Please disable your adblock and script blockers to view this page

Baltimore's Ransomware Mess Is Its Own Fault?Cyber Saturday


the The New York Times
the U.S. National Security Agency
EternalBlue
NSA
Microsoft
ShadowBrokers
NotPetya
CyberScoop
BlueKeep
Data Sheet
Fortune
OTR
about.me
PGP
Signal
Google
Apple
the Washington Post
iPhone
the Wall Street Journal
Moody
Equifax
Moody’s
CNBC
CrowdStrike
Palo Alto Networks
PureSec
Insight Partners
Recorded Future
FireEye
Checker
Flipboard
users’
Pinboard
Twitter
Spies Tried to End Tech’s Encryption Debate
Chris MorrisCharges
the Defense Advanced Research Agency
DARPA


RobbinHood
WannaCry
Dave Aitel
Rob Graham
Dutch Ruppersberger
Rob Joyce
Robert Hackett@rhhackettrobert.hackett@fortune.comWelcome
Cryptocat
Wickr
Joe Mielenhausen
Twistlock
Verodin
Maciej Cegłowski
DCCC
David MeyerHow
Robert HackettThe Splinternet
Jeff John RobertsSomeone
Julian Assange
Mark DentA


Eternalblue
Chinese


Plum Island
the Long Island Sound

No matching tags


Baltimore
North Korea’s
Russia
Cyxtera
Maryland
Baltimore City
U.S.
Ukraine

No matching tags

Positivity     39.00%   
   Negativity   61.00%
The New York Times
SOURCE: http://fortune.com/2019/06/01/baltimore-nsa-ransowmare-microsoft-windows-eternalblue/
Write a review: Fortune
Summary

The code behind EternalBlue leaked online at the hands of a mysterious, still-unknown entity called the ShadowBrokers in 2017, and nation state actors have used the weapon to launch destructive cyberattacks—including North Korea’s WannaCry and Russia’s NotPetya—costing billions of dollars in damages for businesses and governments around the globe.Because NSA lost control of this hacking tool, an alleged “key component” of the latest ransomware, according to the Times, the paper lays blame at the spy agency’s feet.The backlash on that point has been fierce. Dave Aitel, a former NSA hacker and present chief security officer of Cyxtera, a data center company, wrote on his personal blog that “that particular exploit being used to do lateral movement for this ransomware is neither supported by any public facts, nor my own sources on the issue.” Alternative means of propagation were far likelier, he said. C.A. Dutch Ruppersberger, a Maryland congressperson, said that senior NSA leaders told him “there is no evidence at this time that EternalBlue played a role in the ransomware attack affecting Baltimore City,” as the Times reported in a follow-up story on Friday. Rob Joyce, a top NSA bigwig offered his own form of disavowal: “The characterization that there is an indefensible nation-state tool propagating ransomware is simply untrue,” he said in remarks reported by CyberScoop, a cybersecurity news outlet.The NSA has a point. It’s unclear how the spooks lost control of their bag of cyber tricks, including EternalBlue, a couple years ago, let alone the identities of the thieves that call themselves the ShadowBrokers.As we ponder these questions and wait for Baltimore to release more details about its thwomping, a recommendation: For the love of all that’s holy, please patch this other critical, wormable Windows security hole.

As said here by Robert Hackett