The United team States Computer Emergency Readiness Team (US-CERT) warns with an announcement about a new exploit kit kit developed by the hacking group Shadow Brokers The new exploit kit is available for sale and targets systems with Windows.
Earlier this week, rumors were released that wanted Shadow Brokers to try to sell a zero-day Windows for 750 Bitcoin, and US-CERT says it should take action immediately.
In its publication, US-CERT reports that zero-day exploit targets a vulnerability that is available on all Windows systems through the Server Message Block (SMB) feature. A successful attack allows an attacker to obtain sensitive information from affected systems.
The team recommends Windows administrators to disable SMB v1 and block all versions of SMB at the network boundary by blocking TCP port 445 along with all related protocols on UDP ports 137-138 and TCP port 139; for all devices, even if the above measures could obviously have an impact on smoothness mode of the system.
For the time being, however, it is important to note that there is still no confirmation of this zero-day in Windows, by Microsoft itself that does not seem to know that there is an unpatched vulnerability.