Vulnerabilities
EternalBlue (CVE-2017-0144)
Also known as: MS17-010, CVE-2017-0144
Definition
An NSA-developed exploit for a 2017 Microsoft SMBv1 remote code execution vulnerability, leaked by the Shadow Brokers and used by WannaCry and NotPetya.
Examples
- WannaCry ransomware worming through corporate Windows networks via EternalBlue.
- NotPetya wiping data after using EternalBlue to spread inside organisations.
Related terms
Ransomware
Malware that encrypts a victim's data or locks systems and demands payment in exchange for restoring access.
Wiper Malware
Destructive malware whose primary goal is to irreversibly erase or corrupt data, firmware, or boot records — not financial gain.
Computer Worm
Self-replicating malware that propagates across networks autonomously, without requiring a host file or user interaction.
CVE (Common Vulnerabilities and Exposures)
A public catalogue that assigns a unique identifier to each disclosed software or hardware vulnerability so they can be referenced unambiguously across the industry.
Known Exploited Vulnerability (KEV)
A CVE that the U.S. CISA confirms is being actively exploited and adds to its public KEV Catalog, triggering remediation deadlines for U.S. federal agencies.
Exploit
A piece of code, data, or technique that takes advantage of a vulnerability to cause unintended behaviour such as code execution, privilege escalation, or information disclosure.