For nearly three weeks, Baltimore has struggled with a cyberattack by digital extortionists that has frozen thousands of computers, shut down email and disrupted real estate sales, water bills, health alerts and many other services.


But here is what frustrated city employees and residents do not know: A key component of the malware that cybercriminals used in the attack was developed at taxpayer expense a short drive down the Baltimore-Washington Parkway at the National Security Agency, according to security experts briefed on the case.
Since 2017, when the NSA lost control of the tool, EternalBlue, it has been picked up by state hackers in North Korea, Russia and, more recently, China, to cut a path of destruction around the world, leaving billions of dollars in damage. But over the past year, the cyberweapon has boomeranged back and is now showing up in the NSA’s own backyard.
It is not just in Baltimore. Security experts say EternalBlue attacks have reached a high, and cybercriminals are zeroing in on vulnerable American towns and cities, from Pennsylvania to Texas, paralysing local governments and driving up costs.
The NSA connection to the attacks on US cities has not been previously reported, in part because the agency has refused to discuss or even acknowledge the loss of its cyberweapon, dumped online in April 2017 by a still-unidentified group calling itself the Shadow Brokers. Years later, the agency and the FBI still do not know whether the Shadow Brokers are foreign spies or disgruntled insiders.
Thomas Rid, a cybersecurity expert at Johns Hopkins University, called the Shadow Brokers episode “the most destructive and costly NSA breach in history,” more damaging than the better-known leak in 2013 from Edward Snowden, the former NSA contractor.
“The government has refused to take responsibility, or even to answer the most basic questions,” Rid said. “Congressional oversight appears to be failing. The American people deserve an answer.”
The NSA and FBI declined to comment.



Since that leak, foreign intelligence agencies and rogue actors have used EternalBlue to spread malware that has paralysed hospitals, airports, rail and shipping operators, ATMs and factories that produce critical vaccines. Now the tool is hitting the United States where it is most vulnerable, in local governments with aging digital infrastructure and fewer resources to defend themselves.
Before it leaked, EternalBlue was one of the most useful exploits in the NSA’s cyberarsenal. According to three former NSA operators who spoke on the condition of anonymity, analysts spent almost a year finding a flaw in Microsoft’s software and writing the code to target it. Initially, they referred to it as EternalBluescreen because it often crashed computers — a risk that could tip off their targets. But it went on to become a reliable tool used in countless intelligence-gathering and counterterrorism missions.
EternalBlue was so valuable, former NSA employees said, that the agency never seriously considered alerting Microsoft about the vulnerabilities, and held on to it for more than five years before the breach forced its hand.
North Korea was the first nation to co-opt the tool, for an attack in 2017 — called WannaCry — that paralysed the British health care system, German railroads and some 200,000 organisations around the world. Next was Russia, which used the weapon in an attack — called NotPetya — that was aimed at Ukraine but spread across major companies doing business in the country. The assault cost FedEx more than $400 million and Merck, the pharmaceutical giant, $670 million.
The damage didn’t stop there. In the past year, the same Russian hackers who targeted the 2016 US presidential election used EternalBlue to compromise hotel Wi-Fi networks. Iranian hackers have used it to spread ransomware and hack airlines in the Middle East, according to researchers at the security firms Symantec and FireEye.
“It’s incredible that a tool which was used by intelligence services is now publicly available and so widely used,” said Vikram Thakur, Symantec’s director of security response.

One month before the Shadow Brokers began dumping the agency’s tools online in 2017, the NSA — aware of the breach — reached out to Microsoft and other tech companies to inform them of their software flaws. Microsoft released a patch, but hundreds of thousands of computers worldwide remain unprotected.

Hackers seem to have found a sweet spot in Baltimore, Allentown, Pennsylvania, San Antonio and other local US governments, where public employees oversee tangled networks that often use out-of-date software. In July, the Department of Homeland Security issued a dire warning that state and local governments were getting hit by particularly destructive malware that now, security researchers say, has started relying on EternalBlue to spread.
The costs can be hard for local governments to bear. The Allentown attack, in February 2018, disrupted city services for weeks and cost about $1 million to remedy — plus another $420,000 a year for new defences, said Matthew Leibert, the city’s chief information officer.
He described the package of dangerous computer code that hit Allentown as “commodity malware,” sold on the dark web and used by criminals who don’t have specific targets in mind. “There are warehouses of kids overseas firing off phishing emails,” Leibert said, like thugs shooting military-grade weapons at random targets.
The malware that hit San Antonio in September infected a computer inside Bexar County Sheriff Office and tried to spread across the network using EternalBlue, according to two people briefed on the attack.
This past week, researchers at the security firm Palo Alto Networks discovered that a Chinese state group, Emissary Panda, had hacked into Middle Eastern governments using EternalBlue.
“You can’t hope that once the initial wave of attacks is over, it will go away,” said Jen Miller-Osborn, deputy director of threat intelligence at Palo Alto Networks. “We expect EternalBlue will be used almost forever, because if attackers find a system that isn’t patched, it is so useful.”

© 2019 New York Times News Service

Cities hijacked by tool stolen from the NSA

Posted by : Admin
Monday 27 May 2019
Read More

Following a huge attack on one of the most popular messaging services, users are being advised to react.

