Slashdot Mirror
Ransomware Infects All St Louis Public Library Computers (theguardian.com)
An anonymous reader quotes a report from The Guardian: Libraries in St Louis have been bought to a standstill after computers in all the city's libraries were infected with ransomware, a particularly virulent form of computer virus used to extort money from victims. Hackers are demanding $35,000 (£28,000) to restore the system after the cyberattack, which affected 700 computers across the Missouri city's 16 public libraries. The hackers demanded the money in electronic currency bitcoin, but, as CNN reports, the authority has refused to pay for a code that would unlock the machines. As a result, the library authority has said it will wipe its entire computer system and rebuild it from scratch, a solution that may take weeks. On Friday, St Louis public library announced it had managed to regain control of its servers, with tech staff continuing to work to restore borrowing services. The 16 libraries have all remained open, but computers continue to be off limits to the public. Spokeswoman Jen Hatton told CNN that the attack had hit the city's schoolchildren and its poor worst, as many do not have access to the internet at home. "For many [...] we're their only access to the internet," she said. "Some of them have a smartphone, but they don't have a data plan. They come in and use the wifi." As well as causing the loans system to seize up, preventing borrowers from checking out or returning books, the attack froze all computers, leaving no one able to access the four million items that should be available through the service. The system is believed to have been infected through a centralized computer server, and staff emails have also been frozen by the virus. The FBI has been called in to investigate.
...sounds like they have valid backups, so this should be considered a "success" story more than anything else.
Still, I do wonder if the admins were practicing valid security, how anything could have infected the entire system.
Mod me down with all of your hatred and your journey towards the dark side will be complete!
As a St. Louisan, I'm glad they're not paying. It sounds like there are some serious issues while they restore their systems, but it sounds like they do have backups. It will take awhile to clean up the mess, but I applaud them for not giving in to the criminals responsible for this. Although many articles aren't clear about this, the library did have backups to restore from, so despite the security breach, someone knew what they were doing well enough to avoid paying the ransom demands. Good for St. Louis not giving into these demands.
If they are just machines for public web browsing, there i3s no data to ransom. Just reinitialize them. Firefox works great on Linux BTW and you have a much smaller attack surface.
It takes a special kind of asshole to attack a library; a place where people go to learn and access the internet. Why go after one of the poorest resources and attack those that have the least to give? Go after the fucking fortune 500 companies but not a fucking library. One only hopes that anonymous could turn the tables on these slimy thieves.
Mostly reminds me of my experiences as a volunteer trying to support the public-use computers in the Austin Public Library. That was almost 30 years ago, way before we had anything like network access problems. Basically I wound up just wiping the systems every time I visited and restoring them as well as I could to their "legal" condition. The big problem in those days was just pirated software, especially an expensive CAD package, but the big threats these days are keyloggers intercepting passwords used for email and data stored in the network...
That reminds me of a much more recent fiasco involving Amazon and a public library in Indiana. Someone created a fake Amazon account in my name and validated the email address using some kind of bug in the Android app. Amazon never volunteered any meaningful details, but I'm believing the name and email address were just a dictionary attack. However, this thing went on for a year and a half before Amazon finally stopped it. One aspect of the scam obviously involved borrowing electronic books from a public library. If that was the only thing going on, then I'm only offended by the association of my name with some rather execrable books, but I think there must have been a money trail, too, or it wouldn't have gone on for so long... (Did you know you can escalate to jeff@ when you get desperate enough? At least it seemed to work in my LONG case, though the two-step solution was obvious in my FIRST contact with Amazon's customer so-called service.)
Historical trivia. Always want to close with a constructive suggestion, but it's hard to come up with one... Follow the money and break the criminals' economic models is kind of obvious, isn't it? Easy to say, but hard to do, even if the criminals are just ingenious fools.
Freedom = (Meaningful - Coerced) Choice != (Speech | Beer^2), and sad sock puppets' bad mods avail them naught.
That's not really it at all.
Decision-makers at the top of organizations love Windows. They love Microsoft. They love all of the pretty graphs and charts and menus that make it look easy to administer a system or network. The problem is, they often start to think that they actually know how to do just that once they've been through the marketing experience meetings where the people from the vendor with a lot of knowledge make it look so simple, or else they hire people that do a very convincing job of sounding like they know what they're doing but don't. Worst, those people (either the bosses or the ignorant hirees) may be convinced that they know what they're doing far beyond reality.
