Note that I’ve got no problem with global security services developing and using exploits - it’s their remit and often responsibility - but I do think work needs to be done around, er, Data Loss Prevention in Equation Group.
One of the exploits - EternalBlue - was used by the WannaCry ransomware spreader, which made headlines around the world due to infecting largely corporate systems.Īs I said to the Washington Post in August 2016, this is what happens when you have security agencies hoarding exploits insecurely - poorer security for all. The Shadow Brokers’ dump contain technically the best exploits I’ve seen in my almost two decades of InfoSec.
The EternalPot data has shown advanced attacks, multiple coin miners, remote access trojans and lateral movement attempts into corporate networks - all via the Windows SMBv1 service.
0 kommentar(er)
