'EternalBlue' still popular exploit among cybercriminals: Seqrite

Thursday, May 10, 2018

With a detection count of over seven million in March 2018 globally, the leaked exploit developed by the US National Security Agency (NSA) "Eternal Blue" will continue to be a popular threat actor for cyber criminals to infiltrate into systems and make financial gains this year, a new report said on Wednesday.

Seqrite, the enterprise security solutions brand of Quick Heal Technologies, in its research report "Eternal Blue--A Popular Threat Actor of 2017-2018"--revealed that it has detected more than 18 million hits of the exploit in advanced cyber attacks like ransomware and distributed cryptologist campaigns.

"Eternal Blue", considered as one of the deadliest exploits, was leaked by the hacking group known as "The Shadow Brokers" in April 2017.

Seqrite said that it observed the first impression of "Eternal Blue" in May 2017 with the outbreak of Wanna Cry ransomware. The detection count gradually increased as Wanna Cry started spreading to wider geographies.

After the global Wanna Cry cyber attack, several new Proof of Concept (POC) exploits were discovered on the Internet for "Eternal Blue".

With an easy availability, hackers were observed using the exploit in the ensuing attacks like Eternal Rocks worm, Petya (also known as NotPetya) and Bad Rabbit ransomware.

"Exploits leaked by 'The Shadow Brokers'--especially Eternal Blue--have helped hackers to launch some of the biggest cyber attacks," said Sanjay Katkar, Joint Managing Director and Chief Technology Officer at Quick Heal Technologies Limited.

Seqrite also discovered that "Eternal Blue" is now being deployed by hackers to distribute cryptologist campaigns like Adylkuzz, Zealot and Wanna Mine.

"While hackers using 'Eternal Blue' to launch ransomware attacks is widely known, it is interesting to note that cyber criminals are now leveraging this tool to distribute cryptologist campaigns. What is worrisome is that a large number of endpoints continue to be unprotected and vulnerabilities remain unlatched," Katkar added.

Earlier in 2018, Quick Heal said that ransomware grew 300 per cent in 2017 in comparison with 2016 and in 2018 such attacks are set to become even more vicious.

Express your comment on this article

Submit your comments...
Disclaimer: The views expressed here are strictly personal and IndiansinKuwait.com does not hold any responsibility on them. We shall endeavour to upload/publish as many of the comments that are submitted as possible within a reasonable span of time, but we do not guarantee that all comments that are submitted will be uploaded/published. Messages that harass, abuse or threaten other members; have obscene, unlawful, defamatory, libellous, hateful, or otherwise objectionable content; or have spam, commercial or advertising content or links are liable to be removed by the editors. We also reserve the right to edit the comments that do get published. Please do not post any private information unless you want it to be available publicly.

Community News

Heart Beatz Center for Arts and Lifestyle Excellence (HBcale) announced their mega fiesta RAVE19. The event is scheduled to ...

Kuwait Canara Welfare Association held it’s Extra-Ordinary General Body Meeting on Friday, 22 March 2019 at the Harmony Hall...

A well-known cultural activist and writer Mr. Habeeb Rahman is going back to his motherland from Kuwait end of March 2019. H...

Tamilnadu Engineers Forum (TEF) Kuwait, the one & only ISO 9001:2015 certified non-profitable, Voluntary Services Organizati...

Gokulam Kalakshetra, Kuwait presents Nritholsav 2019 on Friday, 5th April 2019 at Cambridge English School. Nritholsav 2019,...