US-CERT warns of zero-day exploit of Windows


United States Computer Emergency Readiness Team (US-CERT) warns of a new exploit kit kit developed by Shadow Brokers hacking team The new exploit kit is available for sale and targets Windows systems.

Earlier this week, rumors were released that wanted Shadow Brokers to try to sell a zero-day Windows for 750 Bitcoin, and US-CERT says it should take action immediately.
US-CERT

In its publication, US-CERT reports that zero-day exploit targets a vulnerability that is available on all Windows systems through the Server Message Block (SMB) feature. A successful attack allows an attacker to obtain sensitive information from affected systems.

The team recommends Windows administrators to disable SMB v1 and block all SMB versions on the network limit by blocking the TCP 445 port along with all the relevant protocols on the UDP 137-138 ports and the TCP 139 port, for all devices, even if the above measures could obviously have an impact on the proper functioning of the system.

For the time being, however, it is important to note that there is still no confirmation of this zero-day in Windows, by Microsoft itself that does not seem to know that there is an unpatched vulnerability.

https://www.us-cert.gov

Registration in iGuRu.gr via Email

Enter your email to subscribe to the email notification service for new posts.


Read them Technology News from all over the world, with the validity of iGuRu.gr

Follow us on Google News iGuRu.gr at Google news