{"id":3620,"date":"2020-03-20T07:35:17","date_gmt":"2020-03-20T07:35:17","guid":{"rendered":"https:\/\/www.neam.de\/?p=16866"},"modified":"2020-03-20T07:35:17","modified_gmt":"2020-03-20T07:35:17","slug":"crypotrojaner-v3-microsoft-empfiehlt-update","status":"publish","type":"post","link":"https:\/\/www.kai-wittenburg.de\/?p=3620","title":{"rendered":"Crypotrojaner v3? Microsoft empfiehlt Update"},"content":{"rendered":"<p>Seit Mitte M\u00e4rz 2020 existiert eine Schwachstelle im SMB-Protokoll (SMBv3) von Windows10 bzw. Windows Server Core Betriebssystemen, dadurch k\u00f6nnen Angreifer Code ausf\u00fchren (z. Bsp. auch Laufwerke verschl\u00fcsseln). Diese Schwachstelle bietet neuen Kryptotrojanern eine Basis zur Ausbreitung. Sophos zeigt in einem Proof of Concept, wie das durchgef\u00fchrt werden kann (<a href=\"https:\/\/twitter.com\/SophosLabs\/status\/1238138094768947200\">https:\/\/twitter.com\/SophosLabs\/status\/1238138094768947200<\/a> ). Folgender Patch wurde ver\u00f6ffentlicht (<a href=\"https:\/\/portal.msrc.microsoft.com\/en-US\/security-guidance\/advisory\/CVE-2020-0796\">https:\/\/portal.msrc.microsoft.com\/en-US\/security-guidance\/advisory\/CVE-2020-0796<\/a> ). Wir empfehlen, schnellstm\u00f6glich den Patch einzuspielen oder Konfigurations\u00e4nderungen auf den Systemen bzw. der Firewall vorzunehmen. Ob Kunden von dieser oder anderen aktuellen Schwachstellen betroffen sind, pr\u00fcfen wir in unseren Intranet-Penetratinstests.<\/p>\n<p>&nbsp;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Crypotrojaner v3? Schwachstellen im SMB-Protokoll von Windows-Betriebssystemen<\/p>\n","protected":false},"author":51,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[20,5,6,3,7,4,12,17,15,16,14,8],"tags":[],"class_list":["post-3620","post","type-post","status-publish","format-standard","hentry","category-blog","category-bsi","category-isms","category-isms-bsi-iso-27001","category-iso27001","category-notfallmanagement","category-penetrationstest","category-penetrationstests","category-risikomanagement","category-unternehmen","category-veranstaltungen","category-zertifizierung-audit"],"_links":{"self":[{"href":"https:\/\/www.kai-wittenburg.de\/index.php?rest_route=\/wp\/v2\/posts\/3620","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.kai-wittenburg.de\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.kai-wittenburg.de\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.kai-wittenburg.de\/index.php?rest_route=\/wp\/v2\/users\/51"}],"replies":[{"embeddable":true,"href":"https:\/\/www.kai-wittenburg.de\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=3620"}],"version-history":[{"count":2,"href":"https:\/\/www.kai-wittenburg.de\/index.php?rest_route=\/wp\/v2\/posts\/3620\/revisions"}],"predecessor-version":[{"id":3624,"href":"https:\/\/www.kai-wittenburg.de\/index.php?rest_route=\/wp\/v2\/posts\/3620\/revisions\/3624"}],"wp:attachment":[{"href":"https:\/\/www.kai-wittenburg.de\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=3620"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.kai-wittenburg.de\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=3620"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.kai-wittenburg.de\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=3620"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}