Stolen NSA Tool Used in Cyberattack to Paralyze Baltimore

[San Lumen]

https://www.nytimes.com/2019/05/25/us/n ... imore.html

A stolen NSA known as EternalBlue was recently used on Baltimore to shut down city computers and render them unable to receive email and city services unable to process essential services such as water bills, real estate and and health alerts and the attack is ongoing. There have been workarounds used to restore some functions though handicaps remain as the city refuses to pay the ransom money and nor should they pay it.

The tool somehow wound up the in the hands of state hackers from Russia, China and North Korea and is being used as ransomware in municipalities across the world with recent attacks including places in the US such as Allentown, Pennsylvania and San Antonio.

This is what happens when you have increasing reliance on computers. When they cannot function in can shut down a municipal government.

Why such a tool like this was created and how NSA servers are so vulnerable that such a cyperweapon could be stolen is truly frightening.

What's your thoughts on this NSG?

[Petrolheadia]

This is what happens when you have increasing reliance on computers. When they cannot function in can shut down a municipal government.

Still better than the shitshow known under the names of "pen and paper" and "Veterans' Affairs".

[Kowani]

It’s not so over reliance as it is the government not updating its software.

[Loben The 2nd]

This is what happens when you have increasing reliance on computers. When they cannot function in can shut down a municipal government.

Still better than the shitshow known under the names of "pen and paper" and "Veterans' Affairs".

Wouldn’t even subject my worst enemy to that.

[San Lumen]

It’s not so over reliance as it is the government not updating its software.

Why are they not doing it then I wonder?

[Kowani]

It’s not so over reliance as it is the government not updating its software.

Why are they not doing it then I wonder?

I don’t know why, but that’s what the article says.

[Petrolheadia]

It’s not so over reliance as it is the government not updating its software.

Why are they not doing it then I wonder?

Money, dear boy.

[Loben The 2nd]

It’s not so over reliance as it is the government not updating its software.

Why are they not doing it then I wonder?

Probably because it’s painfully expensive?

[Loben The 2nd]

Why are they not doing it then I wonder?

Money, dear boy.

Money money money money....money

[Nakena]

Not using Linux
But using email
Because its 2018

[Purpelia]

Not using Linux
But using email
Because its 2018

Using linux for anything other than servers is a serious WTF at best. Accept the fact that most users want windows because they know windows because it is the best. Plus when a three letter agency sets out to hack a system they can do it irregardless of what you are running. Having it be something that's open source only makes their life easier.

[Nakena]

Not using Linux
But using email
Because its 2018

Using linux for anything other than servers is a serious WTF at best. Accept the fact that most users want windows because they know windows because it is the best. Plus when a three letter agency sets out to hack a system they can do it irregardless of what you are running. Having it be something that's open source only makes their life easier.

Apparently it wasn a three letter agency but some opportunistic ransomware attack.

If it was a three letter agency then this constitutes an attack on US soil against infrastructure and should require an approperiate and decisive response.

[Purpelia]

Apparently it wasn a three letter agency but some opportunistic ransomware attack.

If it was a three letter agency then this constitutes an attack on US soil against infrastructure and should require an approperiate and decisive response.

Using a tool developed by a three letter agency. Most likely it's a disgruntled employee. Did you even read the article or the OP?

[An Alan Smithee Nation]

Maybe stop outsourcing to Booz Allen, and they wouldn't keep losing the NSA's stuff?

[Souseiseki]

i remember arguing with people years ago about whether it was a good idea for the NSA to write tools to exploit holes in our security systems instead of fixing them. pretty funny that we keep getting stories about "NSA hack they promised would never be exploited by anyone other than the NSA used to completely wreck out shit" now.

[San Lumen]

Money, dear boy.

Money money money money....money

Spend the money to fix it then

[Loben The 2nd]

Money money money money....money

Spend the money to fix it then

Probably a budget issue.

