USEUROPEAFRICAASIA 中文双语Français
China
Home / China / World

Cyberattack thrusts focus on spy agency

China Daily | Updated: 2017-05-17 07:50

NSA used flaws in Windows to build a hacking tool for own use

WASHINGTON - An unprecedented global cyberattack that infected computers in at least 150 countries beginning on Friday has unleashed a new wave of criticism of the US National Security Agency.

The attack was made possible by a flaw in Microsoft's Windows software that the NSA used to build a hacking tool for its own use - only to have that tool and others end up in the hands of a mysterious group called the Shadow Brokers, which then published them online.

Microsoft President Brad Smith sharply criticized the US government on Sunday for "stockpiling" software flaws that it often cannot protect, citing recent leaks of both NSA and CIA hacking tools.

"Repeatedly, exploits in the hands of governments have leaked into the public domain and caused widespread damage," Smith said. "An equivalent scenario with conventional weapons would be the US military having some of its Tomahawk missiles stolen."

Some major technology companies, including Google and Facebook, declined to comment on the statement.

But some other technology industry executives said privately that it reflected a widely held view in Silicon Valley that the US government is too willing to jeopardize internet security in order to preserve offensive cyber capabilities.

The NSA did not respond to requests for comment.

Espionage

The NSA and other intelligence services generally aim to balance disclosing software flaws they unearth against keeping them secret for espionage and cyber warfare purposes.

On Monday, senior administration officials defended the government's handling of software flaws, without confirming the NSA link to WannaCry, the tool used in the global ransomware attack.

"The United States, more than probably any other country, is extremely careful with their processes about how they handle any vulnerabilities that they're aware of," Tom Bossert, the White House homeland security adviser, said at a news briefing on Monday.

Other tools from the presumed NSA toolkit published by the Shadow Brokers have also been repurposed by criminals and are being sold on underground forums, researchers said. But they appear to be less damaging than WannaCry. It is not known who is behind the Shadow Brokers.

Derek Manky, global security strategist at cybersecurity firm Fortinet, said he thinks WannaCry is probably the worst that will come from the Shadow Brokers' publicly dumped toolkit, though the group may have held back from publicly revealing everything it obtained

"Out of that batch, it is probably a high-water mark," Manky said.

Security experts said the NSA had engaged in responsible disclosure by informing Microsoft of the flaw at some point after learning it had been stolen and a month before the tools leaked online.

Users who do not patch their systems and the Shadow Brokers were more directly responsible for the attack than the NSA, they said.

The Department of Homeland Security began an "aggressive awareness campaign" to alert industry partners to the importance of installing the Microsoft patch shortly after it was released in March, an agency official working on the attack said.

"This one, we knew it could be a problem," the official said.

"NSA should be embarrassed - they've had a lot of damaging leaks," said James Lewis, a former US official who is now a cyber expert at the Center for Strategic and International Studies. Still, he said, "Microsoft needs to admit that the 20th century is over, it's a much more hostile environment, and that hobbling the NSA won't make us any safer."

Reuters - Xinhua

 Cyberattack thrusts focus on spy agency

A patient takes a nap as she waits at the registration desk in a hospital in Jakarta, Indonesia, on Monday. The hospital's information system was hit by last week's cyberattack.Dita Alangkara / Associated Press

 

Photo
Polar icebreaker Snow Dragon arrives in Antarctic
Xi's vision on shared future for humanity
Air Force units explore new airspace
Macao Light Festival 2017 unveiled
Crew members of high-speed trains linking Xi'an, Chengdu
Free trade studies agreed on as Li meets with Canadian PM Trudeau

Latest

State Council News

Premier Li urges information integration to serve the public
Premier Li urges information disclosure on public resource allocation
Exclusive
Xi's vision on shared future for humanity
Dialogue links global political parties
How expats are making their Chinese dream come true
Editor's picks
Beijing limits signs attached to top of buildings across city
Veteran freight locomotive now leads passenger trains
Ten photos you don't wanna miss
Ten photos from across China: Nov 17-23
Special
Discovering Hainan
CPC encyclopedia
Copyright 1995 - . All rights reserved. The content (including but not limited to text, photo, multimedia information, etc) published in this site belongs to China Daily Information Co (CDIC). Without written authorization from CDIC, such content shall not be republished or used in any form. Note: Browsers with 1024*768 or higher resolution are suggested for this site.
License for publishing multimedia online 0108263

Registration Number: 130349
About China Daily
Advertise on Site
Contact Us
Job Offer
Expat Employment
FOLLOW US