CIA Malware Can Switch Clean Files With Malware When You Download Them via SMB

Discussion in 'malware problems & news' started by itman, Jun 1, 2017.

  1. itman

    itman Registered Member

    Joined:
    Jun 22, 2010
    Posts:
    4,753
    Location:
    U.S.A.
    https://www.bleepingcomputer.com/ne...-with-malware-when-you-download-them-via-smb/
     
  2. Umbra

    Umbra Registered Member

    Joined:
    Feb 10, 2011
    Posts:
    3,780
    Location:
    Europe then Asia
    ROFL ! this one is nasty...

    if i go on paranoid & Conspiracy mode: "this is why MS doesn't tell why we shouldn't disable SMB2.0/3.0 !!!! i knew it !!! " :D
     
  3. itman

    itman Registered Member

    Joined:
    Jun 22, 2010
    Posts:
    4,753
    Location:
    U.S.A.
    SysInternal's WinObj would be of assistance since it will show all file filter managers installed as noted in the below screen shot:

    WinObj.png
     
  4. itman

    itman Registered Member

    Joined:
    Jun 22, 2010
    Posts:
    4,753
    Location:
    U.S.A.
    Doubt this exploit will make it into widespread use due to this:
    https://arstechnica.com/security/20...-implant-turns-servers-into-malware-carriers/
     
Loading...