NetBIOS resurrection

The ransomware incident is believed to related to a Microsoft Windows Vulnerability (MS17-010 – Critical) affecting Microsoft Windows SMB Server from Windows 2008 to Win7. The attack is on Microsoft Server Message Block 1.0 (SMBv1) server. When I was an IT aduitor in banks, I always asked for justifications on using SMB services and opening of port …

NetBIOS resurrection Read More »