The NSA reported the vulnerability of WannaCry 5 years later

What did the NSA know? The WannaCry ransomware attack is living proof that all systems should be up to date with the latest patches, as it usually has them before mass exploitation of an exploit begins. But let's look at some details about the latest malware .

A Washington Post article reveals that the NSA reported the vulnerability that facilitated the spread of WannaCry to Microsoft after discovering that a team hackers stole it from their systems.

The US National Security Service was hit by a cyberattack by the US Shadow Brokers last year. Hackers managed to intercept many tools used by the Service to infect Windows computers.WannaCry

Most of these exploits used Windows weaknesses, and so the τους στο διαδίκτυο θα μπορούσε να έχει οδηγήσει σε επιθέσεις μεγάλης κλίμακας. Για να αποφευχθεί αυτό, η NSA ανέφερε τα σφάλματα στη Microsoft για να τα διορθώσει, καθώς μετά την διαρροή κινδύνευαν άμεσα και οι υπολογιστές που χρησιμοποιεί η κυβέρνηση των ΗΠΑ.

However, the service has been delayed and you may understand the word. Let's see what happened from the beginning:

After recognizing the vulnerability, Microsoft developed an update in mid-February and released it updated to supported Windows systems in March, while unsupported versions of Windows could only get the fix if they were covered by a special support license. After the massive infection with the WannaCry ransomware which started this month, Microsoft has decided to release this update for all users, including those who are still using Windows XP.

More worryingly though, the NSA had been using the same vulnerability to hack into Windows systems for at least 5 years before reporting it to Microsoft. Of course the defect would remain if the Shadow Brokers hadn't breached the NSA's systems.

This is one of the reasons why Microsoft has criticized the NSA and government agencies for not directly reporting security bugs to developers, stressing that systems around the world are becoming vulnerable only because they secretly keep important vulnerabilities for their own hacking programs.

“They have repeatedly leaked online, exploited information services and caused extensive damage. An equivalent scenario is to steal conventional weapons from the US Army. such as the Tomahawk rockets. And this latest attack represents a completely unwanted and alarming link between the two most serious forms of cyber-threat in today's world - state and organized crime together. "

iGuRu.gr The Best Technology Site in Greecefgns

every publication, directly to your inbox

Join the 2.100 registrants.

Written by giorgos

George still wonders what he's doing here ...

Leave a reply

Your email address is not published. Required fields are mentioned with *

Your message will not be published if:
1. Contains insulting, defamatory, racist, offensive or inappropriate comments.
2. Causes harm to minors.
3. It interferes with the privacy and individual and social rights of other users.
4. Advertises products or services or websites.
5. Contains personal information (address, phone, etc.).