Patch by Microsoft has been released and now it has to be deployed. Service providers and users have to install the fix as it becomes available for the operating systems, networked appliances and software they use. This security update resolves vulnerabilities in Microsoft Windows. The most severe of the vulnerabilities could allow remote code execution if an attacker sends specially crafted messages to a Microsoft Server Message Block 1.0 (SMBv1) server. To learn more about the vulnerability, see Microsoft Security Bulletin MS17-010.
Download link to patch your PC / ServerWannaCry; Wannacrypt; MS017-010 ETERNAL BLUE; Patch
Windows 7
32 bit
http://download.windowsupdate.com/d/msdownload/update/software/secu/2017/02/windows6.1-kb4012212-x86_6bb04d3971bb58ae4bac44219e7169812914df3f.msu
64 bit
http://download.windowsupdate.com/d/msdownload/update/software/secu/2017/02/windows6.1-kb4012212-x64_2decefaa02e2058dcd965702509a992d8c4e92b3.msu
Windows Vista
32 bit
http://download.windowsupdate.com/d/msdownload/update/software/secu/2017/02/windows6.0-kb4012598-x86_13e9b3d77ba5599764c296075a796c16a85c745c.msu
64 bit
http://download.windowsupdate.com/d/msdownload/update/software/secu/2017/02/windows6.0-kb4012598-x64_6a186ba2b2b98b2144b50f88baf33a5fa53b5d76.msu
Windows 8
32 bit
http://download.windowsupdate.com/c/msdownload/update/software/secu/2017/03/windows8.1-kb4012216-x86_d4facfdaf4b1791efbc3612fe299e41515569443.msu
64 bit
http://download.windowsupdate.com/d/msdownload/update/software/secu/2017/03/windows8.1-kb4012216-x64_cd5e0a62e602176f0078778548796e2d47cfa15b.msu
Microsoft Security Patch Download
Windows Server 2008 R2
Ithanium (x86 based)
http://download.windowsupdate.com/c/msdownload/update/software/secu/2017/02/windows6.1-kb4012212-ia64_93a42b16dbea87fa04e2b527676a499f9fbba554.msu
64 bit
http://download.windowsupdate.com/d/msdownload/update/software/secu/2017/02/windows6.1-kb4012212-x64_2decefaa02e2058dcd965702509a992d8c4e92b3.msu
Windows Server 2012 R2
/cdn.vox-cdn.com/uploads/chorus_image/image/49292097/bsodwindows10.0.0.jpg "Microsoft")
http://download.windowsupdate.com/c/msdownload/update/software/secu/2017/04/windows8.1-kb4015550-x64_516ecbc130cb85fe3ae74f04c9f2cc791b669012.msu
Windows Embedded Standard 7 (Handheld)
32 bit
http://download.windowsupdate.com/d/msdownload/update/software/secu/2017/02/windows6.1-kb4012212-x86_6bb04d3971bb58ae4bac44219e7169812914df3f.msu
64 bit
http://download.windowsupdate.com/d/msdownload/update/software/secu/2017/02/windows6.1-kb4012212-x64_2decefaa02e2058dcd965702509a992d8c4e92b3.msu
For detail Microsoft Security Bulletin MS17-010 - Critical, click here
Eternal Blues is a free EternalBlue vulnerability scanner. It helps finding the blind spots in your network, these endpoints that are still vulnerable to EternalBlue.
Just hit the SCAN button and you will immediately start to get which of your computers are vulnerable and which aren’t. That’s it.
If you wish, you can switch networks, or edit your own (yeah, you can also scan the world wide web if you wish). Please use it for good cause only. We have enough bad guys already…
Follow for latest updates
Eternal Blue Patch Windows 7
Was this tool tested in real networks?
Oh yeah. Obviously I cannot say which, but with almost every network I connected to, there were a few vulnerable computers.
IMPORTANT: It does *not* exploit the vulnerability, but just checks whether it is exploitable.
July 12, 2017: Worldwide statistics are available
August 7, 2017: Stats explained
Yet another vulnerability scanner?
There are many vulnerability scanners out there. So… why did I create another? Mainly for the ease of use. The majority of latest WannaCry, NoPetya (Petya, GoldenEye or whatever) victims, are not technical organizations and sometimes just small business who don’t have a security team, or even just an IT team to help them mitigate this. Running NMap, Metasploit (not to mention more commercial products) is something they will never do. I aimed to create a simple ‘one-button’ tool that tells you one thing and one thing only – which systems are vulnerable in your network.
Notes
This is a free tool provided for your benefit & security. I don’t charge for it. It is here to help you and also to help me getting worldwide statistics. Learn more about it.
Tips
- If you’re about to run it in your working environment, please update the IT/Security team in advance. You don’t want to cause (IDS/IPS/AV) false alarms
If vulnerable systems were found – please take a Windows update asap
- For God’s sake, please disable SMBv1 already. Whether your systems are patched or not. This protocol was written over 3 decades ago…!
- If you would like to enjoy the tool but disallow sending anonymous statistics (which is so uncool), disable access to my website
Final words
I really hope this can help people and organizations protecting against the next attack.
This is a no-guarantees-use-at-your-own-risk tool.
Special thanks to Jonathan Smith for his contribution!
Please share your feedback –
- Twitter: Omerez
- LinkedIn: Elad Erez
- Email: EternalBlues!omerez.com (replace ‘!’ with ‘@’)
- Comment below