Leaked NSA Spying Tools Puts Windows Server At Risk
Caezar SottoA mysterious hacking group has recently leaked what seems to be the NSA's suspected spying tools. The cyber weapons (which are now available to the public) shows how vulnerable older Windows Servers really are.
On Friday, the Shadow Brokers leaked the files online. Setting off a ripple effect for concerned tech experts that are now worried about the discovery. According to PCWorld, concerns for cyber criminals incorporating the tools in their hacks is becoming apparent.
Matthew Hickey, the director of online security provider Hacker House believes that the "leak puts state tools into the hands of anyone."
His dissection of the NSA tools revealed 20 different Windows exploits, including four which appear to support previously unknown software vulnerabilities.
A post by ZDNet states that each exploit works as a program that takes advantage of a security flaw. Furthermore, researchers are still examining the leaked files.
Windows systems that are affected by the alleged NSA tools include older versions of the OS, including NT, XP and the Windows 7. Moreover, computers running Windows Server are in a bigger risk.
The exploits are designed to leverage vulnerabilities in a workstation's online server functions. Hickey added that one exploit called the "Eternalblue" could remotely cause older versions of Windows to execute code.
He demonstrated this against a computer running Windows Server 2008 R2 SP1. Surprisingly, he pulled off the hack in less than two minutes. He continued that an "attacker can use these tools to hack into Windows computers and run their code for future attacks."
For instance, a hacker could open a backdoor channel into the machine to upload ransomware or steal sensitive data. The bigger dilemma lies in the latest version of Windows Server that rolled out last year.
On Friday Microsoft stated that it was still studying the exploits. Amol Sarwate, director of engineering for Qualys, said that computers behind a firewall should be safe. He said the vulnerable systems "should consider disabling certain functions that the exploits use."
related stories
more stories from News
Big news! Apple nearing agreement with Baidu for AI integration in Chinese iPhones. Stay tuned for the latest updates on this exciting collaboration.
ernest hamiltonSamsung expands Galaxy AI rollout to millions of users. S23, Z Flip 5, Z Fold 5 included. Explore the latest enhancements and features. Upgrade your device now!
ernest hamiltonExciting update alert! Google Messages Beta introduces Gemini for selected users. Experience enhanced chats with this new feature. Explore the latest innovations now!
ernest hamiltonRumor alert! iPhone 16 Pro to feature A18 Pro chip, enhancing AI with 6-core GPU. Stay tuned for the latest updates on Apple's next-gen device.
ernest hamiltonExciting news for Samsung users! One UI 6.1 update rolls out this week, introducing Galaxy AI for S23, Fold5, and Flip5. Explore the latest features and enhancements. Update now!
ernest hamiltonGoogle ceases Pixel 6a sales, signaling a strategy shift. Stay informed on the latest developments in the smartphone market.
ernest hamiltonWhatsApp beta update unlocks direct access to Meta AI via search bar. Explore the latest features and streamline your messaging experience. Update now for enhanced functionality!
ernest hamiltonUnlock savings with Samsung! New price offer promotion introduced for Galaxy S24 phone buyers. Don't miss out on this limited-time deal. Upgrade your device today!
ernest hamilton