The leaked NSA hacking tools keep showing up in criminal schemes
A hacking tool linked to the NSA continues to be used by cybercriminals in efforts to remotely steal money and confidential information from online banking users, according to research conducted by U.S. cybersecurity firm Proofpoint. In a recent blogpost by company researchers, Proofpoint said it had discovered two different banking trojans in the wild with computer code taken from a now publicly available exploit known as “EternalBlue,” or CVE-2017-0144. EternalBlue is believed to have been used by the NSA to gather intelligence. Originally leaked in April, the exploit works by targeting a dated vulnerability in Microsoft’s Server Message Block protocol. The vulnerability affects outdated versions of several different Microsoft operating systems. Microsoft already released a patch to fix the issue. In practice, EternalBlue will allow a hacker to quickly compromise multiple computers on a shared network as long as they are all similarly running dated software. “Patching Windows can take a […]
The post The leaked NSA hacking tools keep showing up in criminal schemes appeared first on Cyberscoop.
Continue reading The leaked NSA hacking tools keep showing up in criminal schemes