As if dealing with the continuing drama of the WannaCry global ransomware attack was not enough, the original group behind the leak of National Security Agency (NSA) hacking tools has announced it will release more vulnerabilities that could be exploited in the near future.
The hacker group came to public attention previous year when it attempted to auction off a set of older cyber-spying tools, which it said was stolen from the US National Security Agency.
The Shadow Brokers said that members can expect to get compromised banking data from SWIFT, a global banking network, newer exploits for Windows 10, and compromised network data from "Russian, Chinese, Iranian or North Korean" nuclear and missile programs.
In a long, difficult-to-read blog post Tuesday, the Shadow Brokers implies the new exploits and tools come from the Equation Group. These will include monthly data dumps starting in June.
Sean Dillon, a senior security analyst at RiskSense, said the group has proven they possess highly effective tools so people, particularly criminals, are very willing to pay for what them. While later reports have questioned how much of a role the Shadow Brokers actually had in the leak of the exploits, what is known without a doubt is that the exploits in their possession did indeed originate from the NSA, as confirmed by the Snowden documents.
Although Microsoft patched the SMB flaw in its newer operating systems in March, and then issued an emergency patch of older systems in May, tens of thousands of computers worldwide had not been updated, thus allowing the ransomware to spread. Spokesperson from Microsoft has already said that they will be preparing a response for this claim from the hacking group. "They claim they still have zero-days".
The leaked WannaCry software has also caused a rift between Microsoft and the US government, with the Redmond-based company criticizing the NSA for holding on to exploits.
In the Steemit.com post, Shadow Brokers responds to theories that North Korea was behind the WannaCry attack, apparently dismissing that through open mockery.
The post explains Shadow Brokers main motivation in its activities as a competition of sorts, pitting itself against the NSA. It condems them for not buying the exploits in the past and has given them another chance to purchase the entire stolen data dump before it starts to auction on the dark web, in parts.