Seeing the news, I updated several servers with all updates from windows update, but I don't see in the installed updates the patches that should address the. This article describes various options for checking if Microsoft Windows Update patches which patch the MS17-010 vulnerability are present on a Windows device. Download script and custom service. Windows 8.1 # KB4012606 KB4013198 KB4013429 - Windows 10 # KB4012598 - Windows XP. This article describes various options for checking if Microsoft Windows Update patches which patch the MS17-010 vulnerability are present on a Windows device. Windows 8.1 # KB4012606 KB4013198 KB4013429 - Windows 10 # KB4012598 - Windows XP. Download the Report file & Parameters file. Download Security Update for Windows XP SP3 (KB4012598) from Official Microsoft Download Center. New Surface Pro 6. Stand out from the ordinary. Patches That Fix the Vulnerability For MS17-010. March, 2017 Security Only Quality Update for Windows 8.1 for x64-based Systems (KB4012213). Microsoft patches Windows 8, XP, and Server 2003 to combat 'WannaCry' ransomware attack By Vishal Laul Neowin @vishal1082 May 13, 2017 13:42 EDT Hot! With 62 comments. The patch that came out with Windows Updates in March supports Windows 8.1. There are links to manually downloading the patch KB4012598 for Windows 8 (Doesn't mention embedded) but they don't install.
Following the massive Wana Decrypt0r ransomware outbreak from yesterday afternoon, Microsoft has released an out-of-bound patch for older operating systems to protect them against Wana Decrypt0r's self-spreading mechanism.
The operating systems are Windows XP, Windows 8, and Windows Server 2003. These are old operating systems that Microsoft stopped supporting years before and did not receive a fix for the SMBv1 exploit that the Wana Decrypt0r ransomware used yesterday as a self-spreading mechanism.
That mechanism is a modified version of the ETERNALBLUE exploit, an alleged NSA hacking tool leaked last month by a group known as The Shadow Brokers.
Original MS17-010 patch didn't include XP/Win8 fixes
Microsoft had released a fix for that exploit a month before, in March, in security bulletin MS17-010. That security bulletin only included fixes for Windows Vista, Windows 7, Windows 8.1, Windows 10, Windows Server 2008, Windows Server 2012, and Windows Server 2016.
As the SMBv1 is a protocol that comes built-in with all Windows versions, the computers which did not receive MS17-010 remained vulnerable to exploitation via Wana Decrypt0r's self-spreading package.
'Given the potential impact to customers and their businesses, we made the decision to make the Security Update for platforms in custom support only, Windows XP, Windows 8, and Windows Server 2003, broadly available for download,' Microsoft said in a statement. 'This decision was made based on an assessment of this situation, with the principle of protecting our customer ecosystem overall, firmly in mind.'
Researchers believe that Wana Decrypt0r — also referenced online as WCry, WannaCry, WannaCrypt, and WanaCrypt0r — infected over 141,000 computers.
While unconfirmed, many believe older Windows XP and Windows Server versions were the bulk of the infections pool, as they had no way to protect themselves.
Patch systems and disable SMBv1 where possible
Besides installing these out-of-band updates — available for download from here — Microsoft also advises companies and users to disable the SMBv1 protocol, as it's an old and outdated protocol, already superseded by newer versions, such as SMBv2 and SMBv3.
The current Wana Decrypt0r outbreak has been stopped last night after a security researcher found a kill switch. This is only temporary, as the attackers could release a new version of this threat. This is why patching the SMBv1 exploit is a better solution.
Wanna Cry Windows 8.1 Patch Download Full
For those affected, you can discuss this ransomware and receive support in the dedicated WanaCrypt0r & Wana Decrypt0r Help & Support Topic. Bleeping Computer also published a technical analysis of the Wana Decrypt0r ransomware.
Related Articles:
MS17-010 doesn't appear to support Windows 8 Embedded. The patch that came out with Windows Updates in March supports Windows 8.1. There are links to manually downloading the patch KB4012598 for Windows 8 (Doesn't mention embedded) but they don't install. Was 8 embedded left out?
StevoisiakWanna Cry Windows 8.1 Patch Download Torrent
1 Answer
Is there a WannaCry patch for Windows 8 Embedded?
Microsoft Wanna Cry Patch Download
It was released back on March 13: KB4012217
- March, 2017 Security Monthly Quality Rollup for Windows Embedded 8 Standard for x64-based Systems (KB4012217)
- March, 2017 Security Only Quality Update for Windows Embedded 8 Standard for x64-based Systems (KB4012214)
- March, 2017 Security Only Quality Update for Windows Embedded 8 Standard (KB4012214)
- March, 2017 Security Monthly Quality Rollup for Windows Embedded 8 Standard (KB4012217)