Threat Post

No Evidence of GandCrab Leveraging SMB Exploit – Yet

Researchers found a new version of GandCrab – but no evidence that the ransomware is using the same SMB exploit as Wannacry. A new version of the evolving ransomware threat GandCrab has been ...
Computer Weekly

Leaked SMB exploits make malware powerful, warns Cylance

Exploits of Microsoft’s server message block (SMB) protocol have been an “unmitigated success” for malware writers, according to researchers at security firm Cylance. In April 2017, the Shadow Brokers ...
Dark Reading

Windows SMB Zero-Day Exploit On The Loose

US-CERT and other organizations Friday warned of a zero-day memory corruption bug in several versions of Microsoft Windows that could allow a remote attacker to cause a vulnerable system to crash and ...
ZDNet

Prometei botnet exploits Windows SMB to mine for cryptocurrency

A new botnet has been spotted in the wild which exploits the Microsoft Windows SMB protocol to move laterally across systems while covertly mining for cryptocurrency. In a report shared with ZDNet, on ...
Infosecurity-magazine.com

New Ransomware Rumored to Spread SMB Exploit

Within two days of news that GandCrab 4.0 ransomware was being distributed by compromising websites disguised as download sites for cracked applications, a newer version (v4.1) was found using the ...
Bleeping Computer

Metasploit 6.2.0 improves credential theft, SMB support features, more

Metasploit 6.2.0 has been released with 138 new modules, 148 new improvements/features, and 156 bug fixes since version 6.1.0 was released in August 2021. Metasploit is a penetration testing framework ...
Redmond Magazine

CISA Warns that Windows SMB 3 Exploit Code Now Published

Functional proof-of-concept code for a Server Message Block (SMB) 3.1.1 vulnerability in newer Windows systems has been published, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) ...