Oh FFS
I've spend the whole morning fire fighting a executive management that are in abject panic over this. Despite the facts that we
1) Have no windows XP left
2)Patched MS17-010 over a month ago
3)Have tweaked the security appliances to catch this stuff
4) Issues alerts on Friday and primed the helldesk
and ultimately, we've had no fucking incident!
It's almost like they're upset nothing has happened. FFs we had more bother with the emotet version the week before. This didn't even register it was a non-event.
And I must say how much I'm enjoying every department in the company trying to climb on the infosec bandwagon all of a sudden. It's almost like they can smell resources and influence or something. Strangely they're nowhere to be seen when it's risk assessment or PIA time.