Following the news that the NSA’s Equation Group hacking tools, leaked last Friday by the Shadow Brokers, have now been used to infect thousands of Windows machines worldwide, Cris Thomas, Strategist at Tenable Network Security commented below.
Cris Thomas, Strategist at Tenable Network Security:
“It should come as no surprise that once an exploit his been publicised that it will be used by adversaries. The fact that these exploits are part of the recent Shadow Brokers release is no different, so it would be a mistake to attribute this usage solely to “Script Kiddies”. Organized online criminals, hacktivists, corporate espionage and even nation states will all have added these exploits to their attack arsenals.
“This is why businesses have to know every part of their network, understand their levels of exposure and prioritise security actions to where they will be most effective. Most organizations have visibility into around 93 percent of their computing environment, so there’s plenty of room for attackers to hide in the shadows. The best way to keep your organization safe is to illuminate those dark spots on the network by continuously monitoring your environment for vulnerabilities, misconfigurations and intruders.”