Author New SMB Worm Uses Seven NSA Hacking Tools. WannaCry Used Just Two  (Read 210 times)

0 Members and 1 Guest are viewing this topic.

New SMB Worm Uses Seven NSA Hacking Tools. WannaCry Used Just Two
Researchers have detected a new worm that is spreading via SMB, but unlike the worm component of the WannaCry ransomware, this one is using seven NSA tools instead of two.

The worm's existence first came to light on Wednesday, after it infected the SMB honeypot of Miroslav Stampar, member of the Croatian Government CERT, and creator of the sqlmap tool used for detecting and exploiting SQL injection flaws.

https://www.bleepingcomputer.com/news/security/new-smb-worm-uses-seven-nsa-hacking-tools-wannacry-used-just-two/

Re: New SMB Worm Uses Seven NSA Hacking Tools. WannaCry Used Just Two
« Reply #1 on: May 21, 2017, 02:26:33 AM »
Is there anybody else who is wondering if the NSA "accidentally" lost control of these tools so that they could more easily use them?

"What us? Nope, it was the, um... Hackers."  ???

Re: New SMB Worm Uses Seven NSA Hacking Tools. WannaCry Used Just Two
« Reply #2 on: May 21, 2017, 06:28:55 AM »
Is there anybody else who is wondering if the NSA "accidentally" lost control of these tools so that they could more easily use them?

"What us? Nope, it was the, um... Russian Hackers."  ???

FIFY


Re: New SMB Worm Uses Seven NSA Hacking Tools. WannaCry Used Just Two
« Reply #3 on: May 28, 2017, 11:33:31 PM »
New SMB Worm Uses Seven NSA Hacking Tools. WannaCry Used Just Two
Researchers have detected a new worm that is spreading via SMB, but unlike the worm component of the WannaCry ransomware, this one is using seven NSA tools instead of two.

The worm's existence first came to light on Wednesday, after it infected the SMB honeypot of Miroslav Stampar, member of the Croatian Government CERT, and creator of the sqlmap tool used for detecting and exploiting SQL injection flaws.

https://www.bleepingcomputer.com/news/security/new-smb-worm-uses-seven-nsa-hacking-tools-wannacry-used-just-two/
LOL - Thanks for posting the thread wr250.  :)
I came across that this morning, too.
http://securityaffairs.co/wordpress/59355/malware/eternalrocks-malware.html
https://github.com/stamparm/EternalRocks/
867446072670646277[/tweet]]Invalid Tweet ID[/url]

http://www.csoonline.com/article/3198408/security/patch-the-samba-bug-before-a-network-worm-exploits-it.html