[CRTech] Christian Radio Tech [MSG 79887]
[Thread Prev] [-- Thread Index --] [Thread Next] [Date Prev] [-- Date Index --] [Date Next]
Re: Radio automation computer got hacked
To: CRTech <crtech@crtech.org>
Subject: Re: Radio automation computer got hacked
From: Kevin Kidd <kkbroadcastengineering@gmail.com>
Date: Thu, 18 May 2017 19:46:12 -0500
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to; bh=Ch93lmZ1dbNeJMTZbeWxVbkMAk7MJt4kgJGCmIrxtaE=; b=JBIIMSKHkDVcPYd6LZF+thTxteFvaLhk6+d3hpvs8gok2340ZJxif8HDdFS7nin895 3ycfOpFtZB4ajw1VgRPg8pWCToPOk2coFcT6uqULVrUx3ftqdG9q9Z/z2DXKa2QHQDUL Ro21aYYrioy2FhnBEzzvp7Ip7SCH8BdBTVGlxYElgicEAih4qzbP2gYqm78PAjvQl1kK o3dBoyh+4JOqbcTBydtjMLEKHxtfbDKGFunTGogJ47r+3I7JHMYy3ZFOK8IWku59cggF SPKji6eCvoy+mbsqOyQ6xSarr/Lqixm1pLJze+Y7YQL7aiHO5QTeFT6c4aNDuiHihEht Ekzw==
In-reply-to: <017901d2cf31$94202f10$bc608d30$@cox.net>
References: <007b01d2cd2b$befd8820$3cf89860$@cox.net> <017901d2cf31$94202f10$bc608d30$@cox.net>
New viri are network aware and will now spread via shares and apparently via USB devices if they showup as a drive letter.

You don't have to have email nor browser to get infected.  A single computer on the network can be infected and spread to dozens of others in minutes.

A local manufacturing company opened what appeared to be a document from a trusted customer and within an hour or so, their network and process control was down and the plant was shut down for several days awaiting corporate IT to replace all infected computers.  They didn't actually lose anything other than plant run time.

It has since came out that a front office person tried to open the "document" but was blocked by AV/security software, she then called in another engineering type person who copied the "document" to his computer and was able to open it.  The fun started seconds later...

They later found out that the trusted customer had been infected that morning but hadn't notified anybody yet.  Possibly because all of their computers were dead as well...

Good luck,

On Wed, May 17, 2017 at 12:18 PM, Don Prentice <dprp1@cox.net> wrote:
I have no idea…don’t have email on that computer. 

Kevin C. Kidd, CSRE/AMD
Lawrenceburg, TN
AM Ground Systems Company  -  WD4RAT
kkidd@kkbc.com  --  866-22-RADIO -- 866-227-2346
References: Radio automation computer got hacked
("Don Prentice" <dprp1@cox.net>, 15 May 2017 03:31:37 -0000)
RE: Radio automation computer got hacked
("Don Prentice" <dprp1@cox.net>, 17 May 2017 17:18:28 -0000)
Prev by date: Re: Ntrogen Regulator
(Tom Van Gorkom, 18 May 2017 20:21:21 -0000)
Next by date: Re: Ntrogen Regulator
(Willie Barnett, 19 May 2017 13:18:52 -0000)
Prev by thread: RE: Radio automation computer got hacked
(Jesse Diller, 19 May 2017 15:07:23 -0000)
Next by thread: AM tower tuning affected by fog
(Tom Van Gorkom, 15 May 2017 14:26:10 -0000)