After last year’s Service Message Block (SMB) ultra-shock, this year a new denial-of-service vulnerability is discovered in SMBv3 which can be exploited to crash Windows 8.1 and Windows Server 2012 R2 machines with a single packet. This vulnerability has been assigned CVE-2018-0833. Technical Jargon: The negotiation of the SMBv3 session always starts with an […]

Read More →

SMBLoris is a remote, unauthenticated application-level denial of service (DoS) attack against Microsoft Windows operating systems. It is caused by a very old memory-handling bug in the Server Message Block (SMB) network protocol implementation. The vulnerability lies in the way SMB packets are processed and memory is allocated. It was discovered by two RiskSense security researchers — Sean […]

Read More →

In the first week of April 2017, an unknown hacking group called Shadow Brokers leaked an exploitation framework referred as the FuzzBunch, from the Equation Group (one of the most sophisticated attack groups in the world and widely suspected of being tied to the United States National Security Agency (NSA)). This framework consisted of several unauthenticated […]

Read More →