Skip to Content

Another huge cyber attack is underway

Another huge cyberattack is underway after last week's assault on computers worldwide, according to a global cybersecurity firm, suggesting military-grade cyberweapons are now being deployed for cyber crime.

Published: May 18, 2017, 11:21 am

    Cyber bandits used EternalBlue and DoublePulsar, developed by the NSA and released by the ShadowBrokers hackers back in April. The attackers used both these exploits to install the cryptocurrency miner Adylkuzz.

    “We don’t know how big it is” but “it’s much bigger than WannaCry”, Proofpoint’s vice president for email products, Robert Holmes, told AFP on Wednesday.

    The WannaCry cyberattack paralyzed computer systems worldwide. In Freiburg, Germany, a passenger told FWM, that all electronic noticeboards were down and transport interrupted. Not only Deutsche Bahn rail network were among those hit, but also Britain’s National Health Service, US package delivery giant FedEx and Spanish telecoms giant Telefonica.

    US officials on Tuesday put the number of computers infected by WannaCry at over 300 000. Despite a quick breakthrough that caused WannaCry to be slowed down, researchers don’t yet fully understand it.

    “The problem is that we’re still not certain about the origin of the infections” because it wasn’t via emails which deceive users into installing the virus, an expert told AFP on condition of anonymity.

    The latest attack targets the same vulnerabilities as the WannaCry ransomware, but uses the hundreds of thousands of computers believed to have been infected to mine virtual currency.

    Researchers at Proofpoint have discovered Adylkuzz, said Nicolas Godier, a researcher at the computer security firm. “It uses the hacking tools recently disclosed by the NSA and which have since been fixed by Microsoft in a more stealthy manner and for a different purpose,” he said.

    Virtual currencies such as Monero and Bitcoin make use of volunteers computers to record transactions.

    According to Proofpoint the attack include loss of access to shared Windows resources and degradation of PC and server performance. “As it is silent and doesn’t trouble the user, the Adylkuzz attack is much more profitable for the cyber criminals. It transforms the infected users into unwitting financial supporters of their attackers,” said Godier.

    Adylkuzz may have been infecting computers since at least May 2, and perhaps even since April 24, but due to its stealthy nature was not immediately detected.

    Shadow Broker hackers also released a data dump allegedly stolen from the NSA that details the agency’s ability to hack international banks, as well as the SWIFT network, via Windows PCs and servers used in global financial transfers.

    Dubbed ‘Lost in Translation,’ the hack lists Qatar First Investment Bank, Dubai Gold and Commodities Exchange and Tadhamon International Islamic Bank as allegedly compromised.

    One of the world’s most secure methods of making payment orders has been compromised as the hacking tools are now freely available online.

    Adylkuzz initially prevents cybersecurity professionals from identifying that there is a problem.

    While the term cryptocurrency is typically associated with Bitcoin, Adylkuzz actually mines Monero, a similar but more heavily encrypted digital currency. Monero became popular after it was adopted in the AlphaBay market on the Dark Web. One monero is roughly equivalent to $27 at current exchange rates.

    The attackers regularly changes the online payment address to avoid attracting attention.

    As in the case of the WannaCry attack, hackers used the NSA’s weaponized tools of Microsoft operating systems to infect hundreds of thousands of machines worldwide with malware, and many more are expected in the future.

    Keep ​your language polite​. Readers from many different countries visit and contribute to Free West Media and we must therefore obey the rules in​,​ for example​, ​Germany. Illegal content will be deleted.

    If you have been approved to post comments without preview from FWM, you are responsible for violation​s​ of​ any​ law. This means that FWM may be forced to cooperate with authorities in a possible crime investigation.

    If your comments are subject to preview ​by FWM, please be patient. We continually review comments but depending on the time of day it can take up to several hours before your comment is reviewed.

    We reserve the right to del​ete​ comments that are offensive, contain slander or foul language, or are irrelevant to the discussion.

    Americas

    Fake news beyond the headlines

    Mainstream media news content does no longer contain anything relevant beyond the screaming headlines designed to generate clicks.

    Culture wars: Hollywood mogul outed as serial sexual predator

    Hollywood's top globalist propagandist Harvey Weinstein, has been exposed not only as a serial sexual predator, but also as someone with a deceitful and duplicitous media in tow.

    Dawkins, other prominent leftists express contempt for Vegas victims

    The evolutionary biologist and atheist Richard Dawkins tweeted his contempt for white Americans and the Second Amendment of the US Constitution after learning about the mass shooting in Las Vegas.

    How stupid are American Democratic lawmakers?

    WashingtonThree Democrats from the House of Representatives have sent a letter to the US Federal Communications Commission (FCC) demanding an investigation into Sputnik Radio, "used as part of the Kremlin’s effort to influence the 2016 presidential election".

    Trump-DACA deal ‘biggest amnesty in American history’

    WashingtonFox News host Tucker Carlson warned on Thursday night that the Trump-DACA deal with Democrats will be the "biggest amnesty in American history". Worse still, president Trump will get nothing in return, Carlson said.

    California lawmakers introduce bill enabling the spread of HIV

    San Francisco Democratic Senator Scott Wiener is working full time to make infecting others with HIV, a minor transgression. Those who knowingly spread HIV may in future only face a misdemeanor charge.

    US Air Force sends out sprayer aircraft in wake of hurricane Harvey

    The Pentagon has dispatched C-130H Sprayers from the Air Force Reserve’s 910th Airlift Wing residing in Youngstown, Ohio to Texas in the wake of Hurricane Harvey.

    Western economies are shrinking fast

    The redistribution of relative global wealth is proceeding in favor of emerging countries to the detriment of the West, says a leading analyst. Western countries have lost the capacity to grow their economies due to demographic challenges.

    Russia warns of possible false flag chemical attack in Syria

    Russian Foreign Ministry Spokeswoman Maria Zakharova warned that terrorists from a faction of the Free Syrian Army (FSA) have access to chemical weapons in Syria.

    Charlie Hebdo cover: ‘God Drowned All The Neo-Nazis In Texas’

    ParisThe most recent cover of French magazine Charlie Hebdo mocks victims of Hurricane Harvey that has sweeped accross Texas with a cover of Nazis drowning and text that translates to, "God Exists! He Drowned All the Neo-Nazis of Texas".

    Go to archive