Sunday, February 21, 17:17
Home security More than 100.000 devices are vulnerable to SMBGhost vulnerabilities

More than 100.000 devices are vulnerable to SMBGhost vulnerabilities

According to a new research, over 100.000 computers are still vulnerable to a vulnerability of Windows known as SMBGhost. The number is extremely large, given that has released a patch for half a year.

More than 100.000 devices are vulnerable to SMBGhost vulnerabilities

The SMBGhost vulnerability is also known as CVE-2020-0796 and has received a score of 10 on the Vulnerability Scale. Therefore, this is a critical vulnerability, which, however, was corrected in March 2020 with an emergency update. A few weeks later, information was released on how vulnerabilities could be used to gain more privileges in a vulnerable system.

In addition, two months later, he was released proof-of-concept (PoC) code for Remote Code Execution (RCE). A little later, the first ones were observed attacks exploiting the SMBGhost vulnerability.

However, according to him Jan Kopriva, head of the group ALEFs Computer Security Incident Response Team (CSIRT) and its member SANS ISC, the vulnerability received the attention it needed when PoC was discovered and released, but Shodan searches show that more than 100.000 systems are still vulnerable to error SMBGhost.

The Shodan is often used to detect systems affected by a particular vulnerability.

"If Shodan's detection mechanism is accurate, it appears that there are still more than 103.000 vulnerable machines accessible from Internet", Says the researcher.

According to Securityweek, the data collected by Shodan over the past eight months show that, a few months ago, vulnerability efforts were intense, but have recently declined significantly, leaving many systems vulnerable.

The researcher also found that Taiwan is the country with the most vulnerabilities Appliances. Next are Japan, Russia, the USA, India and Brazil.

More than 100.000 devices are vulnerable to SMBGhost vulnerabilities

"It is difficult to say why there are still so many uninformed machines. Η Microsoft an emergency vulnerability fix has been released  CVE-2020-0796. It was not part of the usual correction package on Tuesday (patch Tuesday), but that was the only unusual thing and it does not make sense to be the reason for not application of information in so many systems", Notes the researcher.

Finally, Kopriva points out that if the Shodan is a really expensive tool, we should be concerned about the huge number of vulnerable devices, since SMBGhost vulnerability is "wormable" and allows code execution.


Please enter your comment!
Please enter your name here

Digital Fortress
Digital Fortress
Pursue Your Dreams & Live!


How to add special effects to Instagram messages

Did you know that you can make instant Instagram messages more impressive? Like any other Instagram feature, you can add special ...

Only 270 addresses are responsible for 55% of all money laundering

Cybercriminals who keep their money in cryptocurrencies tend to "launder" money through a small set of online services, according to ...

Twitter: Voice messages are coming! How do we send them?

Twitter will soon support voice messages in both iOS and Android applications. This means that you will be able to send ...

How to connect a Bluetooth headset to a Nintendo Switch

The Nintendo Switch has a headphone jack. However, most headphones have become wireless so you will need a way to connect them ...

How to hide your phone number in Telegram

If you wish to create a Telegram account, you must provide your telephone number. In this way, Telegram validates the ...

Google Assistant: How can you delete your recordings?

Google Assistant can make your daily life much easier. However, it also involves some privacy issues, as ...

Microsoft: Office 2021 / Office LTSC coming in the second half of 2021

Microsoft announced that the Microsoft Office Long Term Service Channel (LTSC) and Office 2021 will be released in 2021, for ...

How to quickly create QR codes with Bing

If you ever need to create a QR code, but you do not know how, Microsoft has an easy-to-use tool available in any program ...

Brave: Onion addresses leaked to DNS traffic

The Tor function included in the Brave web browser, allows users to access .onion dark web domains within ...

What are the 6 most known attacks on gaming companies?

A few days ago, the gaming company Big Huge Games informed the players that it was the victim of an attack, which affected its data ...