Skip to Content

Another huge cyber attack is underway

Another huge cyberattack is underway after last week's assault on computers worldwide, according to a global cybersecurity firm, suggesting military-grade cyberweapons are now being deployed for cyber crime.

Published: May 18, 2017, 11:21 am

    Cyber bandits used EternalBlue and DoublePulsar, developed by the NSA and released by the ShadowBrokers hackers back in April. The attackers used both these exploits to install the cryptocurrency miner Adylkuzz.

    “We don’t know how big it is” but “it’s much bigger than WannaCry”, Proofpoint’s vice president for email products, Robert Holmes, told AFP on Wednesday.

    The WannaCry cyberattack paralyzed computer systems worldwide. In Freiburg, Germany, a passenger told FWM, that all electronic noticeboards were down and transport interrupted. Not only Deutsche Bahn rail network were among those hit, but also Britain’s National Health Service, US package delivery giant FedEx and Spanish telecoms giant Telefonica.

    US officials on Tuesday put the number of computers infected by WannaCry at over 300 000. Despite a quick breakthrough that caused WannaCry to be slowed down, researchers don’t yet fully understand it.

    “The problem is that we’re still not certain about the origin of the infections” because it wasn’t via emails which deceive users into installing the virus, an expert told AFP on condition of anonymity.

    The latest attack targets the same vulnerabilities as the WannaCry ransomware, but uses the hundreds of thousands of computers believed to have been infected to mine virtual currency.

    Researchers at Proofpoint have discovered Adylkuzz, said Nicolas Godier, a researcher at the computer security firm. “It uses the hacking tools recently disclosed by the NSA and which have since been fixed by Microsoft in a more stealthy manner and for a different purpose,” he said.

    Virtual currencies such as Monero and Bitcoin make use of volunteers computers to record transactions.

    According to Proofpoint the attack include loss of access to shared Windows resources and degradation of PC and server performance. “As it is silent and doesn’t trouble the user, the Adylkuzz attack is much more profitable for the cyber criminals. It transforms the infected users into unwitting financial supporters of their attackers,” said Godier.

    Adylkuzz may have been infecting computers since at least May 2, and perhaps even since April 24, but due to its stealthy nature was not immediately detected.

    Shadow Broker hackers also released a data dump allegedly stolen from the NSA that details the agency’s ability to hack international banks, as well as the SWIFT network, via Windows PCs and servers used in global financial transfers.

    Dubbed ‘Lost in Translation,’ the hack lists Qatar First Investment Bank, Dubai Gold and Commodities Exchange and Tadhamon International Islamic Bank as allegedly compromised.

    One of the world’s most secure methods of making payment orders has been compromised as the hacking tools are now freely available online.

    Adylkuzz initially prevents cybersecurity professionals from identifying that there is a problem.

    While the term cryptocurrency is typically associated with Bitcoin, Adylkuzz actually mines Monero, a similar but more heavily encrypted digital currency. Monero became popular after it was adopted in the AlphaBay market on the Dark Web. One monero is roughly equivalent to $27 at current exchange rates.

    The attackers regularly changes the online payment address to avoid attracting attention.

    As in the case of the WannaCry attack, hackers used the NSA’s weaponized tools of Microsoft operating systems to infect hundreds of thousands of machines worldwide with malware, and many more are expected in the future.

    Keep ​your language polite​. Readers from many different countries visit and contribute to Free West Media and we must therefore obey the rules in​,​ for example​, ​Germany. Illegal content will be deleted.

    If you have been approved to post comments without preview from FWM, you are responsible for violation​s​ of​ any​ law. This means that FWM may be forced to cooperate with authorities in a possible crime investigation.

    If your comments are subject to preview ​by FWM, please be patient. We continually review comments but depending on the time of day it can take up to several hours before your comment is reviewed.

    We reserve the right to del​ete​ comments that are offensive, contain slander or foul language, or are irrelevant to the discussion.

    Americas

    Illegals voting in US election far higher than previously estimated

    WashingtonThe number of illegal immigrants that voted in recent US elections was likely far greater than previous estimates, a new study revealed. As many as 5.7 million illegals may have voted in the 2008 election, securing the White House for Barack Obama.

    One in six Americans unhappy about media even before ex-FBI Comey’s hearing

    WashingtonAmericans are not happy with their news media, as almost six in 10 say it makes them angry and dissatisfied in a new poll. It may also be the trending topic from the appearance by ex-FBI director James Comey in front of the Senate Intelligence Committee.

    Fake news: New York Times misrepresents Putin’s denial of Russian hacking

    New YorkThis week the New York Times misrepresented Putin's denial Russia that engages in hacking to insinuate an admission of a Russian role in hacking the Democratic campaign to stop Hillary Clinton from being elected.

    Beheading presidents: Chelsea Clinton is not laughing so much now

    WashingtonHillary Clinton once famously said "We came, we saw, he died" cackling about the murder of Muammar Ghaddafi of Libya her country unleashed. But her daughter Chelsea for one, does not appreciate gags about killing presidents:

    America First: Trump pulls out of ‘unfair’ Paris climate agreement

    WashingtonAmerican Senator Rand Paul blasted the Paris climate accord on Thursday for being unfair after President Donald Trump made good on his campaign promise to withdraw from the Paris climate agreement.

    Kissinger called Zbigniew Brzezinski a ‘total whore’

    WashingtonHenry Kissinger once called Zbigniew Brzezinski a "total whore", the Washington Post revealed. His legacy in Washington's foreign policy lives on after Afghanistan, today in Ukraine.

    FBI’s James Comey was Clinton insider

    WashingtonThe FBI director that was fired by President Trump, James Comey, was a Hillary Clinton insider. His career actually highlights the unhealthy relationship that exists between major corporations and the political elite.

    Kushner is a ‘massive, massive problem’ for the White House

    WashingtonThe American author of a best-selling book about the Clinton's dark secrets, believes president Trump's son-in-law Jared Kushner has created "a massive, massive problem " for the White House.

    Anger grows in South Korea over US deployment of THAAD

    SeongjuThe newest, the American anti-ballistic system THAAD, just went operational in South Korea, but both sides of the 38th Parallel and above the Yalu River, that is North as well as South Korea is unhappy about the president Trump's latest move and it could swing the outcome of elections in South Korea.

    White House boasts about ‘isolating Russia’ in first 100 days

    The White House has called the "isolation of Russia at the United Nations" one of President Trump's successes in his first 100 days in office.

    Go to archive