Microsoft says users are protected from alleged NSA malware

Adjust Comment Print

The firm took to Twitter to post a statement that said that there was "no credibility to the online claim of a compromise of EastNets customer information on its SWIFT service bureau".

But the contents of the leak appeared to suggest otherwise. Belgium-based Swift downplayed the risk of attacks employing the code released by hackers.

"This would make a lot of sense that the NSA compromise this specific SWIFT Service Bureau for Anti-money laundering (AML) reasons in order to retrieve ties with terrorists groups", Suiche wrote. The NSA has been roundly criticized for not warning companies sooner that the tools had leaked, though it has yet to address any potential connection to the leak. WikiLeaks also released more so-called CIA "Vault 7" attack tools earlier this month that are created to target Windows systems.

The Shadow Brokers came on the scene in the summer of 2016 when they announced they had a trove of stolen NSA tools that they then put up for auction. "EastNets continues to guarantee the complete safety and security of its customers data with the highest levels of protection from its Swift-certified service bureau".

The dump of Windows exploits, that was likely to cause the most damage and embarrassment to the intelligence agency had been expected since the hacking group first emerged on the scene a year ago.

Hackers compromised the system in March 2016 - stealing the computer credentials of a SWIFT operator in Bangladesh -to send messages to the Federal Reserve Bank of NY that resulted in the theft of $81 million from the Bangladesh central bank.

That cyberattack was likely the work of the North Korean government, according to the Russian cybersecurity company Kaspersky Lab ZAO.

US envoy Tillerson meets with Putin in Moscow
Russian Foreign Minister Sergey Lavrov says the allegations of Moscow's meddling in the US presidential election haven't been proven.

The company said Friday that the leaked documents were dated and denied that any customer data had been affected.

Reuters reports that SWIFT also claims there's no evidence its network has been accessed.

EastNets was one of the Swift service bureaus tagged by The Shadow Brokers, a group who released the files. According to the company, "The EastNets Service Bureau runs on a separate secure network that can not be accessed over the public networks".

Microsoft says all of the security flaws exposed in Friday's leak of National Security Agency (NSA) hacking tools were already fixed in supported versions of its software. "Is being too bad nobody deciding to be paying the shadow brokers for just to shutup and going away", the group said in a typically garbled blog post.

"That's information you can only get if you compromise the system", he said.

The document dump - which is mostly lines of computer code - amounts to an emergency for Microsoft because the hacks consist of a variety of "zero-day exploits" that can serve to infiltrate Windows machines for purposes of espionage, vandalism, or document theft.

"Shadow Brokers" has previously released leaked malware which it attempted to sell for tens of millions of dollars. Snowden previously released files showing the NSA had the ability to intercept SWIFT messages.

Comments