Now, I will give it this much, sometimes the GUI tools can be useful. It's much easier to plot how network traffic is being passed among multiple interfaces to the WAN or to the ISP across multiple NAT firewalls with a GUI graph than it is on a text console. On the other hand, actually figuring out what's going on is often a function of the console, rather than of the GUI.
Do not look into laser with remaining eye.
Why would you bother? If you're maintaining your images properly then you probably have a fresher, more up-to-date image for that particular model PC than what's on it anyway, so if you're going to spend so much time rolling-back you may as well instead deploy fresh. These are public terminals, by and large, user data on the local disk shouldn't be a factor at all.
Even for those users who have their own PC for themselves, if you're providing network storage and if the use of that network storage has been your corporate policy, then content lost on the local disk is their problem, not yours. Obviously try to be polite but don't commit to restoring data that was not properly saved.
Do not look into laser with remaining eye.
Second - St. Louis' libraries almost certainly can't afford to pay even one of these mutts. Libraries were once magnificent places where people went to read and borrow dead-tree media (a.k.a., books, although periodicals and reference works were also available there). While libraries have become the one publicly available free-as-in-beer places to get internet access, their core mission of providing free access to reference, literary and other materials was not directly impacted by this. One could still walk into a library, look up a desired text in the card catalog and physically access a nearly exploit-proof repository of knowledge and information. They don't have budgets for IT security which would prove to be exceedingly difficult to provide on hundreds of publicly accessible computers, nor do they have a mandate to provide electronic services.
Third - and this ties back to second - libraries in general don't have a budget for public IT. They can't afford the expertise to implement FOSS when the vast majority of the people who will maintain and use the provided services are not trained to use it. Even on their web presence, ease of implementation (which probably contributed to this problem) equals lower TCO for them.
Perhaps, but it seems many hack at the library !
aaaaaaa
Do I need to say it again? A good back up strategy would get them back on line pretty soon - a few hours if not less.
In a time of universal deceit, telling the truth is a revolutionary act. George Orwell
These are public terminals, by and large, user data on the local disk shouldn't be a factor at all.
From TFA, it affected their servers as well. The system that allows patrons to borrow books and other items went down. So did access to all of the thousands of digital items the libraries offer. Re-imaging the public PCs should be simple enough, but restoring access might be hard if the systems that connect the libraries to the internet are down (gateways, firewalls, DHCP and DNS servers, etc)
Breakfast served all day!
If you choke off the flow of money, you won't even have to follow the money.
"Transparent" is a shit show that trades on every stereotype going. A man in drag is NOT a transsexual.
Except you can't trace it to any particular exchange. I mean if the criminal withdraws exactly $35000 an hour after the library paid them that amount, then sure it becomes (a bit) easier to track.
But if they withdraw it $100 at a time on a weekly basis or something just to cover their living expenses, or if they withdraw it through a Chinese or Russian bitcoin exchange or the such.. there's little that can be done.
For better or worse, Bitcoin was intentionally designed to be untraceable and while there may be the odd weakness that can be exploited, chances are they're not gaping big loopholes or this would have been a solved problem a few years ago when Bitcoin first became the currency of the underground (well "solved" in the sense that the underground would have stopped using it as soon as the flaws were discovered and we'd be having the same conversation about some new scheme.)
How exactly would you ban it? You'd have to shut down all BTC exchanges that deal in more or less decent real currencies worldwide. Making it harder for victims (in a particular country) to obtain Bitcoin might make collecting on these schemes harder and thus more unattractive to pull off in the first place, but even that doesn't seem feasible.
By the way, Bitcoin is traceable (by everyone) but anonymous.
If construction was anything like programming, an incorrectly fitted lock would bring down the entire building...
Ransomware Thieves Cost Canada University C$20,000 In Bitcoin
Isn't it interesting how this works?
Opening a Word document, or any other Office document, shouldn't put your master boot record at risk, so that was just ridiculous of Microsoft.
It doesn't, not unless you grant administrative (root) privileges to users.
It's mostly used for illegal stuff anyway, and we have plenty of ways to transfer money that are traceable. We don't need bitcoin, or any cryptocurrency.
