Stolen from the NSA data on vulnerabilities hit users around the world
The largest recent cyberattack of the extortion virus WannaCry is related to the theft of vulnerability data collected by the US National Security Agency.
This was written in his blog, Microsoft CEO Brad Smith, reports BBC.
“Earlier we saw how the data on the vulnerabilities that the CIA collected appeared on Wikileaks, and data on vulnerabilities stolen from the NSA struck users around the world,” the record says.
If we draw a parallel with conventional weapons, the equivalent scenario in this case would be the theft of Tomahawk missiles from the US Army, he believes.
“Repeatedly exploits (programs using a vulnerability for hacking), which are in the hands of state bodies, fell into open access and caused extensive damage,” the head of the company added.
According to him, the authorities should not “store” data on vulnerabilities, but transfer them to developers so that they can eliminate these vulnerabilities and increase the security of computer networks.
As reported, on May 12, the extortion program WannaCry blocked tens of thousands of computers around the world. WannaCry encrypts user files, after which it becomes impossible to use them. Hackers suggest decrypting files for a certain amount in bitcoins.
For the attack, a modified EternalBlue program was used, which the group of hackers The Shadow Brokers stole from hackers from the Equation Group.