Windows users might want to turn off their computers this weekend, warns security researcher who's only being 'somewhat glib'
Getty Images/Stephen Brashear
The hacking tools are allegedly part of the arsenal that was said to be stolen from the NSA last summer. That arsenal was reportedly part of what NSA analysts use to break into computers, networks and other systems to do their spy work.
Back in August the group released a bunch of hacking tools and on Friday it released another bunch of "really amazing stuff" according to Nicholas Weaver, a computer security researcher at the International Computer Science Institute in Berkeley on the blog Lawfair.
"This may well be the most damaging dump against the NSA to date, and it is without question the most damaging post-Snowden release," Weaver wrote.
He also noted that timing of the dump is particularly harsh, right at the start of the Easter holiday weekend when many IT pros will busy with their families, and inexperienced hackers (like teenagers) have extra time on their hands. Those inexperienced hackers are known as "script kiddies."
"Friday is the perfect day to dump tools if your goal is to cause maximum chaos; all the script kiddies are active over the weekend, while far too many defenders are offline and enjoying the Easter holiday. I'm only being somewhat glib in suggesting that the best security measure for a Windows computer might be to just turn it off for a few days," Weaver says.
Other researchers, pouring through the dump, say they are finding some hacking tools that are really dangerous and could impact most versions of Windows, including the type that runs on computer servers.
"This is really bad, in about an hour or so any attacker can download simple toolkit to hack into Microsoft based computers around the globe," tweeted one such researcher, Hacker Fantastic, who's been pouring through the materials.
The Shadow Brokers are is widely believed to be Russian, and possibly tied to the Russian government.
Microsoft could not be reached for comment by Business Insider but a spokesperson told ZDNet's Zack Whittaker. "We are reviewing the report and will take the necessary actions to protect our customers."
This is not a drill: #NSA exploits affecting many fully-patched Windows systems have been released to the wild. NSA did not warn Microsoft. https://t.co/2H8F7vH7fW
- Edward Snowden (@Snowden) April 14, 2017
Guess how many internet-connected windows machines are vulnerable to remote owning this weekend. Then probably multiply your guess by 100. https://t.co/1IIofVWzMR
- Ben (@Gridlock) April 14, 2017
This isn't a data dump, this is a damn Microsoft apocalypse. #0day #shadowbrokers
- Hacker Fantastic (@hackerfantastic) April 14, 2017
- Fresh photographs of Milky Way’s black hole Sgr A* reveal strong, twisted magnetic field similar to M87*
- 8 Lesser-known places to explore in Himachal Pradesh
- Markets end FY24 on buoyant note amid positive global cues
- SRM Contractors IPO allotment – How to check allotment, GMP, listing date and more
- Rupee falls 6 paise to settle at 83.39 against US dollar