Shadow Brokers threaten to release new exploits, including for Windows 10

The threat with the most teeth, however, is the claim that The Shadow Brokers could have more exploits to release, targeting mobile devices or Windows 10, as well as leaked data from the SWIFT banking system or nuke and missile programs in Russia, Iran, China or North Korea. The hackers say that anyone who is willing to pay a subscription fee would have access to the sensitive information.

Among the notable claims, he said, was that it had newer exploits for Microsoft's Window 10 operating system dating from after 2013.

In a blog post, the hacker group announced it was setting up a "monthly data dump" that would provide tools to break into network routers, web browsers, phone headsets and data stolen from central banks. The group proposed a "monthly subscription model" for dumps, beginning in June - despite the fact that earlier plans to auction the vulnerabilities didn't pan out. "What members doing with data after is up to members".

Marcy Wheeler, a longtime independent researcher, said in a blog post of her own Tuesday that the Shadow Brokers' post "brings the hammer" down both on Microsoft, whose products could be affected by any further leaks, and the National Security Agency, whose information the Shadow Brokers leaked in April.

Expert finds more North Korea links in ransomware attack
Whenever Microsoft learns of vulnerabilities with its operating systems (OS) it releases a Security Update. Authorities are investigating who is behind the attacks, but a Russian cyber criminal group is suspected.

"They've proven that these are highly effective tools in their possession, so people are going to be very interested in purchasing this, especially other criminals", Sean Dillon, a senior security analyst at RiskSense said.

That exploit is ETERNALBLUE, a supposed hacking tool developed by the Equation Group, a codenamed usually given to NSA cyber-operations.

The leaks, and the global WannaCry virus attack, have renewed debate over how and when intelligence agencies should disclose vulnerabilities used in cyber spying programs to so that businesses and consumers can better defend themselves against attacks. The NSA has not commented on Shadow Brokers since the group emerged previous year, or on the contents of past leaks or Friday's ransomware attack. Shadow Brokers hinted that this problem could be prevented if NSA would pay for all the tools.

"Simply by threatening another leak after leaking two sets of Microsoft exploits, Shadow Brokers will ratchet up the hostility between Microsoft and the government", Wheeler wrote.

Related news