Group linked to NSA spy leaks threatens sale of new tech secrets
- Author: Arturo Norris May 18, 2017,
May 18, 2017, 19:03
The bad news is that the hacking collecting responsible for releasing the exploit upon which the WannaCry ransomware is based on is planning to release more Windows exploits and hacking tools to anyone willing to pay.
From the letter, it looks like group tried auctioning these hacking tools, but they didn't really find buyers for the same.
According to Reuters, Shadow Brokers promised in a blog on Tuesday to release from June tools every month to anyone willing to pay for access to some of the tech world's biggest commercial secrets starting next month. The information is supposed to include data stolen from SWIFT providers and central banks and data from "Russian, Chinese, Iranian, or North Korean nukes and missile programs". Yet, we could not and should not believe anything the group says only because they posted it on a blog.
On Tuesday, following the WannaCry attacks, the Shadow Brokers posted a new message online in which they claim to have many more Equation exploits that haven't been leaked yet.
Although it is still unclear as to what operating systems would come under attack following the release of new malware, the reports had it that Microsoft Windows 10 would possibly be the target. The group said that the data would be locked behind a subscription fee, but, beyond that, they do not care who buys the data or for what objective it is used.
The spy agency reportedly knew about the theft of its cyberweapons arsenal, which was later allegedly leaked by the Shadow Brokers hacker group. The group is also promising that June will be the data dump month. It adds, "Each month peoples can be paying membership fee, then getting members only data dump each month".
As multiple reports suggested the cybercrime network called the Lazarus Group, linked to the 2014 hack of Sony Pictures, had a role in the most recent attack of the WannaCry malware virus, North Korea issued its own statement on the "ransomware attack".
In a post on their blog, the hackers announced that they would be launching a monthly data dump service, comparing it to a "wine of the month club" for hackers.
Microsoft did provide a patch for the vulnerability but a lot of machines were still exposed as they had not installed the updates.
Dillon believes that once somebody gets data dump from the hackers, the exploits would likely become public.
The shadowy hacking group claimed that Microsoft released its vulnerability patch in March while also alleging that the Equation Group was paying U.S. tech companies not to patch vulnerabilities.