Leaked NSA Malware Threatens Windows Users Around the World

Adjust Comment Print

There are trillions of dollars per day that get transferred through SWIFT, with over 11,000 banks and securities organizations in over 200 countries using SWIFT.

The data appears to originate in September 2013 and details how operatives could penetrate the firewalls and monitor the transactions of the largest SWIFT Service Bureau of the Middle East, called EastNets.

According to ZDNet and Hacker Fantastic on Twitter, the tools and exploits affect Windows 2000, Windows XP, Windows 7, Windows 8, as well as their server-side variants like Server 2000, 2003, 2008, 2008 R2 and 2012.

However EastNets, which is based in Dubai, denied it had been hacked in a statement, and said the assertion was "totally false and unfounded".

"While we cannot ascertain the information that has been published, we can confirm that no EastNets customer data has been compromised in any way", said the EastNets founder and chief executive Hazem Mulhim in a statement sent to The National.

Swift said that it had no evidence that its main network had ever been accessed without authorisation, Reuters reported on Friday. This details exact targets, such as particular systems in eastnets.com to leverage access into the SWIFT systems of client banks, and sql queries created to extract, in bulk, transactions of interest.

According to Suiche and other security researchers, the Shadow Brokers dump includes exploits for Cisco routers and tools to extract information from Oracle databases, which would have been used to infiltrate the SWIFT banking system.

In fact, in previous hours they re-published a new collection of exploits that directly affected some of the versions of Microsoft's operating system, Windows.

The Shadow Brokers a year ago dumped malware it said came from the Equation Group, which is associated with NSA.

Читайте также: Carter Page dodges Russian Federation questions and insists no jail

"I'll bet it's not the only SWIFT service bureau that's been compromised", he said.

A collective of security researchers have analyzed the leaked exploits yesterday afternoon, which helped us put a list of all the exploits, here. Microsoft itself seems to imply that the NSA didn't warn the company.

The documents and files were released by a group calling themselves the Shadow Brokers.

"Maybe if all surviving WWIII, The Shadow Brokers be seeing you next week".

On Friday, Snowden tweeted that the Shadow Brokers release was "not a drill" and that it shows the NSA was capable of hacking fully updated Microsoft Windows systems.

Former CIA whistleblower Edward Snowden described the NSA's hack as the "Mother Of All Exploits", in reference to the massive United States bomb dropped last week on Afghanistan.

As it happened in the middle of a year ago, the well-known group of hackers Shadow Brokers are carrying out a series of operations since the last few days.

Through an official blog post released on Saturday, the Redmond giant has confirmed that it has already patched most of the exploits and it is completely safe to use all supported versions of Windows.

The newly leaked NSA files suggest that the agency may have hacked into SWIFT's network via service bureaus, which are firms that provide smaller clients with access points to the SWIFT system.

При любом использовании материалов сайта и дочерних проектов, гиперссылка на обязательна.
«» 2007 - 2017 Copyright.
Автоматизированное извлечение информации сайта запрещено.

Код для вставки в блог

Comments