Viernes, 15 Febrero, 2019

Shadow Brokers resurface, offer to sell fresh 'wine of month' club exploits

Enlarge  A cryptocurrency mining Enlarge A cryptocurrency mining
Eleena Tovar | 19 May, 2017, 20:19

NSA whistleblower Edward Snowden claimed back in August 2016 that "circumstantial evidence and conventional wisdom" points to Moscow as the force behind the Shadow Brokers.

The hacking group that says it facilitated the WannaCry ransomware attack has threatened to leak a new wave of hacking tools it claims to have stolen from the National Security Agency.

The fresh Shadow Brokers statement is lengthy, decrying the lack of support for its previous auction, Google Project Zero's alleged links to The Equation Group, the firing of Federal Bureau of Investigation director James Comey and Microsoft's terse response following the WannaCry incident.

Given that the Wannacry attack has already proven the potency of the materials in their possession, it is rather alarming to consider what could be contained in their next set of leaks, especially if they actually have information regarding the nuclear programs of countries.

The Shadow Brokers first emerged past year, claiming to have accessed sensitive information from "The Equation Group", a hacking unit with suspected links to the US National Security Agency (NSA). Shadow Brokers assert that they have access to hacking tools which can break and gain access to the world's most used computers, mobile and browsers.

The post says they will launch a "new monthly subscription model", and compare it to "wine of month club".

The group is clearly emboldened by its success (if you want to call it that), after releasing numerous zero-day exploits acquired from the NSA's Equation Group, after they were left on a staging server. The post indicated those who are willing can pay a monthly membership fee and how members will use the data they purchase would be up to them.

It is unknown whether the Shadow Brokers genuinely have further tools stolen from the NSA or whether the group will make good on its threats. The US government has not commented directly on the matter.

In December, Shadow Brokers cancelled its auction and offered to sell the exploits.

The rogue hackers have promised more details on their content-monetization strategy in June. The possible targets include Microsoft's Windows 10, which was unaffected by the initial attack and is on at least 500m devices around the world. In the Tuesday letter, they said they weren't "interested in stealing grandmothers' retirement money", but wanted to send a message to the Equation Group, a hacking group linked to the NSA.

What subscribers will do with these exploits and data will be up to them, the group said.

Finally, the Shadow Brokers claims that Microsoft and the Equation Group may have closer ties than they have publicly acknowledged. Microsoft president and chief legal officer Brad Smith said earlier this week the WannaCry attack used elements stolen from NSA cyber warfare operations.