Slashdot Mirror

← Back to Stories (view on slashdot.org)

Almost All WannaCry Victims Were Running Windows 7 (theverge.com)

Posted by BeauHD on from the full-of-surprises dept.

An anonymous reader quotes a report from The Verge: According to data released today by Kaspersky Lab, roughly 98 percent of the computers affected by the ransomware were running some version of Windows 7, with less than one in a thousand running Windows XP. 2008 R2 Server clients were also hit hard, making up just over 1 percent of infections. Windows 7 is still by far the most common version of Windows, running on roughly four times as many computers as Windows 10 worldwide. Since more recent versions of Windows aren't vulnerable to WannaCry, it makes sense that most of the infections would hit computers running 7. Still, the stark disparity emphasizes how small of a role Windows XP seems to have played in spreading the infection, despite early concerns about the outdated operating system. The new figures also bear on the debate over Microsoft's patching practices, which generated significant criticism in the wake of the attack. Microsoft had released a public patch for Windows 7 months before the attack, but the patch for Windows XP was only released as an emergency measure after the worst of the damage had been done. The patch was available earlier to paying Custom Support customers, but most XP users were left vulnerable, each unpatched computer a potential vector to spread the ransomware further. Still, Kaspersky's figures suggest that unpatched XP devices played a relatively small role in the spread of the ransomware.

11 of 123 comments (clear)

  1. Win X Upgrade by Anonymous Coward · · Score: 5, Insightful

    If MS hadn't tried to force Win10 down Win7 user's throats maybe more would have been installing patches.

    1. Re: Win X Upgrade by TWX · · Score: 4, Insightful

      You've obviously never worked enterprise IT. You don't roll-out new versions of anything until they're thoroughly tested, and sometimes you find that you can't roll-out a new version of some software because other mission-critical software is not compatible with whatever new thing you're trying.

      Case in point, all of those ATMs and Point of Sale systems that are still running XP, that Microsoft is still supporting.

      Windows 7 has more support for legacy applications than 8/8.1, and Windows 10 has even less support than 8/8.1. If those legacy applications provide the profit or are otherwise of primary importance to the organization then it does not make sense for the organization to change software. The operating system is merely a means to an end, not the end itself.

      --
      Do not look into laser with remaining eye.
    2. Re: Win X Upgrade by jimtheowl · · Score: 3, Insightful

      Not all people will accept being forced to Windows 10, and that is why they are not patching their machines.

      That is regardless of the fact that the ones that did update were secure.

    3. Re: Win X Upgrade by Zero__Kelvin · · Score: 3, Insightful

      "Lol that someone modded this insightful. Every single one of those people who took the upgrade we're (sic)secure. "

      Secure from whom? Their data certainly isn't secure from Microsoft anymore.

      --
      Guns don't kill people; Physics kills people! - John Lithgow as Dick Solomon on Third Rock From The Sun
  2. monocropping by goombah99 · · Score: 4, Insightful

    Monocropping leads to viruses whether agricultural or operating systems. Not much more to be said than that other than to point out Intels are the ultimate monocrop and they have a gigantic backdoor called the Management Engine.

    In the age of global terrorism, one can expect engineered viruses for agriculture and computers to only increase till something we can't get past comes along. then we'll act in hindsight.

    --
    Some drink at the fountain of knowledge. Others just gargle.
  3. Conspiracy Theory by dryriver · · Score: 2, Insightful

    MS wanted everybody on Windows 7 to upgrade to Win10 pronto - so they got someone to write Wannacry and release it into the wild. =)

    --
    Why did the chicken cross the road? Because Elon Musk put an AI chip in its head.
  4. Re:Windows update flawed? by The+MAZZTer · · Score: 3, Insightful

    Generally you are pwned in that way if you're connecting your PC directly to the internet with no hardware firewall or router which I suspect is pretty rare. Other than setting your router to DMZ mode (which might as well be called "PLEASE HACK ME" mode) as long as you have a router you generally don't get hacked that way. Typically the user has to initiate some action that gets them hacked, though it can be as innocent as opening an e-mail or loading a website they trust. I would say as long as you don't really start to use the internet until your patches are up to date the risk is pretty low.

    That said you should keep up with patches in the first place. Windows does it for you and there's usually never a good reason to stop it.

  5. Re:Pirated versions by ewhac · · Score: 4, Insightful

    ...most of the infected computers were running pirated versions.

    [Citation required]

    --
    Editor, A1-AAA AmeriCaptions
  6. Re:Of course... by Zumbs · · Score: 4, Insightful

    Which was all nice and dandy until Microsoft decided to ram Windows 10 down everyones throats. I can fully understand the annoyed users who simply disabled Windows Update because of those nasty practices on the part of Microsoft. Trust is easily lost and hard to regain.

    --
    The truth may be out there, but lies are inside your head
  7. Re:Windows update flawed? by The+Grim+Reefer · · Score: 3, Insightful

    That said you should keep up with patches in the first place. Windows does it for you and there's usually never a good reason to stop it.

    Until recently, I'd agree. But how many people turned off updates during the "free" Windows 10 thing? That in it's self damn near felt like there was a virus on your computer. Then there's the telemetry update that got added to Windows 7. Anyone who didn't want that also had to turn off automatic download and install of updates.

  8. Re:Why not patched? by Ol+Olsoc · · Score: 3, Insightful

    You need a citation that security updates make a computer safer?

    You can prove that there is less virus activity because of Windows 10.

    All said, a lot of people turned off Windows 7 updates just because Microsoft loaded Windows 10 on their machines without permission. A lot of people got mysterious blank windows that would install Windows ten with a pretty tenuous definition of "permission".

    Microsoft's insidious practice of trying to ram W10 down peoples gullets, with an interface they didn't like and telemetry they didn't want, and update and security they didn't want, and when the best way to avoid the assault on your property was to turn off updates....

    Sorry, but a lot of us are of the opinion that Windows 10, rather than make the internet safe, when coupled with Microsoft's heavy handed intrusion on people - set up the situation of both disabling updates, and disabling migration to Windows 10.

    Which in turn, helped enable this problem.

    --
    The shepherds did so well protecting the flock that the sheep no longer believed that wolves existed.