NotPetya Outbreak Left Merck Short of HPV Vaccine Gardasil

chicksdaddy shares a report from The Security Ledger: The NotPetya malware infection shut down pharmaceutical giant Merck's production of the pediatric vaccine GARDASIL last June, forcing the company to borrow the drug from a stockpile maintained by the U.S. Centers for Disease Control and Prevention to meet demand, The Security Ledger reports. The anecdote was contained in a quarterly filing by Merck with the U.S. Securities and Exchange Commission (SEC) on Friday. That filing also showed that the company continues to suffer financial fallout from the outbreak of the NotPetya malware in June, reducing both sales and revenue for the quarter by hundreds of millions of dollars. In its quarterly 8-k filing, Merck said that revenue for the quarter was "unfavorably impacted" by around $135 million due to "lost sales in certain markets related to the cyber-attack." Sales in the third quarter of 2017 were also reduced by around $240 million, which Merck chalked up to production shutdowns resulting from NotPetya. In a chilling insight into the extent of the disruption the malware caused to Merck's operations, the company disclosed that part of its quarterly losses were linked to the interruption of its production of GARDASIL, a vaccine used to prevent Human Papillomavirus (HPV) which is linked to certain cancers and other diseases. To make up for what it described as "overall higher demand than originally planned," Merck was forced to borrow the vaccine from a stockpile maintained by the U.S. Centers for Disease Control (CDC), the company said.

Thanks, NSA

[TheRealHocusLocus]

Thanks Not Security Agency for hoarding 'sploits instead of responsibly publicizing them (Eternalblue) and destroying the safety and security of those you are sworn to protect. You should be broken into pieces and scattered to the winds.

The Good News: only affected Guardasil, the shittiest little vaccine out there.

Re:Thanks, NSA

This vaccine is very far from shitty. And seriously, "little vaccine" have no meaning at all. This vaccine concern more than half of the world population (have too some effect on males)..

Re:Thanks, NSA

https://en.wikipedia.org/wiki/Wart#Prevention

Gardasil 6 is an HPV vaccine aimed at preventing cervical cancers and genital warts. Gardasil is designed to prevent infection with HPV types 16, 18, 6, and 11. HPV types 16 and 18 currently cause about 70% of cervical cancer cases,[11][12] and also cause some vulvar, vaginal,[9] penile and anal cancers.[10] HPV types 6 and 11 are responsible for 90% of documented cases of genital warts.[14]

More than 200k cases of cervical cancer diagnosed worldwide ; before the generalization of the vaccination against HPV around 15% of female have got genital warts, now we are around 0.5%... And nearly zero sides effects. Yeaaah, a little shitty vaccine.

Re:Thanks, NSA

This protects against cancer, you know? Even if it just prevented HPV, it's still a disease that needlessly affects a large portion of the population.

Re:Thanks, NSA

[arth1]

Condoms give even better protection. Also against pregnancy.

There are two main ways you get HPV and most other VDs: Screwing strangers without protection, or being in a partnership with someone who screws strangers without protection.
If the first, you're an idiot, If the second, you're a cuckold idiot.

Before complaining about how condoms are a chore or don't feel as good, look at a few pictures of the results of VDs. Being that this is human genitalia, the most powerful germ spreader in the world, and would putrefy your dick head clean off, you've got to ask yourself one question: "Do I feel lucky?" Well, do ya, punk?

The vaccine can be useful in preventing teen infections, when hormones take over and Southern politicians make it difficult for them to get safe prophylactics, and idiot parents make it shameful. Believing your kids will be abstinent unless they're ugly is as stupid as believing in talking bushes. But in most cases, I have little sympathy for those who catch VDs, because condoms provide a fairly good protection.

Re: Thanks, NSA

[guruevi]

Look something up about VD before you spout off nonsense.

You carry a form of HPV because itâ(TM)s a normal thing to have and humans are the only reservoir, just like you have e.coli, and various fungi in your intestine. And just like cholerae, many strains are probably harmless. If you ever had any sort of wart or skin growth anywhere, probably when you were little, you have HPV.

