MyCERT Advisories

MyCERT Advisories, Alerts and Summaries for the year 2017

MA-654.042017: MyCERT Alert – Microsoft Addresses Shadow Brokers Exploits

Date first published: 18/4/2017

1.0 Introduction
Recently, an attacker group known as The Shadow Brokers, publicly released a large number of exploit tools targeting Microsoft Windows.

The Microsoft Security Response Center (MSRC) has published information on several recently publicised exploit tools, which affected various Microsoft products.

2.0 Impact
Exploitation of these vulnerabilities could potentially allow a remote attacker to take control of the affected system. Users and administrators are reminded that software no longer supported by Microsoft (also known as end-of-life (EOL) software) is particularly at risk for exploitation. Most of the exploits are already patched in Microsoft’s supported products.

For more information on EOL Microsoft products, kindly refer to below URL:
 Microsoft Ending Support for Windows XP and Office 2003, 
 Microsoft Ending Support for Windows Server 2003, 

3.0 Affected Products
 Microsoft End-of-Life (EOL) products
 Microsoft Windows 7, 2008, 8 and 2012

4.0 Recommendation
MyCERT recommends retiring all the EOL products. Users and administrators may any necessary updates by reviewing the information published by Microsoft Security Response Center (MSRC) are per below URL:

Generally, MyCERT advises the users of this software to be updated with the latest security announcements by the vendor and follow best practice security policies to determine which updates should be applied.

For further enquiries, please contact MyCERT through the following channels:
Phone: 1-300-88-2999 (monitored during business hours)

Fax : +603 89453442 

Mobile: +60 19 2665850 (24x7 call incident reporting)


Business Hours : Mon - Fri 09:00 AM - 18:00 PM MYT

Cyber999 Mobile Apps: IOS Users or Android Users

5.0 References