsoft's fear of ever allowing the user to encounter a fatal error, preferring instead to always try to recover from them and keep executing anyway whenever possible, is at the root of so many of the bugs in their software. They call it "user friendly" but in reality it's what makes their system so easy to exploit. The correct thing to do would have been to simply drop the packet, but then the user would see an error and Microsoft doesn't like that. My best guess for why they have this policy is that visible errors cause tech support calls so they save money by making it less likely users will know there's been an error.
Ponies rule
9:21 microsojft:
SrVFEATLiStTOnT!!!11!!1!!!1!!!!! linux: 0101001011⌨️🗿☕
I'd rather run the risk of zero days than go back to the BSOD because of a driver or something. The enterprise time lost to that kind of thing was staggering and made MS a joke. You don't see that sh*t in Win11. It's worth the risk.
Wow, this technique is crazzyyyyyyy.
So Kaspersky was banned 14 days ago bc they named the equation group like 10 years ago? Huh? Are you saying Kaspersky are the shadow brokers?
The description of the eternal blue exploit is so precise I can't really understand why the video name is what it is though.
0:09 Some interesting shape comes with the lights and oscillating fan.
For the record, I don't believe for one second the story that the NSA "discovered" the backdoor, and just withheld it from MS, only to inform them of it later. It sounds to me like MS opened a backdoor for the NSA and then had to close it because the NSA let it get out into the wild. Of course if they admitted to this then there would no longer be a windows computer in existence anywhere today, so I'm sure the NSA promised them the plausible deniability they need to protect them from market backlash, when they agreed to the backdoor in the first place.
The US Intel agencies have been embedded with all of the major tech companies since day one. This comment will probably be deleted because of it as well, but I'm screen capturing all of that evidence to provide to Congress, so go ahead TH-cam, delete it.
4:32 - they did not need to inform Microsoft that did intentionally install those back doors as NSA did order.
Also there are still back doors that were installed and will eventually get discovered.
Well.. 12 years ago, I installed Kaspersky on my windows PC but after a week... I tried to uninstall it and could not. I called them and they said I needed a file to 'unlock' it and they emailed it to me... Yep.. it unlocked the program in order for me to delete it. And it did.
I'll never use them again. 👍😤
Not even going to mention his name? “A British security researcher“
My trust for the Kaspersky anti-virus grown even stronger 💯💯
This is one of the best explanations of deep technical concepts I've ever seen. Well done.
The spread reminds me of not vaccinating. There's a known danger out there (the bug / disease) there's a fix for it (the update / vaccination) people choose not to implement the fix, and the danger spread. If 95% of computers would have the fix, the danger might have been contained because it couldn't spread fast enough, but it wasn't.
Clickbait title.
so?
Acension Health was attacked in November. They refused to pay the ransom and they are buying new servers. The auto dealerships were attacked last month.
I remember 2008.. recovered the data using Linux. Only txt was recoverable.
Now we have immutable storage and air gaping being used more.
So what I don't get is if the NSA knew about it and kept it quiet, why didn't they take efforts to remediate the issue on their end. I can understand them not letting anyone know. So, they can take advantage of it, but to leave themselves vulnerable is a massive oversight.
This just happened and i had stop it yesterday. bit pain in the ass nearly finished my video after editing and my pc started slowing down and notice my important files where glitching and took my eth cord out. but it was too late. start up blue screen. then once booted stayed into a blurry login screen. waited a bit login showed up and manged to get in. but my acc rights where stripped and my pc was just flashing white sceen on and off and lagging. i usb transferred drivers manually and smoothed my windows play back and slowly fixed it with a cloud repair
I always thought the exploit was too sophisticated for NK to come up with on their own, but if it was designed by the NSA and some North Koreans who were looking out for exploits were just quick to implement it, that makes a lot of sense
I imagine a few choice words were spoken by someone at Microsoft when the NSA broke the news to them. I'd be pissed they didn't tell me sooner.