Most diseases in humans are venereal after all and most diseases have more vectors to spread than just extramarital sex.

Re: Thanks, NSA

Not sure what you are trying to say, so slashdotters modded you insightful. The vaccine does nothing for normal HPV, only for the cancer causing kind, and some wart causing kinds. What does that have to do with anything? That is like saying we don't need police because people help each other all the time. You would be ignoring the murdering kind of people when you talk about all people as if they were the same.

Re: Thanks, NSA

[arth1]

Look something up about VD before you spout off nonsense.

Unlike you?

You carry a form of HPV because itÃ(TM)s a normal thing to have

Not the kinds that this vaccine helps against, HPV 16 and 18, which are types of HPV that's almost entirely sexually transmitted. You most assuredly did not have those on your fingers in your youth. Well, unless you grew up in a very special family...

The vaccine is useful because people, and especially teens do have unprotected sex. Increased availability and use of condoms would help against these as well as many other VDs, and you wouldn't be caught with your pants down, so to speak, when there's a shortage of the vaccine.

Re:Thanks, NSA

[iggymanz]

Vaccines are great BUT:

Vaccine not credited with drop in cervical cancer cases: the biggest cause of decline in cervical cancer deaths is from pap screen according to CDC. Most healthy people will clear viral infection naturally in under 2 years. The bulk of cervical cancer deaths are in patients older than 45 years. The vaccine is useless in one third of cases since it involves HPV not targeted.

Re: Thanks, NSA

Since the male carriers are symptom free this can be spread between spouses as well.

Re: Thanks, NSA

Yes because all sex is done with consent...

Why don't you do what I did. Run the numbers on cervical cancers caused by hpv strains and then run the numbers on HPV cases caused by rape. The compare the complications verses the cancers and let me know what you find.

I found even if it ONLY stopped the cancers from rape, it would still be better than the number of side effects.

But keep spouting your condoms and abstinence BS. Meanwhile those of us that understand science and can count will keep solving problems for you like HPV, cancers, polio, shingles, chickenpox, measles, mumps, rubella, and whole host of other things that should have killed you.

Come to think of it, maybe we would be better off letting Darwin do his thing.

Re:Thanks, NSA

[Dripdry]

Um, Gardasil can't remove HPV, it just guards against it if the person hasn't gotten it yet. It needs to be administered before a person is ever exposed to HPV... so that has to be at a very young age. Given how new Gardasil is, I rather doubt there's much long term data to show if it's effective.

15% of women with genital warts? Reduced to .5%? In what, 6 years? I find that... hard to believe.

I've spoken with a prominent/nationally recognized ENT doc on this subject at length. He told me flat out that Gardasil is mostly a scam and wouldn't recommend his patients get it. He quoted the statistics, stating HPV diagnosis methods, what is known/unknown, and all the types of HPV, and which cause difficulties.

Nearly everyone in the world has some form of HPV. Who it effects, why, how, and when are still a mystery. Given how many people have it, and how few people get any symptoms let alone have complications, the cost and fear made by pharmas over it is maybe not worth it.

At the end of the day, Gardasil is mostly a scare tactic used to drive pharmaceutical revenue.

Re:Thanks, NSA

[dmr001]

HPV causes a lot of things (various isotypes are responsible for warts, most head and neck cancer, penile cancer); it is also the (99.7% of the time) cause of cervical cancer. HPV vaccination has been shown to prevent cervical intraepithelial neoplasia (CIN) and carcinoma in situ, the precursor lesions to invasive cervical cancer, in large randomized trials. The current 9-valent HPV vaccine is 97% effective in preventing CIN 2 (moderate) and more severe disease (CIN 3, carcinoma in situ). It also prevents the vaginal equivalent (VIN2/3) - 100% effective, in fact, among HPV naive populations, and 62% among the overall population.

