Hacking group offers subscription for NSA code

Melba UnderwoodMay 20, 2017

Shadow Brokers, the group that leaked parts of United States national security agency's (NSA) cyber weapons stockpile which formed the basis of the recent WannaCry ransomware, said it would release hacking tools every month to those willing to pay for it.

This EternalBlue vulnerability was actually first discovered by the U.S. security agency NSA, but the agency's hacking arsenal was stolen by the Shadow Brokers, and now the hacker group responsible for this theft has written a blogpost.

The threat with the most teeth, however, is the claim that The Shadow Brokers could have more exploits to release, targeting mobile devices or Windows 10, as well as leaked data from the SWIFT banking system or nuke and missile programs in Russia, Iran, China or North Korea.

The release included a Windows SMB [Server Message Block] exploit, EternalBlue, which was leveraged in the recent WannaCry global ransomware attack. Cisco, Juniper, Intel, Microsoft, Symantec, Google, Apple, FireEye, any other bullshit security companies didn't buy lost warez.

"Repeatedly, exploits in the hands of governments have leaked into the public domain and caused widespread damage." - said Microsoft's Brad Smith - "An equivalent scenario with conventional weapons would be the US military having some of its Tomahawk missiles stolen".

Tuesday's article doesn't say when NSA officials tipped off Microsoft.

The Shadow Brokers stated that future leaks could include exploits and hacking tools for web browsers, routers and handsets. "Heck, at this point, Shadow Brokers doesn't even need to have this exploit (though I'm guessing the NSA and Microsoft both may be erring on the side of caution at this point)", she wrote on her site.

The Shadow Brokers said it chose to share screenshots from the NSA Equation Group's lost 2013 Windows Ops Disk in January, with the understanding that the Equation Group would then tell Microsoft and the vulnerability would be patched. Microsoft had actually made a patch for this WannaCry vulnerability in March 2017 and rolled it to users but not many installed it.

TheShadowBrokers dumped 2013 OddJob from ROCTOOLS and 2013 JEEPFLEAMARKET from /TARGETS.

"Shadow Brokers claim they are not "interested in stealing grandmothers" retirement money", but rather this whole fight is about them vs theequationgroup.

"More details in June", it promised. Project Zero recently releasing "Wormable Zero-Day" Microsoft patching in record time, knowing it was coming? coincidence? Is being like wine of month club.

That exploit is ETERNALBLUE, a supposed hacking tool developed by the Equation Group, a codenamed usually given to NSA cyber-operations.

Join the Network World communities on Facebook and LinkedIn to comment on topics that are top of mind.

Related Articles:



« Previous article
Next article »


Popular Pages

US accuses China of 'unprofessional' intercept of radiation sniffing plane
It is noted that this American plane detects radioactive isotopes in the atmosphere, which are signs of nuclear testing. The planes have been used in the past to collect evidence of nuclear tests conducted by North Korea, according to CNN .

Local election results in Scotland likely to heal COSLA rift
Ms Hair also increased the party's share of the vote by 15% in Angus South in the Scottish Parliament election past year . Ms Davidson insisted then: "We won the local government election is Gordon this week, beating the SNP into second place".

Haley: 'I Believe the Western Wall Is Part of Israel'
Netanyahu's office expressed shock, said an official speaking anonymously because he was not authorised to discuss the matter. McMaster, President Donald Trump's national security adviser, declined to say whether the Western Wall was part of Israel.

South Korea urges 'parallel' talks, sanctions to rein in North
Xi said China was willing to handle disputes with South Korea "appropriately" on the basis of mutual trust and understanding. Putin was the last leader of those countries, save North Korea , to call Moon this week to congratulate him on his election.

ITV Debate: Leaders line up without May and Corbyn
In her opening statement she said: 'I have a message for the Prime Minister, who I'm sure is watching tonight. Nuttall may have confused her with former Green Party leader Natalie Bennett, who resigned past year .

Cannes 2017: Aish Looks Like a Princess
The actress' first look at Cannes saw her in an ethereal avatar as she donned a sheer green tiered ensemble by Yanina Couture. Deepika Padukone has already made two red carpet outings at the fest, while Sonam Kapoor is yet to arrive.

Bollywood mourns its favourite mother
She played a graceful and loving mother to superstars like Salman Khan, Govinda, Shah Rukh Khan, Ajay Devgan, Sanjay Dutt. I would not call her "Reema Mausi" or "Reema Tai"; she was "Reema" for me because I felt she was extremely young at heart.

Cabinet approves special bill for Emperor Akihito to step down
Akihito, who has had heart surgery and was treated for prostate cancer, is loved and revered by many Japanese. The current law was set in 1947 and bans abdication as it is seen as a potential risk to political stability.

Macron, Merkel vow to give Europe a new impetus
Macron also called on the European Union to toughen its policies against countries that flout the rules of worldwide trade. A large group of onlookers, some carrying European flags, stood outside the chancellery as Mr Macron arrived.

Tigers DH Martinez headed to paternity list
Instead of trying for a 3-6-3 double play, Davis stepped on the bag and looked toward the runner heading for home. But in the preceding 32 games, they were 8-1 in one-run contests, and 15-3 in games decided by two-runs or fewer.