Many Windows running devices are still vulnerable against the National Security Agency-EternalBlue, all because they haven’t been patched yet.
For those who don’t know, EternalBlue is an exploit, which the Shadow Brokers hacking group stole from the NSA-linked Equation Group; the exploit is best known for its role in the WannaCry globally outbreak in 2017.
WannaCry affected mostly Windows 7 and Windows XP machines. The malware has spread using a vulnerability in Windows’ Server Message Block (SMB) on port 445, which mainly impacted those platform iterations.
A month after the outbreak Microsoft released a patch for the vulnerability it devices, yet hundreds of thousands of systems continue to be vulnerable today. All the unpatched systems remain exposed to any malware that abuses the EternalBlue exploit.
Remember everything can be hacked. In order to stay away from any threats related to the cyber world, we recommend the install of antivirus for Windows or antivirus for Mac on every device that you own, depending on which OS your device is running. If you are a company, it is also recommended to hire every year a specialized cybersecurity company that will run annual tests on your company’s network. These tests include penetration testing and ethical hacking tests;
The number of systems that are still unpatched is outrageously high. The only explanation for this situations is that many of the systems that have been infected multiple times were found to run activation cracks, meaning that they did not receive Microsoft’s patches and probably never will on the current state.
If a system doesn’t have the official patch installed it should have at least the older SMB1 protocol entirely turn off in order to stay protected.
The top 10 EternalBlue impacted countries are Indonesia, Taiwan, Vietnam, Thailand, Egypt, Russia, China, Philippines, India, and Turkey. According to studies, this situation in this countries is normal because the unlicensed software rates are of around 52 – 60%. In the United States and the European Union, the rates are of only 16% and 28%, respectively.
Keep in mind: Always use licensed software, the unlicensed one is usually unable to get the latest patches against vulnerabilities such as EternalBlue.
We would continue to monitor this cyber problem. Meanwhile, users should keep a keen eye out for any cyber attacks. Remember to use an antivirus for Windows or antivirus for Mac in every device that you own, depending on which OS your machine is running, If you are a company we recommend to hire every year a specialized cybersecurity company that will run annual tests on your company’s network, tests like this include: penetration testing and ethical hacking.