Hackers Dump Cache of NSA Tools Putting Millions of Windows Users in Danger

1 minute read
| News

Hacker group Shadow Brokers dumped a new cache of NSA tools on Friday, and some are calling it, “the worst thing since Snowden.” Shadow Brokers has released other NSA tools, including a cache of old Linux hacking tools last Sunday. But Motherboard reported that the Windows tools released in the newest cache are the hacking equivalent of a bomb.

FUZZBUNCH NSA Windows Tool Dump

The Windows tools are filled with zero day exploits, unknown software security holes where the vendor has had zero days to patch. The worst tool in the new cache is codenamed FUZZBUNCH.

Screenshot from FUZZBUNCH cache dump tweet

Screenshot from FUZZBUNCH cache dump tweet

This is a toolkit called “the closest thing to a cyber weapon since Stuxnet,” and it contains plug-and-play exploits. Worse, it’s easy to use, which means that virtually anyone can use it to hack into Windows computers.

Millions of Windows computers all over the world are vulnerable. The tools date to around 2013, so Windows 10 isn’t affected. But FUZZBUNCH can affect every other Windows version, including Windows server editions. Server editions NT, 2000, 2003, 2008 and 2012 are also affected. Consumer editions XP, Vista, Windows 7 and Windows 8 are vulnerable too.

All of the tools can be repurposed into even more dangerous weapons, or used as-is. We can expect a big increase in Windows hacks over the next several weeks or more.

Better Mac

Writing for an Apple website means that I recommend people use macOS for laptops and desktops. But I won’t pretend that Apple’s systems are completely safe, and we’ve seen an increase in Mac malware—particularly trojans—over the past couple of years.

But this dump is scary, and it makes me happy that I’m a Mac user.

5
Leave a Reply

Please Login to comment
4 Comment threads
1 Thread replies
0 Followers
 
Most reacted comment
Hottest comment thread
5 Comment authors
Andrew OrrdaemonJustCauseLee Dronick Recent comment authors

This site uses Akismet to reduce spam. Learn how your comment data is processed.

  Subscribe  
newest oldest most voted
Notify of
Lee Dronick
Member
Lee Dronick

Ruh ro!

🔎 The tools are said to have been created by the US National Security Agency (NSA), and accompanying documents appear to indicate a possible breach of the Swift global banking system.

http://www.bbc.com/news/technology-39606575

JustCause
Member
JustCause

Most of holes were patched by MS in March (although they said nothing at the time).
https://arstechnica.com/security/2017/04/purported-shadow-brokers-0days-were-in-fact-killed-by-mysterious-patch/

daemon
Member
daemon

and it makes me happy that I’m a Mac user.

LoL

Every time I see you guys write that sentence I break down into helpless laughter!

You really don’t think there lots and lots of MacOS and iOS exploits out there? Cripes, these tools are nothing but script kiddie bullcrap, written to reduce the workload of programmers and given to people without the knowledge or wherewithal to even repair a simple kernal corruption.

Believe me, you have absolutely no reason to feel safe using an Apple deuce.

jhorvatic
Member
jhorvatic

Macs are way more secure then the “open” Windows and Google stuff. And people make me laugh when they say Macs are not yet the Windows community always seems to get hacked and companies are down for the count. There is malware out there but if you don’t click on the bait it is easily avoidable. So I always get the last laugh.