Displaying items by tag: EternalBlue

A second case of NSA exploits being customised and used for attacks, before they were leaked on the Web by a group known as the Shadow Brokers in 2017, has come to light, this time following research by the Israel-based cyber security firm Check Point Research.

Published in Security

Cyber security vendor FireEye has a considerable amount of egg on its face after the tools used by its Red Team — an attack unit — have been stolen by a group that it claims is a "highly sophisticated state-sponsored adversary".

Published in Security

A cryptocurrency-mining botnet known as Lemon Duck has been displaying increased activity since the end of August, researchers from Cisco's Talos Intelligence Group say, adding that while defenders would have spotted this activity, it would not have been noticed by end users.

Published in Security

The US National Security Agency says it has no information on the probe into a leak of exploits by a group known as the Shadow Brokers back in 2016. The investigation was reported to have been going on for 15 months in November 2017.

Published in Security

A bog standard attack aimed at planting a cryptocurrency miner has been found to be using advanced targeted attack tools as well, the security firm Trend Micro says, pointing out that this behaviour marks a departure from the norm.

Published in Security

Japanese security firm Trend Micro has found a new Windows malware family that it has named BlackSquid, which uses as many as eight exploits to attack and spread through networks.

Published in Security

The row between information security professionals and The New York Times, over an article it ran recently, claiming that a ransomware attack on local government offices in Baltimore, Maryland, was carried out through the use of a leaked NSA exploit known as EternalBlue, has moved in a different direction, with some of the infosec people themselves coming under attack – from their peers.

Published in Security

A number of information security professionals in the US have sharply criticised The New York Times over an article it ran recently, claiming that a ransomware attack on local government offices in Baltimore, Maryland, was carried out through the use of a leaked NSA exploit known as EternalBlue.

Published in Security

The EternalBlue exploit for Windows, crafted by the NSA and leaked online by a group known as the Shadow Brokers, is being increasingly used in exploits two years after it was used to create the WannaCry ransomware, malware that took the world literally by storm.

Published in Security

A group, which has been given the name Buckeye, was in possession of, and utilising, NSA exploits well before they were leaked on the Web by the Shadow Brokers, the American security firm Symantec claims.

Published in Security

A cryptojacking campaign, dubbed Beapy, which is primarily affecting enterprises in China, has been revealed by one security firm which has cautioned that the campaign “acts as a warning” to Australian enterprises to implement measures to guard against the threat.

Published in Security

World-renowned security technologist Bruce Schneier may not have intended it, but he has provided the answer to those who are demanding that industry provide governments with a means to break encryption.

Published in Books

Will the adoption of the Federal Government's encryption bill make life online safer for the average citizen and guard against the growth of child pornography and terrorism? No. On the contrary, passing this bill into law will only help those who are involved in these activities to thrive.

Published in Open Sauce

German multinational security software company Avira says the EternalBlue exploit, leaked from the NSA by the Shadow Brokers, is still being used to exploit a larger number of unpatched Windows computers that can be exploited.

Published in Security

A year after a leaked NSA Windows exploit known as EternalBlue was used to create the WannaCry ransomware that caused chaos around the world, a security researcher says it is being used more than ever by attackers in crafting threats.

Published in Security

The UK-based cyber security company, NCC Group, has been able to replace the destructive parts of NotPetya with telemetry and safeguards. It was then released into a live environment.

Published in Security
Thursday, 07 September 2017 10:02

Shadow Brokers appear again with new exploit

The Shadow Brokers, the group that has dumped many Windows exploits from NSA on the Web in April, has surfaced again, offering more exploits provided payment is made in Zcash.

Published in Security

Researchers at security firm Trend Micro say they have found a new cryptocurrency miner that operates as fileless malware, attacking Windows systems by using the EternalBlue exploit that powered the WannaCry ransomware in May.

Published in Security

Microsoft has issued patches for older versions of Windows against NSA exploits that were leaked by the Shadow Brokers back in April.

Published in Security
Page 1 of 2

WEBINARS ONLINE & ON-DEMAND

GUEST ARTICLES

VENDOR NEWS

Guest Opinion

Guest Interviews

Guest Reviews

Guest Research

Guest Research & Case Studies

Channel News

Comments