In other words, some guy 30 years ago didn't implement any safeguards like size and sanity checking to save some time, RAM and CPU. Take the time to implement something.
well, there's your true cost of ownership of Microsoft products right there......
The Feds broke the gangs, they broke the banks, broke nations, broke opposing ideologies.
more important: there is the price for planned insecurity...
Was patched.
Now patch your system yourself.
@@Sekhmmettit only took them years. Check how long it took them to patch mimikats…. They’ve known about it for years, got patched for a short while, then they broke their patch in may of 2023, and it’s still vulnerable
Extended File Attribute... FEA. Right... the fu-
Welp just another reason to switch to Linux the problem is I don't fell like getting a CS degree just to confirm if the open source compiler I installed isn't malware
Did you just forget to mention Kaspersky? Did you even have a point, or did you just want to show off your understanding of a particular attack vector? This video just felt like a waste of my time, man.
Happened. Immediately did a hard shutdown, pulled the hard drive and hooked it into another unit as a external drive. Did a fill copy in dos. Close call. Everything is constantly backed up on externals and cloud. Happens again the machine gets sent to a landfill.
This was the best lullaby ever. Thank you.
That's why I love Linux although I know the US probably has done something about this OS as well....
Yeah Kaspersky definitely should've headed to an embassy for protection like Julian Assange did. Instead he had detailed security and supposedly I think paranoia made him look like a complete nutcase but in reality to his stories he definitely was right. About his neighbor I doubt that. I think it was paranoia talking.
Imagine being so OP that people refuse to believe you, way to go shadow brokers
You predicted the outage for today 7/19 it’s all those doorbacks they have created over all these years
One is a computer bug, this is an exploit.
I haven't finished watching the video yet, but didn't Microsoft release a update patching this security flaw a WHILE back before this ransomware started infecting?
they yeet off john mcafee and they block kaspersky, something feels very wrong with this, especially with the AI revolution where microsoft decided windows 11 has a feature that could enable remote keylogging with copilot
is no one gonna talk about the fan lights at the beginning look like a certain symbol for a german political party that didnt consist of many good people
i'm curious how does this type of attack work with a physical router/firewall? i'm not knowledgeable on security or coding, but i do find it interesting how things work. Also since this attack affected so many, why did it not effect everyone? is this something that the attacker must choose who to attack specifically or is it just a random attack that go's out to everyone?
thats why you keep your computer allways at a state where you can reinstall windows at any given time D; have all your important date in some place that is not connected to the internet
What an underrated channel
*sooooo what did Kaspersky find?*
"I'll tell you but I'll have to kill you"
I have kaspersky anti virus (paid) will my laptop be fine if i accidentally downloaded a virus like this?
This just makes me happy I dropped out of computer science.
That was... passionating! Please teach me more things 🥺
Absolutely amazing video. Great music choices as well.
we have to figure out how to get people to buy a new computer. some are really old.
Why are firewalls not harded by default
Kapersky is nothing more than an extension of the Russian FSB formerly KGB, and is connected with the GRU who also does "cyber security" so to speak.
Anything they say has to be taken with extreme caution and scrutiny.
Ever since Window 95 came out when I was 13 it seemed obvious that Microsoft must be running unknown operations under the guise of "updates". Installing a huge program takes less time than downloading or installing a small update file? Yeah, ok.
So basically when sociopaths/psychopaths/narcissists are not strong enough to hurt other people they resort to hacking?
15:35 This parsing size mismatch is a strange "oversight". It seems foolish to assume anyone working at this level wouldn't know better.
Just a stupid fact: 230,000 infected computers may sound like a lot, but in reality, it's just 0.00371% of the computers(incl. mobile phones and tablets) in use.
Remember ppl, just update your damn PC.
Never know if the NSA knows a way into your stuff.
Nothing of this makes sense to me, but still finished the rest of the video
Great video! I really appreciate all the details.