Shadow Brokers post Windows hacking tools online

Apr 14, 2017 21:54 GMT  ·  By

A set of tools allegedly belonging to the NSA and used to break into Windows systems across the world was posted online by infamous hacker group Shadow Brokers.

It appears that the hacking software was stolen from the NSA last summer and it can be used for hacking the majority of Windows versions currently out there, except for Windows 10.

On the other hand, the leaked data appears to also include exploits aimed at Windows 10 systems, though the majority of hacking tools are designed for older versions of the operating system, such as Windows XP, Windows 7, and Windows 8.1. There are also several hacking tools for Windows Server versions.

Microsoft hasn’t yet issued a statement to confirm the hack, but it goes without saying that the leak happened at a time when many IT experts might be caught off-guard because of the weekend and the Easter holiday. Furthermore, part of Microsoft’s security team is also likely to be out of the office, and all of these only leave the millions of users out there exposed to attacks.

No way to remain protected

Security experts warn that with the hacking tools now available online, the number of attacks aimed at Windows systems is very likely to skyrocket during the weekend, especially because newbie hackers have more time to launch their attacks, while at the same time being able to find victims easily because users spend more time online on their days off.

Edward Snowden has also confirmed the leak, explaining that “this is not a drill, NSA exploits affecting many fully-patched Windows systems have been released to the wild. NSA did not warn Microsoft.”

As for ways to remain protected until Microsoft delivers patches, there’s really no hackerproof solution right now, other than running Windows 10, though there’s evidence that this operating system version can be hijacked as well. Security experts recommend to keep critical systems offline for a few days, at least until after the weekend, but it’s very clear this isn’t the most convenient solution right now.

We’ve contacted Microsoft to ask for more information on this leak and we’ll update the article when an answer is offered.

UPDATE: Microsoft has provided us with the following statement: "We are reviewing the report and will take the necessary actions to protect our customers."

UPDATE 2: Microsoft downplays the leak, says all flaws have already been patched and users are secure.