The NSA also aimed to penetrate the systems of individual banks, including Al Quds Bank for Development and Investment, based in Ramallah, Palestine, which according to the released documents used EastNets' SWIFT transfer services. These releases were published using misspelled and weird blog posts. "The EastNets Network internal security unit has ran a complete check of its servers and found no hacker compromise or any vulnerabilities", it said.
According to security researcher and hacker Matthew Hickey, co-founder of Hacker House, the significance of what's now publicly available, including "zero day" attacks on previously undisclosed vulnerabilities, can not be overstated: "I don't think I have ever seen so much exploits and 0day [exploits] released at one time in my entire life", he told The Intercept via Twitter DM, "and I have been involved in computer hacking and security for 20 years".
One of the vulnerabilities as the company indicates is quite old and has been fixed before the release of Windows Vista, while others were addressed with more recent bulletins.
"This isn't a data dump, this is a damn Microsoft apocalypse", tweeted security expert @hackerfantastic.
A Microsoft spokesperson told Motherboard the company is "reviewing the report and will take the necessary actions to protect our customers".
The release also contains the software for "Oddjob", an implant tool and backdoor for controlling hacked computers through an HTTP-based command server.
Windows XP vulnerable, Windows 7 and above are safe, says Microsoft.
EastNets has said it has found no evidence its systems were compromised.
Turkey referendum result challenged as Erdogan clinches slim victory
Critics said the referendum question was not listed on the ballot and that the voting was impacted by irregularities. The final results are set to be announced within 11-12 days after the vote, RIA Novosti reported.
"The reports of an alleged hacker-compromised EastNets Service Bureau network is totally false and unfounded", it said.
The documents posted by the Shadow Brokers include Excel files listing computers on a service bureau network, user names, passwords and other data, Suiche said. "I have been able to hack pretty much every Windows version here in my lab using this leak".
That update was supposed to roll out in February but didn't hit the scene until March, when it patched some of the NSA exploits disclosed by Shadow Brokers. It boasts 11,000 banking and securities organizations in 200 countries across the world as members of its community. The NSA did not respond to a request for comment on the latest leak.
The release of the tools comes after WikiLeaks today published documents about purported Central Intelligence Agency backend malware with a "public-facing HTTPS interface".
Shadow Brokers did not provide a coherent explanation of why they chose to publish the Microsoft and SWIFT vulnerabilities.
Since their emergence, they appear to have had little to no success selling their pilfered tools and instead have begun to release the actual tools they had claimed to be trying to auction off. The group attempted to auction off the files but failed, and have been releasing portions of the stolen files in stages.
"TheShadowBrokers rather being getting drunk with McAfee on desert island with hot babes".
Comments