TapForMobile

NSA's powerful Windows hacking tools leaked online


The Shadow Brokers-the mysterious person or group that over the past eight months has leaked a gigabyte worth of the National Security Agency's weaponized software exploits-just published its most significant release yet. These appear to have been stolen sometime in 2013 and were 0-days at the time targeting Windows 8 and Windows Server 2013.

Cris Thomas (aka Space Rogue), strategist at Tenable Network Security told IBTimes UK, "There appears to be at least several dozen exploits, including zero-day vulnerabilities in this release".

"TheShadowBrokers rather being getting drunk with McAfee on desert island with hot babes".

"Maybe if all surviving WWIII, theshadowbrokers be seeing you next week", Friday's post read. At the time, it seemed the auction was more publicity stunt than money-making endeavor and that suspicion was confirmed last week, when they released the password for the auction tools for free.

The problem, even if you run Windows 10, is that everybody from the corner store to your credit-card processor may not be.

Hickey provided The Intercept with a video of FUZZBUNCH being used to compromise a virtual computer running Windows Server 2008-an industry survey from 2016 cited this operating system as the most widely used of its kind.

According to Mathew Hickey, founder of UK-based Hacker House, who analysed the Shadow Brokers' latest dump, there are over 20 distinct exploits. It also included a framework dubbed Fuzzbunch, a tool that resembles the Metasploit hacking framework that loads the binaries into targeted networks.


ERRATICGOPHER, an SMB exploit targeting Windows XP and Server 2003.

It's not known how numerous exploits, if any, are unknown to the manufacturer.

Reuters reports that SWIFT also claims there's no evidence its network has been accessed. According to the files, two NSA programs known as JEEPFLEA_POWDER and JEEPFLEA_MARKET exist to specifically compromise SWIFT bureaus and services.

Friday morning, the Shadow Brokers published documents that-if legitimate-show just how thoroughly U.S. intelligence has compromised elements of the global banking system.

The data appears to originate in September 2013 and details how operatives could penetrate the firewalls and monitor the transactions of the largest SWIFT Service Bureau of the Middle East, called EastNets.

EastNets had denied being hacked, telling WIRED there is "no credibility to the online claim of a compromise of EastNets customer information on its SWIFT service bureau". Despite manufacturers racing to mend their products, hackers have been found trying to take advantage of the hacking techniques from that first release of source code. Besides specific data concerning specific servers, the archive also includes reusable tools to extract the information from Oracle databases such as a list of database users and SWIFT message queries.

The new leaks renew the group's call for monetary compensation.

Related Articles

  • Tesla shares rise after Musk tweets unveiling of truck in September

    NEW YORK - DEC 14, 2016: Tesla CEO Elon Musk is seen in the lobby of Trump Tower on December 14, 2016, in New York. News of the pickup came in a follow-up tweet, in which Musk added it would be unveiled in 18 to 24 months.
    Pep Guardiola to rotate Claudio Bravo and Willy Caballero at Manchester City

    Pep Guardiola to rotate Claudio Bravo and Willy Caballero at Manchester City

    Guardiola also insisted that City captain Vincent Kompany could have a role to play at the club heading into next season. He can do that. "After Chelsea he reacted and had problems in the leg and we didn't want to take risks".
    Need more time to file taxes?

    Need more time to file taxes?

    An extension of time to file will automatically process when taxpayers pay all or part of their taxes electronically by April 18. Because Emancipation Day is observed in Washington , D.C. on the next business day, the deadline moves to Tuesday, April 18.
  • AR Murugadoss thriller SPYder

    AR Murugadoss thriller SPYder

    Mahesh Babu said that the team is working day and night for the movie and the Spyder first look poster will be released. Murugadoss discussed the script with several producers, because it's the most expensive film in Telugu after Baahubali.
    'Stop staring,' says Caitlyn Jenner, announcing genital surgery

    'Stop staring,' says Caitlyn Jenner, announcing genital surgery

    She went on to state that while the trial was blowing up in the media, Kourtney and Kim Kardashian were on their father's side, believing that O.J indeed didn't do it.
    IPL: Unchanged Mumbai opt to field vs Sunrisers

    IPL: Unchanged Mumbai opt to field vs Sunrisers

    They also have Indian swing master Bhuvneshwar Kumar, who took two wickets in the last match by giving 21 runs in his four overs. Hyderabad next face the Knight Riders on Saturday while Mumbai Indians take on the winless Lions the following day.
  • O'Brien qualifies with record-breaking win

    O'Brien qualifies with record-breaking win

    Then "Like" the page to get notifications about the live broadcast, as well as all the latest news and information about snooker. Evans, the number one woman player in the world, was two wins away from a place at The Crucible after defeating Robin Hull 10-8.
    Liverpool Star Leaves Hospital On Crutches Following Season-Ending Surgery

    Liverpool Star Leaves Hospital On Crutches Following Season-Ending Surgery

    He leads Liverpool with 13 league goals, and has added five assists, in helping them to third place in the table. "That is the only good news".

    Federal workers due for pay increase after hiring freeze ends

    Mulvaney wouldn't give specific details or figures on job cuts, but said efficiency is the name of the game. The federal hiring freeze put in place by President Donald Trump just as he entered office is being lifted.
  • Countries should help those hurt by free trade

    Countries should help those hurt by free trade

    Key policy initiatives such as training, temporary income support, job search assistance, and targeted trade adjustment assistance are important.
    Josh Brolin set to play Cable in Deadpool 2

    Josh Brolin set to play Cable in Deadpool 2

    Aside from menacing the Avengers , it looks like Brolin will be teaming up with the Merc with a Mouth on the big screen too. Michael Shannon was apparently the front runner for the role, but Marvel and Fox opted to go this route instead.
    USPSTF Drafts Prostate CA Screening Recommendations

    USPSTF Drafts Prostate CA Screening Recommendations

    The statement serves to guide clinicians and patients in decision making about screening for prostate cancer. "And having the U.S. Medicare and many private insurers have continued to pay for the screening. "The PSA test is not a great test".

Comments