NSA spent a lot of taxpayer money developing hacking tools for espionage. Then it lost the tools. They've already done billions in damage around the world, and now they're being used to attack American cities. With
NEW: Baltimore was hit with an NSA hacking tool that is being used to hijack U.S. cities. ⁦⁩ and I spent months looking into the origins of EternalBlue, a stolen NSA weapon that is popping up in more and more attacks across the country.
Cyberattacks created with NSA malware cripple US cities in "the most destructive and costly NSA breach in history"
This story is incredible. US cities (including Baltimore) are being held for ransom via cyberattacks, using a stolen NSA hacking tool. Essential services turned off unless the city pays up. Like, today. It’s happening now as you read this.
This is *insane*. In 2017 the NSA lost control of a malware tool picked up by Russian, North Korean hackers. For 3 weeks Baltimore, where NSA is based, has had cyberattacks freezing thousands of computers, disrupted email, sales, water bills, health alerts
A hacking tool stolen from the NSA is being used to hijack cities across the country. One of those, Baltimore, is in the agency's own backyard.
New details: —ETERNALBLUE was initially nicknamed EternalBluescreen —NSA never seriously considered alerting Microsoft about discovering the vulnerability (before Shadow Brokers happened), and —“held on it” (“used it,” presumably) for more than five years
In Baltimore and Beyond, a Stolen N.S.A. Tool Wreaks Havoc via
When will Congress stop allowing ⁦⁩ to dodge public accountability for this by hiding behind secrecy?
The leaked NSA exploit EternalBlue is being used by hackers to paralyze American cities like Allentown, San Antonio, and most recently Baltimore (New York Times)
In Baltimore and Beyond, a Stolen N.S.A. Tool Wreaks Havoc - The New York Times
Attacks "pop up...attacks almost every day" but neither Microsoft nor the US government will talk about it and they don't seem capable of doing anything either. Good show.
Your tax dollars at work: The insidious malware that cybercriminals are now using to attack computers in Baltimore & other US cities and towns was developed by the National Security Agency
In Baltimore and Beyond, a Stolen N.S.A. Tool Wreaks Havoc
One security expert calls it “the most destructive and costly N.S.A. breach in history,” more damaging than Snowden's. “The government has refused to take responsibility, or even to answer the most basic questions.”
"Since 2017, when the N.S.A. lost control of the tool, EternalBlue, it has been picked up by state hackers in North Korea, Russia and, more recently, China, to cut a path of destruction around the world, leaving billions of dollars in damage."
“EternalBlue was so valuable, former N.S.A. employees said, that the agency never seriously considered alerting Microsoft about the vulnerabilities, and held on to it for more than five years before the breach forced its hand.”
well this is super bad
U.S. government policy on software vulnerabilities has been out of step with common norms, and now those chickens are coming home to roost.
Blowback from escaped cyberweapons created by NSA is an ongoing nightmare, and not going to end any time soon. Already cost *billions* in damage.
"A former F.B.I. official likened the situation to a government failing to lock up a warehouse of automatic weapons."
What if we just unplug from the Internet? From the NYT: In Baltimore and Beyond, a Stolen N.S.A. Tool Wreaks Havoc
NSA made it. NSA lost it. And of course, NSA won’t comment. via
This is what chaos looks like. And I’m afraid more of this coming our way.
Once more into the obvious: the most destructive forces on the internet - and the ones likely to render it useless or destroy it entirely, are governments. This is also a general truth about human history as a whole, of course.
Mind-boggling arrogance
What are the justifications for not signing to a digital Geneva convention? Giving up existing weapons advantage? Inability monitor compliance?
In Baltimore and Beyond, a Stolen N.S.A. Tool Wreaks Havoc
I never know whether to be more impressed by the NSA's malevolence or its incompetence.