- Messages
- 5,001
- Edit My Images
- Yes
this is not necessarily true. they quite often are security updates because they have found a security flaw/hole and are fixing it. By NOT installing the updates, you are leaving yourself potentially open. This was a major part of the recent ransomware attack where the systems didn't have the latest patches.
In fact the Wannacry attack was through open ports on routers (specifically port 445) which is used for Microsoft's file sharing using its "Server Message Blocks" (SMB)
The attackers did not need to send malicious e-mails all they had to do was scan the internet using a scanner such as Shodan and when they found an open port send it Wannacry.
See more details here:
http://www.computerworld.com/articl...ed-defense-against-wannacry-and-adylkuzz.html
and here:
https://www.grc.com/port_445.htm
But on my surfing PC no ports are open.
As a first defense I do not use Wi-Fi, my Internet dongle is connected directly to my router which is then wired directly to my PC.
I also use a VPN (Security Kiss) both on my real PC and in my VMs.
I also regularly check my port security using "Shields UP":
https://www.grc.com/x/ne.dll?bh0bkyd2
This shows that ALL my ports are always shielded and thus no malicious software, like Wannacry, can get onto my machine.
I also do not have any browsers on my PC, all my browsing is done inside VMs protected by a VPN and a free copy of Avast, which also runs on my "real" PC.
I am writing this on my "Photography" VM and when finished it will be shut down giving no way for anyone or anything to attack me.
My PC is also totally encrypted with triple encryption and a very long password.