IT

RT Viral: New malware employs 7 NSA exploits, expert warns

RT Viral: New malware employs 7 NSA exploits, expert warns

For instance, WannaCry had one goal: encrypt files and make the victim cough up to decrypt them. Security firm Secdo reported that three weeks before the WannaCry attack, at least three different actors were "leveraging the NSA EternalBlue exploit to infect, install backdoors and exfiltrate user credentials in networks around the world, including the U.S.".

Given how recently WannaCry hit the news, every business worth its salt should already have reviewed its policies, processes and collection of legacy networked devices to minimise the risk of ransomware such as this taking hold.

Now, there's EternalRocks. Miroslav Stampar, a cybersecurity expert for Croatia's CERT, first discovered the hodgepodge of hacks on Wednesday. It uses this to spread from one computer to the next through the Windows OS.

Stampar said that EternalRocks, which he also calls MicroBotMassiveNet, spreads using all of the SMB exploits in the leak, including EternalBlue, which was used in the WannaCry attacks.

The existence of EternalRock was discovered when it infected Miroslav Stampar's honeypot.

Trump accused of 'Iranophobia' as he lands in Israel
Trump offered few indications of whether he planned to shift United States policy to better fight terrorism. "Love your shoes. President Trump is also expected to meet with Palestinian Authority President Mahmoud Abbas while in the region.

According to Stampar, the earliest findings of EternalRocks dates back to 3 May. According to a report, researchers have said that "EternalRocks" exploits the same vulnerability in Microsoft Windows that helped WannaCry spread to computers.

If and when EternalRocks is weaponised, the malicious worm has the potential to wreak havoc. The malware isn't asking for any payoff and neither is it locking or corrupting files. Instead, it seems to be gaining a foothold to launch future attacks. Along with EternalBlue, EternalChampion, EternalRomance and EternalSynergy are all Server Message Block (SMB) exploits.

Then, it lays dormant for 24 hours. After the initial run, it "drops the exploit pack shadowbrokers.zip and unpacks contained directories payloads/, configs/ and bins/". After unpacking, it begins scanning for open 445 ports and unloads the 1st stage of malware.

"Only we know it won't be because us humans always were, and always will be, the most fragile point in the chain of information security".

A screenshot of a computer infected by WannaCry. It could just be an experiment as of now.

Putin expresses deep condolences to United Kingdom over terror attack in Manchester
Kendall tweeted: "what happened in Manchester tonight is absolutely frightful . sending my love and prayers to those affected". Andy Burnham, the Greater Manchester metro mayor, said the attack was an "evil act".

It even names itself WannaCry in an attempt to hide from security researchers, Stampar said.

Last week, researchers developed and published tools that can help admins recover the private encryption key used by WannaCry to encrypt files on the local drives of machines it infects.

"EternalRocks could pose a serious threat to computers with vulnerable SMB ports exposed to the Internet, if its author would ever decide to weaponize the worm with ransomware, a banking trojan, RATs, or anything else", they explained.

Grab all the patch releases and apply them.

Second, replace all older operating systems with the latest version of Windows.

Manning leaves United States prison seven years after giving secrets to WikiLeaks
Crowley resigns after causing a stir by describing Manning's treatment in the Quantico brig as "ridiculous" and "stupid". Army released Private Chelsea Manning early Wednesday morning from the disciplinary barracks here.


  • Flynn to decline US Senate subpoena in Russian Federation  probe

    Flynn to decline US Senate subpoena in Russian Federation probe

    Donald Trump has received a warm welcome from the Saudi king on his first foreign trip as US President. The Justice Department would have to prosecute the case - something exceptionally unlikely to happen.

    Trump arrives in Israel in search of 'the ultimate deal'

    Israeli Prime Minister has always been known as an opponent of the nuclear deal signed between Iran and major world powers. At least one person was reportedly injured at the Qalandia checkpoint near Jerusalem .
    Cloud Computing Proves Patience Is a Virtue With Preakness Win

    Cloud Computing Proves Patience Is a Virtue With Preakness Win

    Klarman, president of Boston-based Baupost Group, called the decision "brilliant" and said he did not regret skipping the Derby. Always Dreaming was the first to throw in the towel, surrendering the lead to Classic Empire midway around the final turn.
  • Korea on THAAD missile system

    Moon told Abe to "look straight at history" and not make the past "a barrier", South Korea's presidential office said. On North Korean problems, Abe said he hopes to closely cooperate with Moon in denuclearizing the Korean Peninsula.

    Berrios dazzles as Twins salvage doubleheader split

    Berrios was not the first, and will not be the last, player in MLB history to take his lumps in his first year in the majors. When manager Paul Molitor went to get him, the sparse crowd at Target Field booed Molitor. "I think the head's different".
    Just one alcoholic drink a day increases breast cancer risk

    Just one alcoholic drink a day increases breast cancer risk

    They divvied up the data into those age groups because, McTiernan said, "Breast cancer is very different in the two groups". Researchers examined 12 different studies that together covered almost 5,000 cancer cases published from 1989 to 2015.
  • Tomori's spectacular own goal denies England Under-20s victory

    Tomori's spectacular own goal denies England Under-20s victory

    Juventus starlet Toure went close again after the break as he curled against the upright. This was the first own goal scored at this year's U-20 World Cup.
    Banamex to pay $97.4 mn to settle United States  laundering probe

    Banamex to pay $97.4 mn to settle United States laundering probe

    In 2015, the FDIC ordered Banamex USA to pay $140 million for a civil penalty related to other investigations. The bank said it was "pleased to resolve these matters".
    Texas' New 'Transgender Bathroom Bill' Keeps Biological Sexes Separate in School Facilities

    Texas' New 'Transgender Bathroom Bill' Keeps Biological Sexes Separate in School Facilities

    The NCAA pulled several events out of North Carolina after its version of the transgender bathroom bill passed previous year. North Carolina faced an onslaught of boycotts after it approved its bathroom bill past year .
  • Trump Budget Proposes Cuts to Food-Stamp Program

    Trump Budget Proposes Cuts to Food-Stamp Program

    The state received about $88 million from the federal government to fund the heating assistance program this fiscal year. The president's budget is a proposal to Congress, which will write its own budget resolutions and make appropriations.
    A look at the top moments from the Billboard Music Awards

    A look at the top moments from the Billboard Music Awards

    Meanwhile, Sean "Diddy" Combs celebrated Notorious B.I.G. on what would have been the hip-hop legend's 45th birthday. What did you think of her performance? The 2017 Billboard Music Awards ceremony was held in Las Vegas .

    Trump's Visit To This Jewish Holy Site Wasn't Without Controversy

    Education Minister Naftali Bennett used the welcome ceremony to press Trump to recognize Jerusalem as the capital of Israel . White House aides have moved to downplay expectations of significant progress on the peace process during the two-day visit.