What did the NSA know? The WannaCry attack ransomware is living proof that all systems should be updated with the latest patches, as Microsoft usually releases them before mass exploitation of an exploit begins. But let's look at some details about the recent malware.
A publication by The Washington Post reveals that the NSA reported the vulnerability that facilitated the spread of WannaCry to Microsoft after discovering that a group hackers stole it from their systems.
The US National Security Service was hit by a cyberattack by the US Shadow Brokers last year. Hackers managed to intercept many tools used by the Service to infect Windows computers.
Most of these exploits used Windows weaknesses, so leaking them online could have led to attacks big scale. To prevent this, the NSA reported the bugs to Microsoft to fix them, as computers used by the US government were also directly at risk after the leak.
However, the service has been delayed and you may understand the word. Let's see what happened from the beginning:
After recognizing the vulnerability, Microsoft developed an update in mid-February and released it updated to supported Windows systems in March, while unsupported versions of Windows could only get the fix if they were covered by a special support license. After the massive infection with the WannaCry ransomware started this month, Microsoft has decided to release this update to all users, including those who are still using Windows XP.
Most worrying, however, was that NSA used the same vulnerability to invade Windows systems for at least 5 years before reporting it to Microsoft. Of course, the flaw would remain hidden if Shadow Brokers did not violate NSA systems.
That's one of the reasons why Microsoft criticized the NSA and government agencies for not immediately reporting security flaws to developers, pointing out that systems around the world are only becoming vulnerable because they keep important vulnerabilities secret for theirs beforeletterhacking.
“They have repeatedly leaked online, exploited information services and caused extensive damage. An equivalent scenario is to steal conventional weapons from the US Army. such as the Tomahawk rockets. And this latest attack represents a completely unwanted and alarming link between the two most serious forms of cyber-threat in today's world - state and organized crime together. "