SoylentNews

canopic jug [soylentnews.org] writes:

Every few years, bugs known to affect all known version of Microsoft Windows turn up calling into question many claims from the lobbying giant regarding their software branch. The Inquirer is one of many sites reporting on recently leaked NSA tools which can target all versions of Windows from the past two decades. Althougth the emphasis in the article titles is on NSA, the exploits only make use of widely known holes in Microsoft systems which Microsoft often tells NSA about long before issuing an attempt at a patch [theregister.co.uk]. Their collaboration goes back for years, and even long before it was the first to join the NSA in kicking off the Prism program [theguardian.com].

Researcher Sean Dillon from cybersecurity firm RiskSense tweaked the source code of three nicked NSA exploits - EternalSynergy, EternalChampion and EternalRomance - to work against Windows versions dating back as far as Windows 2000.

Windows machines taken over through these exploits are part of a large black market industry where compromised machines are bought, sold, traded, and fought over for the purposes of producing spam, launching distributed denial of service attacks, spreading further malware, ad click spoofing, manipulating polls and games, and many more illegal activities.

Source : https://www.theinquirer.net/inquirer/news/3026129/leaked-nsa-hacking-tools-can-target-all-windows-versions-from-the-past-two-decades [theinquirer.net]

Original Submission