The US Cybersecurity and Infrastructure Security Agency (CISA) issued a warning that hackers are actively exploiting a previously patched flaw in Windows 10 that goes by multiple names, among them Eternal Darkness and SMBGhost. Both sound ominous, and for good reason. If left unpatched, an attacker could gain unauthorized remote access to a target system and wreak havoc.

Microsoft actually issued an out-of-band patch for this vulnerability in March, meaning it arrived separately from any scheduled Patch Tuesday updates that are pushed out the second Tuesday of every month. Out-of-band patches are typically reserved for security issues that demand immediate attention.

Source Article