One Article Review
| Source |  TrendLabs Security |
|---|---|
| Identifiant | 370660 |
| Date de publication | 2017-06-02 08:10:33 (vue: 2017-06-02 08:10:33) |
| Titre | MS-17-010: EternalBlue\'s Large Non-Paged Pool Overflow in SRV Driver |
| Texte | The EternalBlue exploit took the spotlight this month as it became the tie that bound the spate of malware attacks these past few weeks-the pervasive WannaCry, the fileless ransomware UIWIX, the Server Message Block (SMB) worm EternalRocks, and the cryptocurrency mining malware Adylkuzz. EternalBlue (patched by Microsoft via MS17-010) is a security flaw related to how a Windows SMB 1.0 (SMBv1) server handles certain requests. If successfully exploited, it can allow attackers to execute arbitrary code in the target system. The severity and complexity of EternalBlue, alongside the other exploits released by hacking group Shadow Brokers, can be considered medium to high. We further delved into EternalBlue's inner workings to better understand how the exploit works and provide technical insight on the exploit that wreaked havoc among organizations across various industries around the world. Post from: Trendlabs Security Intelligence Blog - by Trend Micro MS-17-010: EternalBlue's Large Non-Paged Pool Overflow in SRV Driver |
| Notes | |
| Envoyé | Oui |
| Condensat | 010 010: across adylkuzz allow alongside among arbitrary around attackers attacks became better block blog bound brokers can certain code complexity considered cryptocurrency delved driver eternalblue eternalrocks execute exploit exploited exploits fileless flaw from: further group hacking handles havoc high how industries inner insight intelligence large malware medium message micro microsoft mining month ms17 non organizations other overflow paged past patched pervasive pool post provide ransomware related released requests security server severity shadow smb smbv1 spate spotlight srv successfully system target technical these tie took trend trendlabs uiwix understand various wannacry weeks windows workings works world worm wreaked |
| Tags | |
| Stories | Wannacry |
| Move | 
|
L'article ne semble pas avoir été repris aprés sa publication.
L'article ne semble pas avoir été repris sur un précédent.