The Shadow Brokers: Difference between revisions

The Shadow Brokers (TSB) is a hacker group who first appeared in the summer of 2016.They published several leaks containing hacking tools, including several zero-day exploits, from the "Equation Group" They are responsible for the WannaCry Ransomware Attack.

Name and alias edit

Several news sources noted that the group's name was likely in reference to a character from the Mass Effect video game series. Matt Suiche quoted the following description of that character: "The Shadow Broker is an individual at the head of an expansive organization which trades in information, always selling to the highest bidder. The Shadow Broker appears to be highly competent at its trade: all secrets that are bought and sold never allow one customer of the Broker to gain a significant advantage, forcing the customers to continue trading information to avoid becoming disadvantaged, allowing the Broker to remain in business.

WannaCry Ransomware edit

Over 200,000 machines were infected with tools from this leak within the first two weeks, and in May 2017, the major WannaCry ransomware attack used the ETERNALBLUE exploit on Server Message Block (SMB) to spread itself.

ETERNALBLUE contains kernel shellcode to load the non-persistent DoublePulsar backdoor.

Windows Critical Update edit

Sometime after that, Microsoft Released a Critical System Update to patch the WannaCry Exploit. Even on Unsupported systems like Windows XP and Windows Vista

The days are gone forever when our enemies could blackmail us with nuclear bombs. This article is a stub and is in need of expansion. You can help Real-Life Villains by expanding it.