[UniversalCommons]

You add ransomware to a supercomputer and this is what you get. Before this it was Carnivore which was an ISP sucker. Instead of a single website, it would grab all the information in an insternet service provider. This is the result of scaling up existing software and adding artificial intelligence to the process. There is nothing exceptional about this. This could be done by a group of programmers or a state organization. It is more a matter of scale than anything else. Not surprised at all.

[Nova Cyberia]

This is why we need a Cyber branch for the military.

[Senkaku]

lol baltimore really just cannot catch a break rip

[Trollgaard]

https://www.nytimes.com/2019/05/25/us/nsa-hacking-tool-baltimore.html

A stolen NSA known as EternalBlue was recently used on Baltimore to shut down city computers and render them unable to receive email and city services unable to process essential services such as water bills, real estate and and health alerts and the attack is ongoing. There have been workarounds used to restore some functions though handicaps remain as the city refuses to pay the ransom money and nor should they pay it.

The tool somehow wound up the in the hands of state hackers from Russia, China and North Korea and is being used as ransomware in municipalities across the world with recent attacks including places in the US such as Allentown, Pennsylvania and San Antonio.

This is what happens when you have increasing reliance on computers. When they cannot function in can shut down a municipal government.

Why such a tool like this was created and how NSA servers are so vulnerable that such a cyperweapon could be stolen is truly frightening.

What's your thoughts on this NSG?

All essential services like water, heat, power, etc should not be able to be affected by the internet. They should be manual/analogue etc. Maybe its not efficient but its safer in the long run.

[Trollzyn the Infinite]

*Cyber-Terrorist Attack

[San Lumen]

https://www.nytimes.com/2019/05/25/us/nsa-hacking-tool-baltimore.html

A stolen NSA known as EternalBlue was recently used on Baltimore to shut down city computers and render them unable to receive email and city services unable to process essential services such as water bills, real estate and and health alerts and the attack is ongoing. There have been workarounds used to restore some functions though handicaps remain as the city refuses to pay the ransom money and nor should they pay it.

The tool somehow wound up the in the hands of state hackers from Russia, China and North Korea and is being used as ransomware in municipalities across the world with recent attacks including places in the US such as Allentown, Pennsylvania and San Antonio.

This is what happens when you have increasing reliance on computers. When they cannot function in can shut down a municipal government.

Why such a tool like this was created and how NSA servers are so vulnerable that such a cyperweapon could be stolen is truly frightening.

What's your thoughts on this NSG?

All essential services like water, heat, power, etc should not be able to be affected by the internet. They should be manual/analogue etc. Maybe its not efficient but its safer in the long run.

I could not agree more

[Nova Cyberia]

https://www.nytimes.com/2019/05/25/us/nsa-hacking-tool-baltimore.html

A stolen NSA known as EternalBlue was recently used on Baltimore to shut down city computers and render them unable to receive email and city services unable to process essential services such as water bills, real estate and and health alerts and the attack is ongoing. There have been workarounds used to restore some functions though handicaps remain as the city refuses to pay the ransom money and nor should they pay it.

The tool somehow wound up the in the hands of state hackers from Russia, China and North Korea and is being used as ransomware in municipalities across the world with recent attacks including places in the US such as Allentown, Pennsylvania and San Antonio.

This is what happens when you have increasing reliance on computers. When they cannot function in can shut down a municipal government.

Why such a tool like this was created and how NSA servers are so vulnerable that such a cyperweapon could be stolen is truly frightening.

What's your thoughts on this NSG?

All essential services like water, heat, power, etc should not be able to be affected by the internet. They should be manual/analogue etc. Maybe its not efficient but its safer in the long run.

The problem is not that they're connected to the internet. The problem is that we don't secure our cyber infrastructure enough.

[Trollgaard]

All essential services like water, heat, power, etc should not be able to be affected by the internet. They should be manual/analogue etc. Maybe its not efficient but its safer in the long run.

The problem is not that they're connected to the internet. The problem is that we don't secure our cyber infrastructure enough.

They should never have been connected to the internet in the first place. Its just a ticking time bomb.