Mostly illegal? How about almost entirely? Bitcoin has been a boom for criminal enterprises, which in my opinion is the only widespread use case they have presently.
I'm aware some people think having this semi-anonymous, decentralized, ungoverned currency around is somehow cool and/or beneficial, but is it really necessary? And given the fact it's main use is for criminal behavior, do we really need its perceived benefits when it's main use is for crime?
Sadly, the scarcity of Bitcoins which have a perceived value and their decentralized nature makes them very difficult to just 'ban.' Hell, by outlawing them, you probably increase their perceived value.
Like many of the genies we've let out of the bottle in the modern information age, this one is not so easy to put back in.
That's a good point. MS Windows for all it's shortcomings in a system like this (it's 2017 - just use a web server as your library database front end and then whatever you want on the desktops) can be kept running or restored to bare metal if it's treated seriously instead of as a magic thing that always keeps going.
However being prepared costs time and some resources so it looks like it was ignored.
Because many companies require the use of specialized software that ONLY runs on Windows. Look at any industry, and you will find that software. The only companies that can do without windows are the ones that only use web browsers and email.
Banning bitcoin means they have to use other means - traceable means. Making the purchase, trade, or transacting in bitcoin a crime - if the business or individual being asked for ransom can't buy bitcoins, that ends that.
"Transparent" is a shit show that trades on every stereotype going. A man in drag is NOT a transsexual.
When you see a phrase like "a particularly virulent form of computer virus", that usually means "We don't even have basic protection on our systems, so we will make it sound as if the virus is really really mean".
They're actually pretty centralized - China controls the majority of bitcoin mining.
"Transparent" is a shit show that trades on every stereotype going. A man in drag is NOT a transsexual.
Well it might work, but what exactly would be the legal basis to do this?
If construction was anything like programming, an incorrectly fitted lock would bring down the entire building...
I did a quick count, and the city of 1.4 million people I live in has 59 libraries. St. Louis has 2.9 million people. Very few of them read apparently.
I suppose. That's definitely thinking as to why I don't have every system that I use joined to the domain and why I have non-Windows machines that I can work from both as workstations and as servers, and why those that are servers are real physical boxes instead of hypervisors or some other form of VM...
Do not look into laser with remaining eye.
LOL, block Word documents. That would be fun to explain to your userbase, and management.
I used to run an OPAC. I kept the front end on a IBM-RS6000 H70, the database on a H-80, and proxies and workers on a HMC with various flavors of hardware.
It served +100 different libraries, and had a unique holdings over 10 million (that means not counting the same holding twice if you had 2 copies (or more) of it.)
Transaction Backups happened every hour and were written to WORM media.
Databases were backed up with transaction logs every 4 hours to mag tape then ejected until needed.
Complete backups were done once a week by quescesing the database, breaking the RAID 5 + 0, backing up the cold DB while restarting the hot DB. Once the cold backup was complete, the RAID was hot re-synced to the online set.
Disaster recovery was using the cold backup tape (which was a full boot tape, one of the reasons I _like_ RS6000's is you can boot from a backup), then re-running the transaction until it was all current.
Circulation systems did not have RW disks, they booted from a Linux live CD with the OPAC already open.
The run-of-the-mill systems for patrons ran windows. I didn't worry about those as I only ran the Unix/AIX/Linux side but they had image deployment systems. A tech could reimage a machine in under 2 minutes, and I guess they could have remote commanded a re-image, since they did every year anyway.
The system was since pulled down and converted to SaaS with an outside vendor. Seems they didn't want to pay for people and licenses.
And thus it is written - why Microsoft? Because it's cheap and easy to find some stumble bum that can pretend to run your shit. He might even keep it going - at least until it all falls down.
Necessity is the plea for every infringement of human freedom. It is the argument of tyrants; it is the creed of slaves.
For one thing, even without administrative access to a computer, ransomware with full access to an employee's user account can do a lot of damage. For another, administrative access might be the result of a cost-benefit analysis that concluded that avoiding the cost of paying employees to sit and produce no value for the company while waiting for the IT department to complete a review of each application or device driver that each employee requires to do his or her job outweighs the risk of being the next ransomware victim.
Why do these companies continue to pay Microsoft for Windows licenses rather than paying CodeWeavers to improve Wine to the point where it can run the same applications?