Current cervical cancer prevention strategy involves Pap smears and then biopsies and surgical intervention when we find abnormalities. It's not cheap, and involves women (best case) getting an exam they don't like every 3 years from 21-29 years of age, and every 5 years from age 30-65 years of age. In the worst case, in areas and among populations that don't get Pap screening, people either can try to get to "screen and treat" centers (where we use liquid nitrogen to spots that show up on a cervix swabbed with vinegar), or, more often, simply consign a percentage of women to a miserable death. Cervical cancer is common (17.8 per 100k in countries without screening, with 9.8 of those dying), which amounts to about 266,000 deaths per year. In developed countries, cervical cancer is the eleventh most common type of cancer and ninth most common cause of cancer mortality (3.3 per 100k). In the US, that amounts of 13,000 cases per year, and 4100 deaths.

It stands to reason that HPV vaccine, since it prevents in HPV infection, and advanced pre-cancerous lesions, will likely be shown to prevent incident cancer as well when the vaccine has been around long enough. (The vaccine was first licenses in June 2006; most women get colonized with HPV around sexual debut but the cancer doesn't show up until age 35-55, a 20-40 year delay.) The tragedy of the vaccine, if any, is that it is largely available only in developed countries, where most people can get treatment rather than dying from the disease. That's not nothing: ask any woman who has to have repeated colposcopies and LEEP surgery if she would have preferred to have gotten 2 shots around age 11 and skipped all of the attended pain, expense, and risk of later preterm labor.

In fact, with the introduction of widespread HPV vaccination in the United States proposals are already afloat to change Pap screening—one proposal suggests every 10 year screening for vaccinated persons. Despite the expense of the vaccine ($240 for the two shot series) it's likely to be cheaper and less cruel than the current state of the art.

You are free to consider Gardasil to be a "scare tactic." As a family physician who gets to follow up on plenty of abnormal Paps, and not a particular fan of the pharmaceutical companies, my kids are getting vaccinated

Re: Thanks, NSA

[arth1]

Why don't you do what I did. Run the numbers on cervical cancers caused by hpv strains and then run the numbers on HPV cases caused by rape. The compare the complications verses the cancers and let me know what you find.

Why? Despite what you say, you didn't do it either, except in your mind. There are no numbers on HPV cases caused by rape.

It's not data that's easy to gather. You have to find men and women who:
1: Were tested for HPV 16/18 and found free.
2: Had no consensual sex nor were vaccinated.
3: Were raped.
5: Were tested for HPV 16/18 again and found either
a) Having the virus, or
b) Not having the virus.

These data do not currently exist.

Re: Thanks, NSA

[arth1]

Since the male carriers are symptom free this can be spread between spouses as well.

Absolutely. Has anyone questioned that?
But one of the spouses has to catch it first.

Re:Thanks, NSA

Just an FYI from a passing immunology nerd: The delay is the problem, because it isn't that initial colonization that causes the cancer but a proximal one that wasn't fully/properly cleared out by the immune system--and vaccines can only provide a limited period of immunity. (Lifetime immunity is a myth, and unfortunately we do kinda have to thank the antivaxxers for creating the conditions required to have learned this.)

So, the important question is how long does Gardasil provide protection for? If the protection is only effective for, say, 10 years...then it might not be worth it at all. It might also prove to be more effective ultimately in just changing what strains of HPV are most common, to ones it doesn't protect against--which is what killed some HIV vaccine candidates, because it was also realized that people would notice very quickly the shift in which strains were the common ones and be understandably less than amused. Because of the long delay with HPV, however, the odds of anybody catching the shift quickly are distinctly lower.

Re:Thanks, NSA

> Given how new Gardasil is, I rather doubt there's much long term data to show if it's effective.

STFU. You don't a damn what you are talking about. Let me guess anti-vax? All the fucking science prove it is very very efficient. Takes like 2 seconds to verify.

