I don't have any inside knowledge but it strikes me that all these ransomware attacks on various health (and fuel line) systems around the world have a common denominator that's never ever mentioned: Microsoft Windows. If people (especially running critical infrastructure) didn't use it... I'm confident we wouldn't have ransomware attacks.

@lightweight Even with all the bad incentives and their influence on big corporate systems... the cloud isn't being overrun with ransomware yet? And from what I've seen, "the cloud" is largely Ubuntu, RHEL, and their variants, and containers built on "bases" from their packages.

@unlofl @lightweight 'The Cloud', maybe not... It's the integration between Azure, O365, D365, Sharepoint, Teams, Skype, AD and back to the MS desktop that is the issue.
Even though a small subset of the darkside tools may run on Linux the vast majority target and use the MS ecosystem to do their dirty work.
NZ government departments have been going offline around once a month recently due to flaws in cloud AD and so on.
Teams recently allowed arbitrary commands on *any* system it was on...


@unlofl @lightweight the security community have been bitching recently about the 'attack surface' FOSS presents but that is minor compared to the attack surface MS has been for the last thirty years.
Moving the crap off the desktop into Azure has not made it any better... you might have removed the requirement to continually upgrade the local systems but when MS fucks up their routing tables half the planet goes offline.

Sign in to participate in the conversation
Mastodon - NZOSS

The social network of the future: No ads, no corporate surveillance, ethical design, and decentralization! Own your data with Mastodon!