Researchers Created a Port to Use ETERNALBLUE Exploit Against Windows 10 Devices

Researchers at RiskSense developed a proof-of-concept exploit that uses ETERNALBLUE, the exploit that facilitated the WannaCry ransomware outbreak, to target Windows 10 machines. The demonstrated exploit only affects systems that have not been updated with the Redstone 1 release from April of 2016. The researchers reduced the file size by 20 percent and were able to use ETERNALBLUE without the DOUBLEPULSAR implant component, allowing anyone to deliver their custom payloads. The RiskSense report includes details necessary for organizations to create detection rules. The NJCCIC recommends all users and administrators maintain up-to-date versions of hardware and software to mitigate exploits of known and patched vulnerabilities.