- http://vk.ovg.ox.ac.uk/sites/default/files/HPV_genital_warts_Australia_graph.png (Data vary country to country, the % I cited previously was from mine, but not available openly on the web) ; https://www.sciencealert.com/the-hpv-vaccine-has-halved-cervical-cancer-rates-in-the-past-10-years ; etc. etc.

- https://www.cdc.gov/cancer/hpv/statistics/cases.htm ;

You are the scam. You are a very very dangerous liar (or idiot).

PS: Yeaaah america again at the top of something https://www.nytimes.com/2017/04/06/health/hpv-virus-survey-united-states.html

Re:Thanks, NSA

Damn liar: https://jamanetwork.com/journals/jamaoncology/fullarticle/2554749

Re:Thanks, NSA

>So, the important question is how long does Gardasil provide protection for? If the protection is only effective for, say, 10 years...then it might not be worth it at all.

First of all, it is quite simple to test if you are immune : Take the virus add antibody from the patient, binding? If yes, immune. Second, why is this a problem? Multiple vaccination is simple.

Re:Thanks, NSA

Well I've spoken to a world renowned ENT with multiple Nobel prizes, a Powerball jackpot and a 15" dick who says that you are an anti-vax cospiracy nut who made up the conversation with an ENT to support your BS.

And I'll post all the proof of everything I just said right after you post the proof of the BS you're spewing.

Re: Thanks, NSA

[guruevi]

The OP is claiming that the only way to get HPV or any VD's of any sort is extramarital sex which is simply untrue.

HPV is indeed sexually transmitted but also occasionally from mother to child during childbirth, but there are no reservoirs outside of humans that carry HPV. Given 75% of people carry the sexually transmittable strains of HPV, it's unlikely to be solely spread by extramarital sex.

Re: Thanks, NSA

[arth1]

The OP is claiming that the only way to get HPV or any VD's of any sort is extramarital sex which is simply untrue.

I don't see that claim at all? I see a claim that to get an HPV infection of the type hat this vaccine would help prevent, it's almost always due to unprotected sex. That's a very different thing from what you claim was written. LTFR.

Re:Thanks, NSA

I already get 10 year booster shots. What's the problem for one more?

Re:Thanks, NSA

[iggymanz]

no, you're reading impared. that little bit about adjusting for changes in cervical screenings

Small wonder

Such a 'poor' company doesn't have the resources to combat cyberattacks it has to use that to flood the Trump-voting rednecks with Fentanyl.

Re: Small wonder

I hated that show.

Well

[nospam007]

They are good in fighting human viruses just not in fighting cyber ones.

Re:Well

They are good in fighting human viruses just not in fighting cyber ones.

Given the prevalence of HPV and the associated deaths every year, they don't appear to be good at fighting anything...

Nobody to blame but themselves

[Gravis+Zero]

Security isn't flashy or cool but when everything comes to a grinding halt because of malware then you have earned it because you refused to invest in basic security.

No tears shall be shed for the PHBs at Merck.

Re:Nobody to blame but themselves

lol after equifax, you can rest assured that not a single major company.... even that ones that make the drugs like Merck, or the ones that hold all our information like equifax... have a smidgen of information security.

It's unfortunate, but like with most slow moving disasters, companies usually don't spend the big bucks to prevent then until after they've already been brought to their knees.

Re:Nobody to blame but themselves

Well NO. Thanks to lobbying there is no mandatory penalty or compensation to those injured by negligence. it becomes just another embarrassing PR event to be blamed on some lackey, and executive bonuses go on as normal.

Security is seen as an event, not a series of delays, unlike airplane maintenance and spares. If only Boeing and Airbus could pull this shit.
Merk also failed to mention why their backup/DR plan also failed.Systemic long term negligence is what many would or might conclude.Can't roll back to yesterday??

Then fire somebody.

Re: Nobody to blame but themselves

[Andy+Smith]

You leave your door unlocked. Someone steals your TV. 100% your fault?

