Total Downloads

2,586,389

Total Files

9,224

Latest Update

10

More Shadow Brokers fallout: DoublePulsar zero-day infects scores of Windows PCs

Posted April 24, 2017 | Windows


Ten days ago, the group known as Shadow Brokers released a pile of exploits, apparently developed by the NSA. After an initial period of dire predictions that the Windows sky was falling, Microsoft reassured us that most of the exploits were covered by the MS17-010 patch released back in March.

Yesterday, a report released by malware sleuths Below0day says that more than 5 million machines are exposed, of which 56,000 are infected by the DoublePulsar malware, although Dan Goodin at Ars Technica reports that Microsoft is skeptical of the numbers.

DoublePulsar gets in through a Shadow Brokers-leaked program called EternalBlue, and it works much like a backdoor, acting as a stepping stone to further exploits. At this point you should be concerned about all of the Shadow Brokers trove, but DoublePulsar has the potential to infect a lot of machines in very short order. Right now, it’s infecting Windows machines that don’t have MS17-010 installed, but are open to internet traffic through port 445.

It’s important to realize that you don’t have to do a thing in order to get infected. If you’re running Windows and haven’t installed MS17-010 and your machine can be accessed through port 445, you’re a sitting duck.



Source link

')
ankara escort çankaya escort çankaya escort escort bayan çankaya istanbul rus escort eryaman escort ankara escort kızılay escort istanbul escort ankara escort ankara escort escort ankara istanbul rus Escort atasehir Escort beylikduzu Escort Ankara Escort malatya Escort kuşadası Escort gaziantep Escort izmir Escort