Why we can't patch WannaCry

Sign in to queue

Description

When the flash ransom hit on May 12, 2017, many said "just patch." But we have old equipment. "Just upgrade," they said. Sure. Maybe. But have you seen the IT that powers our manufacturing floors? We won't be able to just upgrade and just patch.

Tag:

Security

Embed

Download

The Discussion

  • User profile image
    David Levin

    We have a large manufacturing base of older non compliant Windows XP and earlier. We have segmented the network for these devices. They do not have connectivity to the internet.

    I understand the difficulties with upgrading manufacturing devices, but if you know that there is a vulnerability and this vulnerability is two year old. I can't understand why steps aren't taken to lessen that vulnerability.

  • User profile image
    Paul Davis

    Well any factory worth it's salt should be using a closed network(I.e no internet access). Same as Nuclear power plants, the only machines on that network that can have internet access should be running the best AV with the latest OS.

    That way you can still download and distribute information to the XP machines on the closed network, but it's being filtered and checked by the Guardian pc's first.

    I can only see these attacks getting worse and more dangerous, with the vault7 leaks.

Add Your 2 Cents