Re: Nobody to blame but themselves

[Gravis+Zero]

That's an incomplete analogy. If you leave your door unlocked overnight, that's one thing but due to the speed of travel and automation with the internet, it's more like you left your door unlocked for 800 years. Finally after 800 years, someone steals your TV and you are shocked that such a thing could happen when the truth is that it was inevitable.

CDC stockpiling HPV shots?

What the fuck? Are they concerned about an outbreak? They may be a good idea, but they can't be a reason to stockpile what is at best a quality of life issue?

Re:CDC stockpiling HPV shots?

Before 2007 around 15% of women got genital warts, now we are at 0.5%. Yes, there will be an outbreak if young ladies have no more access to the vaccine.

Stockpiling is a side effect of giving away monopolies during 20 years to one specific company. These monopolies are commonly called patents. In order to compensate this single point of failure, governments around the world stockpiles. If you want my opinion, the problem is not the stockpiling but the monopolies.

Re:CDC stockpiling HPV shots?

its not just girls im a dude and i got it too

Re:CDC stockpiling HPV shots?

not teh warts the vaccine

Re: CDC stockpiling HPV shots?

[guruevi]

They stockpile vaccines specifically for this reason. A big fire, apparently a simple virus that every decent OS and AV wouldnâ(TM)t run or even market upset could cause companies like Merck to reduce or stop output. The theory is that in those cases the CDC could set up other production lines whilst using the stockpile.

Re:CDC stockpiling HPV shots?

Before 2007 around 15% of women got genital warts, now we are at 0.5%. Yes, there will be an outbreak if young ladies have no more access to the vaccine.

Source please. Albeit dated, the trends here seem to show little or no change:

https://www.cdc.gov/std/stats16/figures/48.htm

On top of that, HPV is the issue being discussed here, which we seem to generally suck at preventing regardless of vaccine availability. Separating out genital warts from that is like counting the number of sneezes in common cold statistics.

Re:CDC stockpiling HPV shots?

[Kohath]

Yes, there will be an outbreak if young ladies have no more access to the vaccine.

Stockpiling is a side effect of ... patents. In order to compensate this single point of failure, governments around the world stockpiles.

How is stockpiling necessary in this case? There’s no urgency for an individual to be vaccinated for HPV (is there?). If there’s a supply disruption, just wait a couple months until the supply is available to get vaccinated.

Re:CDC stockpiling HPV shots?

This is an emergency because we choose to vaccinate just before first sexual experience to please people with irrational fear against vax.

HPV ?= Subviral Satellite

If HPV can only propagate in the U.S.A. with the absence of Gardasil vaccination due to the presence of the NotPetya virus, then should not HPV be reclassified as a subviral satellite of NotPetya?

Re:HPV ?= Subviral Satellite

[UperPoti]

If so, then what does imply about the host of NotPetya, Merck and corporations in general? A further justification of corporate personhood? Is it in Merck's interest to keep NotPetya in order to bolster any legal challenges it may face with regards to certain legal challenges or even as a reason to reduce the supply/stockpile of the vaccine and increase the price and related profits given that it is an inelastic good? If so, would Merck be guilty of crimes by hosting NotPetya?

hundreds of millions

[quote]... reducing both sales and revenue for the quarter by hundreds of millions of dollars. In its quarterly 8-k filing, Merck said that revenue for the quarter was "unfavorably impacted" by around $135 million due to ...[/quote]

hundreds of millions ... around $135 million.

Where where the other hundreds of millions - $135 million lost?

Re:hundreds of millions

[omnichad]

1.35 hundreds. Anything over one is plural, you know.

Re: hundreds of millions

[guruevi]

It mention sales and revenue. So it could still be that sales (what the customer gets charged by their insurance) is down by millions whilst quarterly revenue (what Merck gets from the Insurance) only goes down by a little over 100M. Or that the millions are projected over multiple quarters whilst revenue for this quarter is down exactly by this number.

