• BearOfaTime@lemm.ee
    link
    fedilink
    arrow-up
    59
    arrow-down
    2
    ·
    6 months ago

    Well, no shit.

    This would likely happen to any machine directly exposed to the internet that hosts any kind of service intended for local networks only… (which is the network stack on Windows, and has been so since 1990 with NetBEUI/NetBIOS), and has been intentionally left insecured to boot.

    Hell, in the 90’s we put windows desktops directly on the internet just to see what would happen (yea, our bosses would yell at us when they caught it). They didn’t get hacked much or very fast then, which shows how much automated intrusion scripting is happening today.

    Bunch of clickbait nonsense.

    Local machines aren’t servers. And servers aren’t directly exposed to the internet without routers/firewalls/IPS/IDS, etc. The only devices that should be directly connected to the internet are edge routers. And even they should have very secure, layered setups to ensure malicious traffic can’t transit to the LAN.

  • Peffse@lemmy.world
    link
    fedilink
    arrow-up
    31
    ·
    6 months ago

    I wonder how many people still directly connect to the internet without a gateway. It seems sensational to say “INSTANTLY INFECTED” and then tiny print (in a way that nobody connects to the internet since 1999). But maybe I’m just ignorant to how large a market still use direct connection.

    • cmnybo@discuss.tchncs.de
      link
      fedilink
      English
      arrow-up
      21
      ·
      6 months ago

      I doubt many people would do that. You would have to intentionally set it up that way. Residential ISPs almost always supply a modem with a built in router which will have a firewall. You would have to set it to bridge mode, enable the DMZ, or use your own modem.

      I haven’t connected a computer directly to the internet since I used dial-up.

      • CosmicTurtle0@lemmy.dbzer0.com
        link
        fedilink
        English
        arrow-up
        13
        ·
        6 months ago

        I remember back in the days of broadband being brand new. Comcast insisted that you had to pay for each device that connected to the Internet. Using a router was considered against the TOS.

        I do not miss those days.

        • ThatKomputerKat@lemmy.world
          link
          fedilink
          arrow-up
          5
          ·
          6 months ago

          We had a router hooked up to our first RCA cable modem on Comcast, but then we were only comcast customers because they bought the company that originally hooked us up.

          cable Companies though. Don’t miss cable internet at all. Fuck Comcast any decade.

    • brian@lemmy.ca
      link
      fedilink
      arrow-up
      11
      ·
      6 months ago

      The takeaway I think they were trying to give was that the same experiments done on a more modern OS does not have these same “instant” infections (they reference having windows 7 under the same conditions without any issue)

      • Peffse@lemmy.world
        link
        fedilink
        arrow-up
        13
        arrow-down
        1
        ·
        6 months ago

        What are they going to write about next, the dangers of unsigned drivers and how easily they infect Windows 98? lol

    • TORFdot0@lemmy.world
      link
      fedilink
      English
      arrow-up
      3
      ·
      6 months ago

      I saw someone suggest they connect their switch dock directly to the internet elsewhere on Lemmy. Granted the attack surface for a switch is basically non existent but if people are suggesting that then certainly people are still connecting their other machines directly to their modems/CPEs as well

  • floofloof@lemmy.ca
    link
    fedilink
    English
    arrow-up
    2
    ·
    6 months ago

    It’s nothing new. I remember doing this for fun about 16 years ago, putting a WinXP machine on the internet with no firewall and waiting. Even back then, it was immediately hammered by traffic and quickly started doing dubious things.

  • LainTrain@lemmy.dbzer0.com
    link
    fedilink
    arrow-up
    2
    ·
    4 months ago

    Lol I watched the vid and it turns out the guy did the same thing with Windows 7 and nothing even happened. The article is such clickbait garbage and it gives cybersec a bad name.

  • MonkeMischief@lemmy.today
    link
    fedilink
    arrow-up
    1
    ·
    edit-2
    5 months ago

    I’ve seen videos of people doing this for fun to see what happens.

    Sadly now it’s not even fun “for teh lulz” kinda compromise, either. Everything is just a million varieties of crypto miner or ransomware now.