Researchers have detected a new worm that is spreading via SMB, but unlike the worm component of the WannaCry ransomware, this one is using seven NSA tools instead of two.
The worm's existence first came to light on Wednesday, after it infected the SMB honeypot of Miroslav Stampar, member of the Croatian Government CERT, and creator of the sqlmap tool used for detecting and exploiting SQL injection flaws.
The worm, which Stampar named EternalRocks based on worm executable properties found in one sample, works by using six SMB-centric NSA tools to infect a computer with SMB ports exposed online. These are ETERNALBLUE, ETERNALCHAMPION, ETERNALROMANCE, and ETERNALSYNERGY, which are SMB exploits used to compromise vulnerable computers, while SMBTOUCH and ARCHITOUCH are two NSA tools used for SMB reconnaissance operations.
Once the worm has obtained this initial foothold, it then uses another NSA tool, DOUBLEPULSAR, to propagate to new vulnerable machines.
Source: BleepingComputer
(Score: 2) by Lagg on Sunday May 21 2017, @09:54PM (4 children)
Funny you mention that. I went to H&R block because I could afford to do my contractor's taxes "really" for the first time instead of mailing checks every year. After paying off what I apparently owed for realsies, I am now preparing to sell my house and have not been paid in 1+ months because I'm trying to do payroll "correctly". There's no way I can sustain that kind of thing as a freelancer. Apparently some of the tax penalty was because I don't have health insurance (also unsustainable). Kind of a loop, and I only got out of it by finally giving up on aspirations for independent business.
Murika. I blame the aliens [youtube.com].
Also this is offtopic in a manner of speaking, but if you guys can't see the connection in the wider scale and system when it comes to our government's hostility. Pls rerun your eval loop.
http://lagg.me [lagg.me] 🗿
(Score: 0) by Anonymous Coward on Monday May 22 2017, @04:26AM (3 children)
(Score: 2) by Lagg on Monday May 22 2017, @06:30AM (2 children)
Paperwork requirements, can't drive, the payroll company needing more information.
I generally expect for things like this to happen and they always do. You've never had that happen? I budget for that shit it's happened to me so many times. It's one reason I tried doing the contractor thing in the first place. Clearly I was naive in expecting the burden to be /less/ as a private contractor.
http://lagg.me [lagg.me] 🗿
(Score: 0) by Anonymous Coward on Monday May 22 2017, @04:38PM (1 child)
Sorry, I am still missing something. You are saying that you have so much paperwork to fill out after freelancing for a bit that it is basically a full time job for months?
(Score: 2) by Lagg on Monday May 22 2017, @10:10PM
No, sorry. Guess this is an issue of me not liking to discuss financial stuff on the internet too much out of safe precaution and not wanting to speak out of turn due to lack of education on the subject. But no, it's mostly just a matter of waiting for bureaucracy. It's a very common occurrence for me to send stuff in, wait for a response that decided additional information was required, repeat. I did have a lot of paperwork to settle what I owed, but that's why I went to H&R Block (and hope I can afford it next year).
The paperwork was indeed from freelancing for a bit though, unfortunately. I thought I could wing it. Turns out sending a check and 1040-V isn't even close to enough.
http://lagg.me [lagg.me] 🗿