this post was submitted on 18 May 2024
63 points (80.0% liked)

retrocomputing

4094 readers
28 users here now

Discussions on vintage and retrocomputing

founded 1 year ago
MODERATORS
top 13 comments
sorted by: hot top controversial new old
[–] [email protected] 2 points 3 months ago

Lol I watched the vid and it turns out the guy did the same thing with Windows 7 and nothing even happened. The article is such clickbait garbage and it gives cybersec a bad name.

[–] [email protected] 1 points 4 months ago* (last edited 4 months ago)

I've seen videos of people doing this for fun to see what happens.

Sadly now it's not even fun "for teh lulz" kinda compromise, either. Everything is just a million varieties of crypto miner or ransomware now.

[–] [email protected] 2 points 5 months ago

It's nothing new. I remember doing this for fun about 16 years ago, putting a WinXP machine on the internet with no firewall and waiting. Even back then, it was immediately hammered by traffic and quickly started doing dubious things.

[–] [email protected] 56 points 5 months ago

Well, no shit.

This would likely happen to any machine directly exposed to the internet that hosts any kind of service intended for local networks only... (which is the network stack on Windows, and has been so since 1990 with NetBEUI/NetBIOS), and has been intentionally left insecured to boot.

Hell, in the 90's we put windows desktops directly on the internet just to see what would happen (yea, our bosses would yell at us when they caught it). They didn't get hacked much or very fast then, which shows how much automated intrusion scripting is happening today.

Bunch of clickbait nonsense.

Local machines aren't servers. And servers aren't directly exposed to the internet without routers/firewalls/IPS/IDS, etc. The only devices that should be directly connected to the internet are edge routers. And even they should have very secure, layered setups to ensure malicious traffic can't transit to the LAN.

[–] [email protected] 30 points 5 months ago (3 children)

I wonder how many people still directly connect to the internet without a gateway. It seems sensational to say "INSTANTLY INFECTED" and then tiny print (in a way that nobody connects to the internet since 1999). But maybe I'm just ignorant to how large a market still use direct connection.

[–] [email protected] 3 points 5 months ago (1 children)

I saw someone suggest they connect their switch dock directly to the internet elsewhere on Lemmy. Granted the attack surface for a switch is basically non existent but if people are suggesting that then certainly people are still connecting their other machines directly to their modems/CPEs as well

[–] [email protected] 6 points 5 months ago (1 children)

That would be Nintendo themselves. The fools recommend port forwarding everything to the Switch.

How to Set Up a Router's Port Forwarding for a Nintendo Switch Console

[–] [email protected] 4 points 5 months ago* (last edited 5 months ago)

It’s not a DMZ, at Nintendo we say your Switch is now in Donkey Kong Country

[–] [email protected] 11 points 5 months ago (1 children)

The takeaway I think they were trying to give was that the same experiments done on a more modern OS does not have these same "instant" infections (they reference having windows 7 under the same conditions without any issue)

[–] [email protected] 11 points 5 months ago

What are they going to write about next, the dangers of unsigned drivers and how easily they infect Windows 98? lol

[–] [email protected] 20 points 5 months ago (1 children)

I doubt many people would do that. You would have to intentionally set it up that way. Residential ISPs almost always supply a modem with a built in router which will have a firewall. You would have to set it to bridge mode, enable the DMZ, or use your own modem.

I haven't connected a computer directly to the internet since I used dial-up.

[–] [email protected] 13 points 5 months ago (1 children)

I remember back in the days of broadband being brand new. Comcast insisted that you had to pay for each device that connected to the Internet. Using a router was considered against the TOS.

I do not miss those days.

[–] [email protected] 5 points 5 months ago

We had a router hooked up to our first RCA cable modem on Comcast, but then we were only comcast customers because they bought the company that originally hooked us up.

cable Companies though. Don’t miss cable internet at all. Fuck Comcast any decade.