Newly Discovered Vulnerability Raises Fears Of Another WannaCry

A newly found flaw in widely used networking software leaves tens of thousands of computers potentially vulnerable to an attack similar to that caused by WannaCry, which infected more than 300,000 computers worldwide, cybersecurity researchers said on Thursday. From a Reuters report: The U.S. Department of Homeland Security on Wednesday announced the vulnerability, which could be exploited to take control of an affected computer, and urged users and administrators to apply a patch. Rebekah Brown of Rapid7, a cybersecurity company, told Reuters that there were no signs yet of attackers exploiting the vulnerability in the 12 hours since its discovery was announced. But she said it had taken researchers only 15 minutes to develop malware that made use of the hole. "This one seems to be very, very easy to exploit," she said. Rapid7 said it had found more than 100,000 computers running vulnerable versions of the software, Samba, free networking software developed for Linux and Unix computers.

Re:And the link to the CVA is?

[courteaudotbiz]

You have to dig deep in the summary to get to know that Samba is the vulnerable piece of software, and the article has no technical detail. Would have been nice to get a real news title like "Critical vulnerability found in Samba on Linux", and yes, with a link the the CVE.

It looks like the typical clickbait article. That's not what /. users want. We want some gravy, Crunch tech detail, specs, version numbers, and the most important thing, what version numbers are vulnerable and is it patched in the most recent releases.

Re:100,000 computers

[Guybrush_T]

Wait, you also need to have a writable share. This should reduce the count to ... 2 ?