When I was a kid growing up, the school district used Follett MS-DOS based software. The IBM PS/2 Model 95 server was both an application server and a fileserver and ran Novell 3.12, and the clients were IBM PS/2 Model 25s, 286 PCs with no local storage, which were booted to MS-DOS 5.0 with Microsoft Client for Networks DOS client, which would boot from floppies that the librarians would use each morning, mount the share read-only to open the application, then the application would connect over IPX/SPX to the Novell server to transact. The only problem was that if a client PC was messed up the librarians had problems getting that client PC to come back up. As a high school student I figured out that each boot floppy was personalized, so if one attempted to boot a client with a floppy that had booted a machine already running it would cause a conflict (something like the Novell equivalent of a hostname) so it was simple, I wrote a number on the side of each client PC, and a matching number on each of the floppy diskettes, and the librarians would only use that disk for that PC.
That system worked pretty well for a long time. Then the district IT department replaced that PS/2 server with an NT box, left it broken for almost three months during the school year, and only fixed it when I as a student threatened to fix it. They went to complain to the school administration and were told that I would have that administration's permission to do just that if they couldn't. It was fixed a week later.
Do not look into laser with remaining eye.
LOL, block Word documents. That would be fun to explain to your userbase, and management.
I'm doing fine with Latex thank you very much.
I should use this sig to advertise my book ISBN-13 : 978-1501515132.
Opening a Word document, or any other Office document, shouldn't put your master boot record at risk, so that was just ridiculous of Microsoft.
It doesn't, not unless you grant administrative (root) privileges to users.
Because privilege escalation vulnerabilities don't exist?
I should use this sig to advertise my book ISBN-13 : 978-1501515132.
Overwritten master boot records is just the cost of doing business.
A smart system would have three master boot records and the bios would find the first good one.
I should use this sig to advertise my book ISBN-13 : 978-1501515132.
Because many companies require the use of specialized software that ONLY runs on Windows. Look at any industry, and you will find that software. The only companies that can do without windows are the ones that only use web browsers and email.
My industry (chip design and manufacture) runs pretty much with specialized software that only runs on Linux. You can ask for a windows version, but the sales guy would look at you funny.
I should use this sig to advertise my book ISBN-13 : 978-1501515132.
Quote:
Additionally, the Library District plans to upgrade to Windows version 10 in late 2017 at an estimated cost of $20,000 and also upgrade Microsoft Office to version 10 at a cost of $48,500.
They spend about $1M/y on computer technology (~$1500/computer/year) not accounting for staff or digital databases/collections and their computers are 5 years old so they need replacement which is a separate line item. With those sorts of budgets, you'd think they have this figured out.
In comparison, I work in research, our systems last for 7-10 years, cost us an average of ~$1000/year including IT staff costs, licensing and purchasing the computer (or $3-400/year without staffing costs).
Custom electronics and digital signage for your business: www.evcircuits.com
I think perhaps your previous post was missing a word:
Bitcoin will make it harder to collect ransoms
Perhaps that was supposed to be "Banning bitcoin"? Which would make a bit more sense grammatically to boot :P. And of course completely negates the meaning and thus my response!
make it look easy to administer a system or network
Sounds good up until that point. Decision makers at the top of organizations don't give a rats ass how easy something is to administer -- they hire people to do that for them.
They just want something that works. And they know they can pay somebody to fix it when it doesn't work. Yes, they "paying" part is important! These are people whose entire lives revolve around money and they intrinsically don't trust anything that's free.
And then there's the fragmentation issue. Should they use Redhat or Suse or Yellowdog (wait what?) or Ubuntu or Kubuntu? What's the difference? Explained in phrasing that makes sense to somebody with a degree in Political Science?
Then do you use OpenOffice or LibreOffice or StarOffice? Wait do we still like StarOffice? Why or why not? Will we still like LibreOffice in 3 years? If I pick OpenOffice and I send a doc file to my lawyer, will he see it properly when he loads it up in Word? Or will it have those slight font and margin differences that add up to a completely screwed up layout over the course of an entire document? Will it have them next year when Microsoft releases Office 730? Who do you call to yell at when it doesn't work right? Who do you pay to fix it?
Sure the FOSS crowd can tout their technological superiority and make untested (though likely true) claims of better software security, but they fail horrifically in any sort of business benefits when you get high enough up the org chart that you're dissociated from the technical aspects (and even somewhat from the licensing cost aspects) and are more concerned with the bigger questions of how your business will benefit (even if many of the answers you get from marketroids are misleading or outright false.)