Although I think $135M is enough money to consider dropping Microsoft, if you have one of these every quarter, your argument for âoecost savings with the status quoâ is moot,

Oh please

As if "responsible disclosure" is the one thing that went wrong. In fact the idea is a little bonkers to begin with, but let's look at what else these people could've done beyond relying on the NSA.

What does that production line need with an internet connection, or even a sneakernet connection, or however it got infected?

Why in the world do you insist on running your machinery with malware-ridden virus-vulnerable generally-unsafe desktop emulators? Use something else. We know this software is crap so stop using it.

In fact, beyond notoriously sickly software there's the added problem of the software monoculture. So use at least two different operating systems, Real ones, one to run the machinery and one that does the admin, so that if the latter gets infected it cannot spread to the former. The former doesn't get to talk to anything but the machinery and the admin kit, obviously.

And, of course, there's a hardware monoculture. So fix that too, while at it. At least put a little thought into the whole thing. That way you're not dependent on a notoriously shady agency foregoing their shady thing just because you're so special, or whatever.

So what we have here is a general failure to take responsibility. And you can't blame it all on the NSA. Not by a long shot.

Re:Oh please

[TheRealHocusLocus]

So what we have here is a general failure to take responsibility. And you can't blame it all on the NSA. Not by a long shot.

[respectfully] sure I can... on the NSA. All of it. Sure shot.

In fact this might be the first directly accountable and provable example of a particular virus-something 'created' in a laboratory that escaped from the laboratory and triggered a general epidemic... cybernetic OR biological. I can blame NSA because on the day it was discovered, it would have required a criminal amount of arrogance (to be fair, or stupidity) to assume that other malevolent actors would not independently discover Eternalblue. And let's toss in the fact that most of affected systems in the world were and still are, within the USA.

So their oath is to protect and defend the Constitution and close second, uphold the National Security interests of the United States. What part of those oaths were upheld? Just going on affected system stats, I'll argue that by absence of any disclosure policy for this certain case of national vulnerability -- and their observed failure to do so -- plus the significant chance it would be independently discovered... that NSA was either deliberately targeting Americans... or they have irresponsibly bad aim.

NotPetya

[pipingguy]

Sounds like an animals rights group that is against humans keeping domesticated animals for companionship.

Or an upsetting comment made to a doggie.

Stop naturalizing

outbreak of the NotPetya malware

as if it were a papillomavirus, not a weapon employed by humans, or human organizations like the state of Russia. Maybe we should stop speaking of "computer viruses" altogether. It fosters this image that fighting malware is like pest control, it obscures the human interests behind them. Malware doesn't just "break out" autonomously.

No backup, no security - no pity

[gweihir]

If anything at all, this should cause a criminal investigation against those responsible, as gross negligence was clearly involved.

Re:No backup, no security - no pity

[geekmux]

If anything at all, this should cause a criminal investigation against those responsible, as gross negligence was clearly involved.

But in the meantime, let's ignore the Greed within the Banking Industrial Complex that will all but guarantee another financial meltdown.

Too Big To Fail? More like Too Big to be Negligent. Even if the activity were criminal, there won't be a fucking thing done about it.

Re:No backup, no security - no pity

[gweihir]

Who said anything about ignoring the banksters? I certainly did not.

Get it under control Merck

Completely irresponsible to let it affect them so much for so long and wreak so much havoc.

Another Satisfied Microsoft Customer

Malware doesn't just "break out" autonomously.

It does if you run Windows!

People don't take security seriously

[Beeftopia]

I've seen this myself. Managers wave it off with an "It'll be fine" brush off. IT workers just want to get their deliverable done and out the door. Until you have a group that is a first class citizen in your organization, and is concerned with security, these sorts of thing will remain common occurrences.

Re: People don't take security seriously

Agree. I work for a 50000+ employees pharmaceutical company that have absolutely not clue about IT security. The office environment is in relatively good shape but the production/automation area is in a bad place. Unpatched win XP boxes are running critical processes. I think it may be related to the very strict change control in pharma. It causes fear of change and updating. And results in low security level.

did they still sell at markup ?

