{"id":23596,"date":"2017-04-14T17:11:47","date_gmt":"2017-04-14T22:11:47","guid":{"rendered":"http:\/\/olduvai.ca\/?p=23596"},"modified":"2017-09-30T13:07:43","modified_gmt":"2017-09-30T18:07:43","slug":"leaked-nsa-malware-threatens-windows-users-around-the-world","status":"publish","type":"post","link":"https:\/\/olduvai.ca\/?p=23596","title":{"rendered":"Leaked NSA Malware Threatens Windows Users Around the World"},"content":{"rendered":"
\n
\n
\n
\n
\n
\n

LEAKED NSA MALWARE THREATENS WINDOWS USERS AROUND THE WORLD<\/a><\/h3>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n
\n
\n
\n
\n
\n
\n
\n
\n

The ShadowBrokers, an entity previously confirmed by The Intercept to have leaked authentic malware<\/a> used by the NSA to attack\u00a0computers around the world, today released another cache of what appears to be extremely potent (and previously unknown) software capable of breaking into systems running Windows. The software could give nearly anyone with sufficient technical knowledge the ability to wreak havoc on millions of Microsoft users.<\/p>\n

The leak includes a litany of typically codenamed software \u201cimplants\u201d with names like ODDJOB, ZIPPYBEER, and ESTEEMAUDIT, capable of breaking into \u2014 and in some cases seizing control of \u2014 computers running version of the Windows operating system earlier than the most recent Windows 10. The vulnerable Windows versions ran more than 65 percent of desktop computers surfing the web last month, according to estimates<\/a> from the tracking firm Net Market Share.<\/p>\n

The crown jewel of the implant collection appears to be a program named FUZZBUNCH, which essentially automates\u00a0the deployment of NSA malware, and would allow a member of agency\u2019s Tailored Access Operations group to more easily infect a target from their desk.<\/p>\n

\"\"<\/a><\/p>\n

via Matthew Hickey<\/p>\n<\/div>\n

According to security researcher and hacker Matthew Hickey, co-founder of Hacker House<\/a>, the significance of what\u2019s now publicly available, including \u201czero day\u201d attacks on previously undisclosed vulnerabilities, cannot be understated: \u201cI don\u2019t think I have ever seen so much exploits and 0day [exploits] released at one time in my entire life,\u201d he told The Intercept via Twitter DM, \u201cand I have been involved in computer hacking and security for 20 years.\u201d Affected computers will remain vulnerable until Microsoft releases patches for the zero-day vulnerabilities and, more crucially, until their owners then apply those patches.<\/p>\n

…click on the above link to read the rest of the article…<\/p>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n","protected":false},"excerpt":{"rendered":"

LEAKED NSA MALWARE THREATENS WINDOWS USERS AROUND THE WORLD The ShadowBrokers, an entity previously confirmed by The Intercept to have leaked authentic malware used by the NSA to attack\u00a0computers around the world, today released another cache of what appears to be extremely potent (and previously unknown) software capable of breaking into systems running Windows. The […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"footnotes":""},"categories":[6],"tags":[1401,551,577,15125,5567],"class_list":["post-23596","post","type-post","status-publish","format-standard","hentry","category-liberty","tag-malware","tag-national-security-agency","tag-nsa","tag-sam-biddle","tag-the-intercept"],"_links":{"self":[{"href":"https:\/\/olduvai.ca\/index.php?rest_route=\/wp\/v2\/posts\/23596","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/olduvai.ca\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/olduvai.ca\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/olduvai.ca\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/olduvai.ca\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=23596"}],"version-history":[{"count":1,"href":"https:\/\/olduvai.ca\/index.php?rest_route=\/wp\/v2\/posts\/23596\/revisions"}],"predecessor-version":[{"id":23597,"href":"https:\/\/olduvai.ca\/index.php?rest_route=\/wp\/v2\/posts\/23596\/revisions\/23597"}],"wp:attachment":[{"href":"https:\/\/olduvai.ca\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=23596"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/olduvai.ca\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=23596"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/olduvai.ca\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=23596"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}