• Welcome to BellGab.com Archive.
 

New SMB Worm Uses Seven NSA Hacking Tools. WannaCry Used Just Two

Started by wr250, May 20, 2017, 07:17:39 PM

wr250

New SMB Worm Uses Seven NSA Hacking Tools. WannaCry Used Just Two
Researchers have detected a new worm that is spreading via SMB, but unlike the worm component of the WannaCry ransomware, this one is using seven NSA tools instead of two.

The worm's existence first came to light on Wednesday, after it infected the SMB honeypot of Miroslav Stampar, member of the Croatian Government CERT, and creator of the sqlmap tool used for detecting and exploiting SQL injection flaws.

https://www.bleepingcomputer.com/news/security/new-smb-worm-uses-seven-nsa-hacking-tools-wannacry-used-just-two/

WOTR

Is there anybody else who is wondering if the NSA "accidentally" lost control of these tools so that they could more easily use them?

"What us? Nope, it was the, um... Hackers."  ???

wr250

Quote from: WOTR on May 21, 2017, 01:26:33 AM
Is there anybody else who is wondering if the NSA "accidentally" lost control of these tools so that they could more easily use them?

"What us? Nope, it was the, um... Russian Hackers."  ???

FIFY

Quote from: wr250 on May 20, 2017, 07:17:39 PM
New SMB Worm Uses Seven NSA Hacking Tools. WannaCry Used Just Two
Researchers have detected a new worm that is spreading via SMB, but unlike the worm component of the WannaCry ransomware, this one is using seven NSA tools instead of two.

The worm's existence first came to light on Wednesday, after it infected the SMB honeypot of Miroslav Stampar, member of the Croatian Government CERT, and creator of the sqlmap tool used for detecting and exploiting SQL injection flaws.

https://www.bleepingcomputer.com/news/security/new-smb-worm-uses-seven-nsa-hacking-tools-wannacry-used-just-two/
LOL - Thanks for posting the thread wr250.  :)
I came across that this morning, too.
http://securityaffairs.co/wordpress/59355/malware/eternalrocks-malware.html
https://github.com/stamparm/EternalRocks/
https://twitter.com/hdmoore/status/867446072670646277

http://www.csoonline.com/article/3198408/security/patch-the-samba-bug-before-a-network-worm-exploits-it.html

Powered by SMFPacks Menu Editor Mod