Global �Ransomware� Attack Believed to Be Using Leaked NSA Hacking Tools

Front Porch Punditry � News � Tech News � Global �Ransomware� Attack Believed to Be Using Leaked NSA Hacking Tools

Topic settings

Print view

Jump to forum

Welcome Welcome to Front Porch Punditry Political News and Views General Political News and Opinion Breaking Political News The Woodshed Politics With an Attitude Political Cartoons Politics With an Attitude The Democrat Propaganda Machine (MSM) Had enough yet? The Obamas Michelle Obama - The First Looter Barack Hussein Obama - The man who would be Dictator Liberal Folly The Hilderbeast Manbearpig and The Global Warming Hoax pookie's toons WTH?! News Breaking News National News Donald J. Trump Business and Economic News World News Entertainment News News you can Use The World of Sports Weird and Wacky Science & Medicine Tech News Our Armed Forces Our Armed Forces Patriot's Footlocker Preparedness Tools and Resources Firearms and Ammo Faith and Prayer Faith and Prayer Sunday Chapel The Juke Joint Drop a quarter in the Jukebox All the other stuff General Discussion Conspiracies The Funny Bone ThirstyMan's Greasy Spoon Diner Suggestion Box History American History World History

#1 | Global �Ransomware� Attack Believed to Be Using Leaked NSA Hacking Tools datum

Sun May 14, 2017 9:25 am (Last edited: Sun May 14, 2017 9:27 am)

Global �Ransomware� Attack Believed to Be Using Leaked NSA Hacking Tools
by Breitbart Tech12 May 2017

(Reuters) � A huge cyber attack leveraging hacking tools widely believed to have been developed by the U.S. National Security Agency brought disruption to Britain�s health system on Friday and infected dozens of other countries around the world, security researchers said.

Hospitals and doctors� surgeries in parts of England were forced to turn away patients and cancel appointments after they were infected with the �ransomware�, which scrambled data on computers and demanded payments of $300 to $600 to restore access. People in affected areas were being advised to seek medical care only in emergencies.

�We are experiencing a major IT disruption and there are delays at all of our hospitals,� said the Barts Health group, which manages major London hospitals. Routine appointments had been canceled and ambulances were being diverted to neighboring hospitals.

Telecommunications giant Telefonica was among many targets in Spain, though it said the attack was limited to some computers on an internal network and had not affected clients or services.

Read the rest of the story at Reuters.
(Businesses brace for Monday as ransomware threat lingers
http://www.reuters.com/article/us-britai...s-idUSKBN18820S )

http://www.breitbart.com/tech/2017/05/12...-hacking-tools/

Illegitimi non Carborundum

During times of universal deceit, telling the truth becomes a revolutionary act.- Orwell

Irredeemable Deplorable

reply

#2 | RE: Global �Ransomware� Attack Believed to Be Using Leaked NSA Hacking Tools datum

Sun May 14, 2017 9:38 am

Accidental hero' halts ransomware attack and warns: this is not over
Expert who stopped spread of attack by activating software�s �kill switch� says criminals will �change the code and start again�
Nadia Khomami in London and Olivia Solon in San Francisco
Saturday 13 May 2017 10.49 EDT
First published on Friday 12 May 2017 21.41 EDT

The �accidental hero� who halted the global spread of an unprecedented ransomware attack by registering a garbled domain name hidden in the malware has warned the attack could be rebooted.

The ransomware used in Friday�s attack wreaked havoc on organisations including FedEx and Telefónica, as well as the UK�s National Health Service (NHS), where operations were cancelled, X-rays, test results and patient records became unavailable and phones did not work.

But the spread of the attack was brought to a sudden halt when one UK cybersecurity researcher tweeting as @malwaretechblog, with the help of Darien Huss from security firm Proofpoint, found and inadvertently activated a �kill switch� in the malicious software.

..............................................................

The kill switch was hardcoded into the malware in case the creator wanted to stop it spreading. This involved a very long nonsensical domain name that the malware makes a request to � just as if it was looking up any website � and if the request comes back and shows that the domain is live, the kill switch takes effect and the malware stops spreading. The domain cost $10.69 and was immediately registering thousands of connections every second.

MalwareTech explained that he bought the domain because his company tracks botnets, and by registering these domains they can get an insight into how the botnet is spreading. �The intent was to just monitor the spread and see if we could do anything about it later on. But we actually stopped the spread just by registering the domain,� he said. But the following hours were an �emotional rollercoaster�.

........................................................

The kill switch won�t help anyone whose computer is already infected with the ransomware, and it�s possible that there are other variants of the malware with different kill switches that will continue to spread.

The malware was made available online on 14 April through a dump by a group called Shadow Brokers, which claimed last year to have stolen a cache of �cyber weapons� from the National Security Agency (NSA).

Ransomware is a type of malware that encrypts a user�s data, then demands payment in exchange for unlocking the data. This attack used a piece of malicious software called �WanaCrypt0r 2.0� or WannaCry, that exploits a vulnerability in Windows. Microsoft released a patch (a software update that fixes the problem) for the flaw in March, but computers that have not installed the security update remain vulnerable.

................................................................

https://www.theguardian.com/technology/2...re-cyber-attack

Illegitimi non Carborundum

During times of universal deceit, telling the truth becomes a revolutionary act.- Orwell

Irredeemable Deplorable

reply

Report: ICE hindered in catching visa overstays by incompetence, inefficiency By Rick Moran � � British Airways boss �tries to gag staff� over IT failure which hit 300,000 passengers after �inexperienced staff outsourced to India didn�t know to launch back up system�

Related topics

Replies

Last post

Researchers Use GMO Mosquitoes to Vaccinate Humans in NIH-Funded Malaria Study
Created in forum Science & Medicine by algernonpj 0 Tue Oct 04, 2022 12:18 pm
algernonpj • Views: 52
Fascists Strike Back: GiveSendGo Hit With DDOS Attack to Stop Trucker Convoy Fundraiser
Created in forum World News by algernonpj 0 Sat Feb 05, 2022 2:51 pm
algernonpj • Views: 53
Biden Says He Gave Putin a �List� of Critical Infrastructure, Warning Russians Not to Hack
Created in forum World News by algernonpj 0 Sat Jun 19, 2021 12:44 pm
algernonpj • Views: 73
The Big Hack: How China Used a Tiny Chip to Infiltrate U.S. Companies
Created in forum Tech News by algernonpj 1 Thu Oct 04, 2018 4:14 pm
algernonpj • Views: 171

Former prof recounts her 'escape' from political correctness -- [she uses cultish language! TM]
Created in forum General Discussion by ThirstyMan

Sun Feb 18, 2018 11:33 pm
von

ThirstyMan • Views: 156

Eight Facts on the �Russian Hacks�
Created in forum General Political News and Opinion by ThirstyMan 1 Wed Jan 04, 2017 3:59 pm
algernonpj • Views: 168
Obama Punishes Russia for Election Hacking
Created in forum General Political News and Opinion by Cincinnatus 6 Sat Dec 31, 2016 1:28 pm
Cincinnatus • Views: 202
Did North Korea Really Attack Sony?
Created in forum National News by ThirstyMan 3 Mon Dec 22, 2014 7:47 pm
Frank Cannon • Views: 196
CLAIM: US Power Grid Already Hacked By Iranians, Chinese, Russians (Video)
Created in forum National News by Eglman 3 Sat Dec 20, 2014 3:06 pm
ThirstyMan • Views: 299