That part should be easy to explain to those types. "Those are several vendors competing for the same market, so if things go wrong you can switch between them without having to completely retrain your tech people. If you start having problems with Windows too bad - Microsoft is the only provider".
Singularity: a belief in the "God" idea with the "demiurge" relation inverted.
"Libraries in St Louis have been bought to a standstill after computers in all the city's libraries were infected with ransomware, a particularly virulent form of computer virus used to extort money from victims".
Do you mean a Windows Word Macro virus?
And this would never happen with other operating systems?
Randomware usually spreads either through fooling the user, and/or by exploiting flaws in their security. Are you saying that other operating systems do not have users who can be fooled and never have security flaws?
They would have to work 3 times as hard.
I should use this sig to advertise my book ISBN-13 : 978-1501515132.
I want to know who decided to put the PUBLIC TERMINALS on the same network as the administrative computers. Not only that, but malware like this needs write access to network shares. So not only were ALL computers on the same network, the public terminals utilized user accounts that had write access to the same network shares as the administrative computers... unbelievable...
My eyes reflect the stars and a smile lights up my face.
I don't support Trump OR either Clinton (Clinton #1 removed Glass-Steigell, causing the subprime crisis years later by letting banks do stupid things, Clinton #2 - just look at the middle east, Trump - he's no Bernie Sanders, who was the only reasonable candidate - and the fact that he was left of the DINOs - Democrats in Name Only - is a bonus).
So don't be stupid with your lies - anyone can search my history and find your accusations of my supporting Trump are full of shit. You elected him, you get the government you deserve. And you better damn well hope he has a successful presidency, improving the lot of the average American, rather than cutting your nose off to spite your face like a spoiled child who didn't get their way and blames everyone (Russia! Russia!) for your candidate's loss.
"Transparent" is a shit show that trades on every stereotype going. A man in drag is NOT a transsexual.
Apparently they weren't competent enough to separate public terminals from the rest of the network though... There is just no reason that 16,000 computers should be affected by a single bit of malware. That is poor network design imo.
My eyes reflect the stars and a smile lights up my face.
Yeah, not sure where I got the 16,000 number from. Even still, my comment stands. Just substitute 16,000 with the actual number of 700.
My eyes reflect the stars and a smile lights up my face.
St. Louis is about 50/50 black and white. But you're the only one who brought up race.
You mean like gift cards? There are some many ways to anonymize money these days.
No, I mean "China" like the country, not Asians in general. China controls the majority of bitcoin mining. Stop being an ass.
"Transparent" is a shit show that trades on every stereotype going. A man in drag is NOT a transsexual.
EVERY gift card is traceable to the point of purchase. If you thought otherwise, you're naive as all hell.
"Transparent" is a shit show that trades on every stereotype going. A man in drag is NOT a transsexual.
Sounds good up until that point. Decision makers at the top of organizations don't give a rats ass how easy something is to administer -- they hire people to do that for them.
This has not been my experience. In my experience the top brass are wined and dined by the vendors and shown demos, and in-turn those top-brass seek to take credit for their amazing decisions to use this wonderful product that they've been shown. They simply expect it to work as-advertised and for the staff to make it so, whether or not that's practical or not or if it's even a good fit for the environment.
Do not look into laser with remaining eye.
To the point of purchase (the victim). By the time anything happens after that, it's relatively untraceable.
What you see is what you deserve
I should use this sig to advertise my book ISBN-13 : 978-1501515132.
STILL WORK!
The only danger to them is the occasional termite
Wrong. The gift cards still need to be redeemed at some point. They all have unique IDs.
"Transparent" is a shit show that trades on every stereotype going. A man in drag is NOT a transsexual.
Pretending to support Bernie Sanders when it's documented you despised him is only furthering your deceits.
I dare you to find ANYTHING that "documents" that, you fucktard. Oh wait - you can't. That's why all you can do is post lies on slashdot with no proof. But tell us again how it wasn't Bill Clinton who signed the law, even though it was, and I even provided the link.
"Transparent" is a shit show that trades on every stereotype going. A man in drag is NOT a transsexual.
