- EternalDarkness or SMBGhost is the latest vulnerability affecting the Microsoft SMB protocol which was first reported in March 2020
- This is high-severity threat because SMB vulnerabilities very-often are quickly adopted by “wormified” malicious attacks. As-of publishing of this post, PoCs exist for DoS and local privilege escalation
- Bitdefender Hypervisor Introspection stops the local privilege escalation 0-day attack without any additional configurations or updates. See the Demo below.
Article Link: http://feedproxy.google.com/~r/BusinessInsightsInVirtualizationAndCloudSecurity/~3/mQpe-179iLI/hypervisor-introspection-blocks-eternaldarkness-smbghost-privilege-escalation-exploit