Just a personal matter, but my wife is in the hospital. I reached the point where I couldn’t sit in the room anymore, so I went for a walk. After WannaCry last week, I was a little curious as to the hospital’s cybersecurity posture.
The computers I’ve seen are running an application that obscures the actual operating system. But, the application has a Windows 4.x look to it (Windows 4.x includes 95, NT, 98, ME, and 2000). However, you can skin XP, Vista, and 7 to the “Classic” Windows look. Maybe Windows 8, but I don’t know because I’ve never done it.
But as I was walking the halls, I saw a computer sitting there, unlocked, without the application running. And it was exactly what I expected: Windows XP, which went out of support 4 years ago.
That hospital is vulnerable as hell. It’s like they’re trying to get infected.
I’m sure they’ll say it’s not in the budget, but is cleaning up the aftermath of a ransomware infection in the budget? I guess so.