TFA says Merck was "forced to borrow" from the CDC stockpile to "meet demand".

Since it's not the government's job to ensure that a company continues to make money and I'm sure they sold it to the CDCD at a nice markup already, why didn't the CDC just supply the vaccine directly to those in need ? Did Merck pay to "borrow" the vaccine ?

Microsoft Windows strikes again ..

[najajomo]

Everything you need to know about the Petya, er, NotPetya nasty trashing PCs worldwide

Petya/NotPetya/BadRabbit C&C to block

0.0.0.0 1dnscontrol.com
0.0.0.0 aica.co.jp
0.0.0.0 an-crimea.ru
0.0.0.0 ankerch-crimea.ru
0.0.0.0 argumenti.ru
0.0.0.0 argumentiru.com
0.0.0.0 bg.pensionhotel.com
0.0.0.0 blog.fontanka.ru
0.0.0.0 caforssztxqzf2nm.onion
0.0.0.0 calendar.fontanka.ru
0.0.0.0 fontanka.ru
0.0.0.0 grupovo.bg
0.0.0.0 i24.com.ua
0.0.0.0 imer.ro
0.0.0.0 ks.ua
0.0.0.0 mediaport.ua
0.0.0.0 most-dnepr.info
0.0.0.0 novayagazeta.spb.ru
0.0.0.0 online812.ru
0.0.0.0 osvitaportal.com.ua
0.0.0.0 otbrana.com
0.0.0.0 pensionhotel.com
0.0.0.0 pensionhotel.cz
0.0.0.0 sinematurk.com
0.0.0.0 spbvoditel.ru
0.0.0.0 t.ks.ua
0.0.0.0 www.aica.co.jp
0.0.0.0 www.fontanka.ru
0.0.0.0 www.grupovo.bg
0.0.0.0 www.imer.ro
0.0.0.0 www.mediaport.ua
0.0.0.0 www.online812.ru
0.0.0.0 www.otbrana.com
0.0.0.0 www.pensionhotel.cz
0.0.0.0 www.sinematurk.com
0.0.0.0 www.t.ks.ua

APK

P.S.=> SOURCE https://www.welivesecurity.com/2017/10/24/bad-rabbit-not-petya-back/

So... prison time for NSA employees, right?

NSA created EternalBlue. I'm sure we're going to be seeing prison time for the NSA for weaponizing this against civilians, rather than working with OS vendors to fix the exploit before it was used maliciously.

Because if I as a normal joe created this, I'm pretty sure I would do time for it.

And everyone is supposed to be equal in the eyes of the law. That we know too.

For best protection vs. Petya & far more?

APK Hosts File Engine 9.0++ SR-7 32/64-bit https://www.google.com/search?hl=en&source=hp&biw=&bih=&q=%22APK+Hosts+File+Engine%22+and+%22start64%22&btnG=Google+Search&gbv=1/

Ads/script/malware rob speed/security/privacy/bandwidth.

Hosts add speed (via hardcodes/adblocks), security (vs. bad sites/malware/poisoned dns), reliability (vs. dns down), & anonymity (vs. dns requestlogs/trackers).

Less power/cpu/ram + IO use vs. DNS/routers/addons/antivirus + less security bugs/complexity & faster vs. addons/routers/remote dns!

Avoids DNSChangers in routers/IP settings & dns redirect (99.999% of ISP DNS != patched vs. it) + DNS tracking & lighten DNS load & resolve faster from local RAM!

* Via what u NATIVELY have in a FASTER kernelmode IP stack!

APK

P.S. - Safe https://www.virustotal.com/en/file/e01211ca36aa02e923f20adee0a3c4f5d5187dc65bdf1c997b3da3c2b0745425/analysis/1433430542/ (self checking code vs. infection of program built-in it)

In other words, Merck

[Opportunist]

I guess spending anything up to, say, 130 Millions for security is well spent money, don't you agree?