LinkBack URL
About LinkBacksRead more.But everything should be back to normal by now.
Read more.But everything should be back to normal by now.
Right, so who was looking at naughty pics on the fab then?
So to summarise...
Computer virus shuts down production facilities on Friday evening. By Saturday evening, everything was almost back to normal!
Must be a slow news week at Bloomberg!
However, taking tongue out of cheek, any disruption in production facilities at a fabrication plant can have severe repercussions, and it isn't surprising that TSMC were reticent about the financial consequences,
Which makes one wander why they are using software that is virus prone, and if they had to use it, why they didn't have better protection in place, or a business continuity plan that allows for that eventuality?
(\__/)
(='.'=)
(")_(")
Been helped or just 'Like' a post? Use the Thanks button!
My broadband speed - 750 Meganibbles/minute
UPDATE:
The FT reports (paywall) that there will be a $255m hit to TSMC's revenue and delays to chip shipments due to the virus incident.
https://www.ft.com/content/2fe5e096-...2-5946bae86e6d
peterb (06-08-2018)
Expensive mis-clickOriginally Posted by mtyson
Main PC: Asus Rampage IV Extreme / 3960X@4.5GHz / Antec H1200 Pro / 32GB DDR3-1866 Quad Channel / Sapphire Fury X / Areca 1680 / 850W EVGA SuperNOVA Gold 2 / Corsair 600T / 2x Dell 3007 / 4 x 250GB SSD + 2 x 80GB SSD / 4 x 1TB HDD (RAID 10) / Windows 10 Pro, Yosemite & Ubuntu
HTPC: AsRock Z77 Pro 4 / 3770K@4.2GHz / 24GB / GTX 1080 / SST-LC20 / Antec TP-550 / Hisense 65k5510 4K TV / HTC Vive / 2 x 240GB SSD + 12TB HDD Space / Race Seat / Logitech G29 / Win 10 Pro
HTPC2: Asus AM1I-A / 5150 / 4GB / Corsair Force 3 240GB / Silverstone SST-ML05B + ST30SF / Samsung UE60H6200 TV / Windows 10 Pro
Spare/Loaner: Gigabyte EX58-UD5 / i950 / 12GB / HD7870 / Corsair 300R / Silverpower 700W modular
NAS 1: HP N40L / 12GB ECC RAM / 2 x 3TB Arrays || NAS 2: Dell PowerEdge T110 II / 24GB ECC RAM / 2 x 3TB Hybrid arrays || Network:Buffalo WZR-1166DHP w/DD-WRT + HP ProCurve 1800-24G
Laptop: Dell Precision 5510 Printer: HP CP1515n || Phone: Huawei P30 || Other: Samsung Galaxy Tab 4 Pro 10.1 CM14 / Playstation 4 + G29 + 2TB Hybrid drive
Indeed - maybe they'll install some AV applications - or use less vulnerable software!Expensive mis-click
(\__/)
(='.'=)
(")_(")
Been helped or just 'Like' a post? Use the Thanks button!
My broadband speed - 750 Meganibbles/minute
Intel must have had a very happy weekend!!
Why were they using Windows on a fabrication machine.
Who forgot to renew their AV subscription.
It happens to the best of us...this is such ripe ground for puns, jokes, and poking fun at.
Maybe their systems are running XP and aren't supported by their AV any moreWho forgot to renew their AV subscription.
I've seen trouble spread around a factory on a USB stick more than once, you don't need iffy websites involved. My factory systems always run Linux, not because it is more secure but because people don't tend to mess with it and "just use it to do this for a minute, no-one will mind".
We have several manufacturing clients whose manufacturing and fabrication systems for the electrical and manufacturing components were built and deployed over 10 years ago. They provide components to the military, Bugatti, Ford, Mclaren and others and every piece of machinery is run by XP systems. They also pay the $5 million a year to Microsoft for extended XP security patch support.
I was actually flying to visit them to upgrade their Firewall and assist with a network upgrade/shakeup on that fateful day...Friday 12th May. The news broke as the plane left the airport and i spent 3 hours worried i was about to walk into our Customer and it being WW3.
Luckily, their users weren't being idiots that day, they blocked all downloads temporarily until they updated all 450 XP machines. There was evidence that a few machines had early infection signs but were stamped out by their highly efficient IT team killing port 445 on all network switches. The only thing that prevented WannaCry getting into the fab network was an network separation that only allowed only specific port sets of which 445 was not one.
The reason they still have XP is because no one is updating the fab software anymore, they will basically have to do it all in house or acquire retainer services of a developer to update the software to win7/10.
What I'm getting at is that fab networks are so high value per minute that any disruption or issues costs bug bucks (as exampled here in the article). Try telling a bean counter that you need to spend a few 100 million to update all the software that could disrupt the entire manufacturing process. Their response will be "it's working now? Why? Gtfo". Then the bean counter will blame the IT security team for something they tried to resolve for a couple of hundred mil and instead because it wasn't sorted and they have lost a couple of hundred mil.
We, and our AV vendor of choice, have pretty much a standing order that any environments containing XP or Server 2003 are insecure and we will officially state with the customer acceptance signature that if it's networked, we and the vendor take no responsibility for the health of the business.
TSMC is a massive fab business, I'm keeping my foil hat at a kilter because the amount of money they'd be throwing at netsec would be more than most business' yearly revenue. My feet are firmly planted in the suspicious camp.
Update 2:
"The fab tools, automated handling systems and other equipment infected, all run unpatched Windows 7" said company CEO CC Wei!
Surprised they're Win7 but not surprised they're unpatched
There are currently 1 users browsing this thread. (0 members and 1 guests)
Posting Permissions
Reply With Quote