Shadow Brokers Planning To Cause Extra Damage With More Zero-Day Bugs
- Author: Toni Ryan May 20, 2017,
May 20, 2017, 0:43
During the more than five years the NSA used EternalBlue's extraordinary powers to extract secrets from targeted computers, the Washington Post reported, some officials discussed whether the flaw was so unsafe they should reveal it to Microsoft.
The hacking group that helped enable last week's global ransomware attack is threatening to make public even more computer vulnerabilities in the coming weeks - including "compromised network data" pertaining to the nuclear missile programmes of China, Iran, Russia and North Korea, as well as secret exploits affecting Windows 10, which is run by millions of computers around the world.
While some of the exploits in the possession of the Shadow Brokers have already been patched, the rapid spread of WannaCry underscores how many individuals and institutions are still running laughably outdated software.
Those patches included MS17-010, which contains a fix for the SMB exploit the Shadow Brokers leaked in April and now used by the WannaCry ransomware.
"In June, TheShadowBrokers is announcing "TheShadowBrokers Data Dump of the Month" service", they wrote. Windows 10, web browser and router exploits along with "compromised network data from more SWIFT providers and Central banks" are among the items that might be offered through the "dump of the month" service.
The group claims it will release new exploits through this new monthly membership program.
But wait, there's more, as the group claims the Equation Group has spies inside Microsoft and other United States tech corporations.More news: Cisco Systems, Inc. (NASDAQ:CSCO) Volume Spiking Mid-session
Shadow Brokers first emerged last August, offering to auction hacking exploits it said were used by the NSA's elite hacking team known as Equation Group (officially named Tailored Access Operations).
In a long post, the Shadow Brokers criticise government and IT industry firms for not snapping up the exploits when it had the chance, months before their release. Yet, we could not and should not believe anything the group says only because they posted it on a blog.
NSA officials defended how they handed the EternalBlue matter, arguing that the NSA must use such tools to gather foreign intelligence. The NSA has not commented on Shadow Brokers since the group emerged previous year, or on the contents of past leaks or Friday's ransomware attack.
The Shadow Brokers' theft and subsequent leaks are one of the worst, if not the worst, crisis to hit the NSA.
The shadowy hacking group claimed that Microsoft released its vulnerability patch in March while also alleging that the Equation Group was paying U.S. tech companies not to patch vulnerabilities.
It said is has always been about "the shadowbrokers vs theequation group", and implied the NSA is a cohort of tech companies like Microsoft.