"TheShadowBrokers is having special trick or treat for Amerikanskis tonight," said the Monday morning post [medium.com], which was signed by the same encryption key used in the August posts. "Many missions into your networks is/was coming from these ip addresses." Monday's leak came as former NSA contractor Harold Thomas Martin III remains in federal custody on charges that he hoarded an astounding 50 terabytes of data in his suburban Maryland home [arstechnica.com]. Much of the data included highly classified information [arstechnica.com] such as the names of US intelligence officers and highly sensitive methods behind intelligence operations. Martin came to the attention of investigators looking into the Shadow Brokers' August leak. Anonymous people with knowledge of the investigation say they don't know what connection, if any, Martin has to the group or the leaks.
[...] According to analyses from researchers here [myhackerhouse.com] and here [pastebin.com], Monday's dump contains 352 distinct IP addresses and 306 domain names that purportedly have been hacked by the NSA. The timestamps included in the leak indicate that the servers were targeted between August 22, 2000 and August 18, 2010. The addresses include 32 .edu domains and nine .gov domains. In all, the targets were located in 49 countries, with the top 10 being China, Japan, Korea, Spain, Germany, India, Taiwan, Mexico, Italy, and Russia. Vitali Kremez, a senior intelligence analyst at security firm Flashpoint, also provides useful analysis here [flashpoint-intel.com]. [...] Other purported NSA tools discussed in Monday's dump have names including DEWDROP, INCISION, JACKLADDER, ORANGUTAN, PATCHICILLIN, RETICULUM, SIDETRACK, AND STOCSURGEON. Little is immediately known about the tools, but the specter that they may be implants or exploits belonging to the NSA is understandably generating intrigue in both security and intelligence circles.
"The Shadow Brokers" Claim to Have Hacked NSA [soylentnews.org]
NSA 'Shadow Brokers' Hack Shows SpyWar With Kremlin is Turning Hot [soylentnews.org]
Cisco Begins Patching an NSA Exploit Released by the Shadow Brokers [soylentnews.org]
Probe of Leaked U.S. NSA Hacking Tools Examines Operative's 'Mistake' [soylentnews.org]
NSA Contractor Harold Martin III Arrested [soylentnews.org]
NSA Contractor Accused of "Stealing" Terabytes of Information, Charged Under Espionage Act [soylentnews.org]