SMBGhost (original) (raw)
SMBGhost (or SMBleedingGhost or CoronaBlue) is a type of security vulnerability, with wormlike features, that affects Windows 10 computers and was first reported publicly on 10 March 2020. A Proof-of-Concept (PoC) exploit code was published 1 June 2020 on GitHub by a security researcher. The code could possibly spread to millions of unpatched computers, resulting in as much as tens of billions of dollars in losses.
| Property | Value |
|---|---|
| dbo:abstract | SMBGhost (or SMBleedingGhost or CoronaBlue) is a type of security vulnerability, with wormlike features, that affects Windows 10 computers and was first reported publicly on 10 March 2020. A Proof-of-Concept (PoC) exploit code was published 1 June 2020 on GitHub by a security researcher. The code could possibly spread to millions of unpatched computers, resulting in as much as tens of billions of dollars in losses. Microsoft recommends all users of Windows 10 versions 1903 and 1909 and Windows Server versions 1903 and 1909 to install patches, and states, "We recommend customers install updates as soon as possible as publicly disclosed vulnerabilities have the potential to be leveraged by bad actors ... An update for this vulnerability was released in March [2020], and customers who have installed the updates, or have automatic updates enabled, are already protected." Workarounds, according to Microsoft, such as disabling SMB compression and blocking port 445, may help but may not be sufficient. According to the advisory division of Homeland Security, "Malicious cyber actors are targeting unpatched systems with the new [threat], ... [and] strongly recommends using a firewall to block server message block ports from the internet and to apply patches to critical- and high-severity vulnerabilities as soon as possible." (en) |
| dbo:wikiPageExternalLink | https://malwarehunterteam.com/ |
| dbo:wikiPageID | 64235449 (xsd:integer) |
| dbo:wikiPageLength | 5654 (xsd:nonNegativeInteger) |
| dbo:wikiPageRevisionID | 1079976373 (xsd:integer) |
| dbo:wikiPageWikiLink | dbc:2020_in_computing dbr:Homeland_Security dbr:Vulnerability_(computing) dbr:GitHub dbr:Proof_of_concept dbr:Windows_10 dbc:Computer_security dbr:Microsoft dbr:Exploit_(computer_security) |
| dbp:affectedSoftware | Windows 10 version 1903 and 1909, and Server Core installations of Windows Server, versions 1903 and 1909 (en) |
| dbp:discovered | 2019-11-04 (xsd:date) |
| dbp:discoverer | https://malwarehunterteam.com/ |
| dbp:name | SMBGhost (en) |
| dbp:patched | 2020-03-10 (xsd:date) |
| dbp:wikiPageUsesTemplate | dbt:Infobox_bug dbt:CVE dbt:Clear dbt:Portal_bar dbt:Reflist dbt:Short_description dbt:Start_date_and_age dbt:Use_dmy_dates dbt:Youtube dbt:Hacking_in_the_2020s |
| dct:subject | dbc:2020_in_computing dbc:Computer_security |
| rdfs:comment | SMBGhost (or SMBleedingGhost or CoronaBlue) is a type of security vulnerability, with wormlike features, that affects Windows 10 computers and was first reported publicly on 10 March 2020. A Proof-of-Concept (PoC) exploit code was published 1 June 2020 on GitHub by a security researcher. The code could possibly spread to millions of unpatched computers, resulting in as much as tens of billions of dollars in losses. (en) |
| rdfs:label | SMBGhost (en) |
| owl:sameAs | wikidata:SMBGhost https://global.dbpedia.org/id/BvazG |
| prov:wasDerivedFrom | wikipedia-en:SMBGhost?oldid=1079976373&ns=0 |
| foaf:isPrimaryTopicOf | wikipedia-en:SMBGhost |
| is dbo:wikiPageRedirects of | dbr:CoronaBlue dbr:SMBGhost_(security_vulnerability) dbr:SMBGhost_(computer_worm) dbr:SMBGhost_(worm) dbr:SMBleedingGhost |
| is dbo:wikiPageWikiLink of | dbr:CoronaBlue dbr:SMBGhost_(security_vulnerability) dbr:SMBGhost_(computer_worm) dbr:SMBGhost_(worm) dbr:SMBleedingGhost |
| is foaf:primaryTopic of | wikipedia-en:SMBGhost |