That's a justification, not an explanation. That tells me that different Linux distros exist, but I already know that. What I want to know is why I should pick one distro over another? What are the benefits and down sides of each? Does it even matter? And if not, why is there so many distros in the first place?
If you go to buy a laptop at your local Best Buy for example, they have a breakdown of all of the important numbers as well as a price tag. That gives you three entire sets of reasoning a person could use when choosing a laptop:
a) Most basic level is price: The higher the price, the higher the quality and/or specs (give or take a branding fee of course. Cough Apple.)
b) Next level: Other numbers. Just assuming higher is better. You'll note that few people put hard drive access times in big font, even for boxed individual drives. Those numbers are probably on the box somewhere but the big bold font is given to the RPM -- because its an easy "bigger is better" metric while still giving some useful indication of access speed.
c) Top level: Actually knowing what those other numbers mean. Not too many people need to deal with this level even if they can, but its available if they want it. If you know you're never going to use this laptop for your video collection for example, you may choose to opt out of the extra tb of hard drive space in order to save money or to get more memory for the same money. Or knowing whether a 500gb SSD is better or worse for your particular usage needs than a 2tb HDD.
Most products in a competitive market have something similar (even in situations where the numbers are kind of meaningless) just so that people who don't have the domain knowledge can still get some judgement as to what they're buying and how it stacks up to the competition. Linux distros just don't have that.
The only measures of any specific Linux distro seems to be "what I'm used to" or "what the cool kids use." And if you're going to use those measures then "Windows" or "Mac" are easier answers for most non-technical people without the whole "what's the difference" confusion.
Basically, one of Linux' main strengths from a FOSS perspective (the ability to freely fork) becomes a bit of a weakness when viewed from a business perspective (brand dilution and lack of obvious distinguishing features between distros.)
LOL, block Word documents. That would be fun to explain to your userbase, and management.
Thankfully in the intervening decades Microsoft put more effort to discourage and disallow active (Macro) content, to the point of having a seperate extension that could be blocked (.xlsm), and distrusting internet sourced files.
My favorite Microsoft security feature was when these HTML tags:
<img src="con">
<img src="com1">
<img src="nul">
Would cause a BSOD on Win 9x. Good times were had posting to forums with linked images. Same era as pinging people on IRC with the payload "+++ATH0"
I work for an MSP, so dealing with Ransomware is what I do 99% of the time anyone gets infected. It's all the hotness in infections. Typically comes from drive-by infected adds, bogus browser and flash update, and e-mail attachments. The scope of infection is limited to user access. So, without local admin access, typically only the local profile gets infected, and the data they have access too via mapped drives. With local admin access, the box is hosed. IF the numbnut sys-admins granted domain user access to the Domain Administrators security group (network God mode effectively), it will hose any and all computers and servers it can find. And yes, dumb fucking admins will do that because they're too fucking lazy to be answering requests for software installation and/or securing the network. BAD IDEA!!!!
Just FYI, as a Windows system administrator, not even I have my primary login assigned Domain Admin membership. If I need to login with a Domain Admin account, I have a separate AD account used for utilitarian reasons. If I fuckup and click on something I shouldn't, at least its my ass and not bringing down the entire network (though I know better, honestly).
BTW, Veeam is a badass backup solution!!
Life is not for the lazy.
That means you can maybe see the start and end. You buy it with cash, it gets traded/sold numerous times. You can see when/where it was spent, but you can't follow it back through its path
So what - you nab the people at each end. That is deterrent enough - especially since the people at both ends are the ones attempting to launder the money.
"Transparent" is a shit show that trades on every stereotype going. A man in drag is NOT a transsexual.
Bill Clinton and the democrats had a majority in both houses when he signed the law into place. If they hadn't liked it, they could have stopped it - they had absolute majorities in the House of Congress, the Senate, and they also controlled the White House. They certainly had the power to re-write it, or not pass it, and a presidential veto would not have been overridden by republicans because there just weren't enough of them.
So show me ONE SINGLE REASON why anyone should believe that Clinton was opposed to it? The dems LOVED it, or they wouldn't have passed it. They sure as hell could have changed anything they wanted - but democratic fiscal policy then was pretty much the same as the neocons, same as Hillary is to the right of what passes for moderate republicans (like there's anything "moderate" in US politics any more).
"Transparent" is a shit show that trades on every stereotype going. A man in drag is NOT a transsexual.