US-CERT warns of zero-day exploit of Windows

Η ομάδα United States Computer Emergency Readiness Team (US-CERT) προειδοποιεί με μια ανακοίνωσή της για ένα νέο exploit kit κιτ που αναπτύχθηκε από τη hacking ομάδα Shadow Brokers Το νέο exploit kit είναι for sale and targets Windows systems.

Earlier this week, rumors were released that wanted Shadow Brokers to try to sell a zero-day Windows for 750 Bitcoin, and US-CERT says it should take action immediately.
US-CERT

In its publication, the US-CERT states that the zero-day exploit targets a που είναι είναι διαθέσιμη σε όλα τα συστήματα των Windows μέσω του χαρακτηριστικού Server Message Block (SMB). Μια επιτυχής επίθεση επιτρέπει σε έναν εισβολέα να αποκτήσει ευαίσθητες from the affected systems.

The team recommends Windows administrators to disable SMB v1 and block all versions of SMB at the network boundary by locking the s TCP 445 along with all associated protocols on UDP ports 137-138 and the TCP 139, for all devices, even if the above measures could obviously have an impact on the smooth operation of the system.

For the time being, however, it is important to note that there is still no confirmation of this zero-day in Windows, by Microsoft itself that does not seem to know that there is an unpatched vulnerability.

https://www.us-cert.gov

iGuRu.gr The Best Technology Site in Greecefgns

every publication, directly to your inbox

Join the 2.100 registrants.

Written by giorgos

George still wonders what he's doing here ...

Leave a reply

Your email address is not published. Required fields are mentioned with *

Your message will not be published if:
1. Contains insulting, defamatory, racist, offensive or inappropriate comments.
2. Causes harm to minors.
3. It interferes with the privacy and individual and social rights of other users.
4. Advertises products or services or websites.
5. Contains personal information (address, phone, etc.).