SMBv1 is a security hazard for Windows systems – well, for any platform, really. The old standard is a decrepit leftover.
Microsoft will finally remove support for SMBv1 completely in the Fall update for Windows 10. This is something that should’ve happened long ago and would have staved-off the WannaCry ransomware. However, due to many older apps, and some newer apps that have been developed using poor standards, Microsoft has kept SMBv1 around for compatibility reasons. Now, it has become more important to focus on security than supporting applications that should have been sent to pasture long ago.
This will be a wakeup call for many older application makers.
Microsoft has released a security update to address the vulnerability in implementations of SMBv1 but Enterprises need to be vigilant and start now testing an environment void of SMBv1 to see if any legacy application problems exist before Windows 10 no longer supports it.
Microsoft has provided the following KB content to start testing:
Looking for an awesome, no-nonsense technical conference for IT Pros, Developers, and DevOps? IT/Dev Connections kicks off in San Francisco in 2017!