About this tag
The server message block (SMB) protocol is a network file sharing protocol used by Windows systems. On WindowsForum.com, discussions cover security vulnerabilities and malware related to SMB. One thread details a joint DHS and FBI alert about the Brambul SMB worm, part of North Korean cyber activity, which spreads via SMB. Another thread addresses Microsoft security update MS15-083, which fixes a remote code execution vulnerability in SMB. These posts highlight SMB as a vector for malware propagation and the importance of applying security patches to protect Windows networks.
-
TA18-149A: HIDDEN COBRA – Joanap Backdoor Trojan and Brambul Server Message Block Worm
Original release date: May 29, 2018 Systems Affected Network systems Overview This joint Technical Alert (TA) is the result of analytic efforts between the Department of Homeland Security (DHS) and the Federal Bureau of Investigation (FBI). Working with U.S. government partners, DHS and FBI...- News
- Thread
- brambul brute force cybersecurity dhs fbi hidden cobra indicators of compromise intrusion detection ip address joanap malware mitigation network defense network security remote access security server message block trojan worm
- Replies: 0
- Forum: Security Alerts
-
MS15-083 - Important: Vulnerability in Server Message Block Could Allow Remote Code...
Severity Rating: Important Revision Note: V1.0 (August 11, 2015): Bulletin published. Summary: This security update resolves a vulnerability affected software Microsoft Windows. The vulnerability could allow remote code execution if a user opens a specially crafted file that invokes the...- News
- Thread
- extended security updates microsoft ms15-083 remote code execution revision note sandboxed application server message block vulnerability windows
- Replies: 0
- Forum: Security Alerts