News of the WhatsApp attack echoed around the world when it broke on Tuesday May 14.
It is understood that hackers found a “major vulnerability” on the messaging app. They were then able to remotely install surveillance software. This was done on phones and other devices.
WhatsApp has reportedly confirmed that “a select number” of users were targeted. The company, owned by Facebook, is also understood to believe the attack was conducted by “an advanced cyber-actor”.
Moreover, the Financial Times, along with others, is reporting that NSO Group, an Israeli firm, developed the surveillance software involved. It is thought that Journalists, lawyers, activists and human rights defenders were the most likely to be targeted.
According to the BBC a solution was rolled out on Friday May 10 . The following Monday all of WhatsApp’s 1.5 billion users were urged to update their apps.



This was largely thought to just be a precaution. Nevertheless, in this article we will explain just how you can make sure you have the right version and achieve complete peace of mind.
After all, WhatsApp is one of the leading messaging apps for a reason. We, like most media outlets, believe that there is absolutely no reason to ditch it now.
WhatsApp messages are end-to-end encrypted. This means that the sender or receiver’s devices should be the only place messages can be displayed in a legible form.
That’s why WhatsApp prides itself as being a “secure” communications tool. But unfortunately, as we have just seen, no app is safe from hackers in this day and age.

How can Android and iOS users update app after WhatsApp attack?

Don’t worry, this is really simple to do. 

iOS

  • Launch your App Store.
  • Go to Updates (at the bottom of the screen).
  • If recently updated it will appear with a button that says ‘Open’.
  • If it hasn’t been updated, the button will say Update – hit that!

Android

  • Go to your Play store.
  • Tap the menu (at the top left of the screen).
  • Then go to My Apps & Games.
  • Same as iOS, if it has updated it will say Open.
  • If it hasn’t, hit the button that says Update to run the install.

Final Thoughts

Don’t expect this to be the last WhatsApp attack article that we post. This story is still rumbling on and has posed so many questions for cybersecurity experts.
For further advice on keeping your devices secure, take a look at our packed library of products, reviews and advice features.
The Ultimate Antivirus Guide is a particular lifesaver if you’re not 100% clued up on cybersecurity.

WhatsApp attack!! What you need to know about the WhatsApp attack

Posted by : Admin
Read More

Product Description

With Bandicam screen recorder you can video record a certain area on a PC screen, or you can record a program which uses the DirectX/OpenGL graphic technologies.
Bandicam screen recorder works with a high compression ratio, whilst keeping the video quality close to the original and Bandicam provides performance far superior to other programs that provide similar functions.


Product details

  • Bandicam game recorder can record DirectX/OpenGL programs, like Fraps.
  • Because Bandicam compresses the file, the recorded file size is much smaller than the original.
  • The recorded file can be uploaded to YouTube without any conversion in either 720p or 1080p full HD video.
  • With the Auto Complete Recording function, you can record 24 hours of video.
  • You can record high quality video at resolutions of up to 2560x1600.






Download Bandicam for Windows | Bandicam Screen Recorder 4.4.1.1539 Download

Posted by : Admin
Read More

Product Description

Skype is the most popular free voice-over IP and instant messaging service globally. It allows users to text, video and voice call over the internet. Users can also call landlines and mobiles at competitive rates using Skype credit, premium accounts and subscriptions. Skype was publically released in 2003 and now accounts for roughly a third of all international calling minutes. Skype uses P2P technology to connect users on a multitude of platforms including desktop, mobile and tablet. The call quality (depending on your internet signal) and additional features like conversation history, conference calling and secure file transfer are excellent. There have been some criticisms over the programs bandwidth usage and security vulnerabilities.
Skype Calling
Once you’ve downloaded and installed Skype, you will need to create a user profile and unique Skype name. You can then search for other users in the Skype directory or call them directly using their Skype name. Voice chat comes with conference calling, secure file transfer and a highly secure end to end encryption. Video chat is available on higher bandwidth connections and makes keeping up with distant family/friends much more interactive. Video conferencing and the Screenshare features make Skype popular with the corporate market. Skype’s text chat client features group chat, chat history, message editing and emoticons. Skype also enables calls to landlines and mobiles using a premium paid service.
Easy to Use
Skype’s UI is very intuitive and easy to use. All the classic messaging service features like profiles, online status, contacts and recent history are displayed in the left navigation. Here you will also find the Skype directory, group options, a search box and premium calling buttons. The right side (main window) opens the content you select. For individual contacts you will see a text message box, chat history and calling options.
Call Quality
On fast internet connections Skype call quality is excellent for both voice and video calls. The hybrid peer-to-peer client server system means the sound quality is better than most VoIP services. That being said, if you do have a slower internet connection, voice calls may be interrupted or delayed. Video calls will be intermittent and pixelated. Text chat will only be affected by very poor connections. The call quality button will give you detailed information on the expected call quality for each of your contacts (as the quality depends on both parties internet connection).
Summary
If you’re looking for a reliable and easy to use VoIP client, you’ll find it hard to beat Skype. Microsoft’s purchase of Skype in 2011 has further stabilized the platform and accelerated development as Microsoft used Skype to replace its aging messaging service Windows Live Messenger. Click on the green download button to give it a try.


Product details

  • Title:
    Skype 8.45.0.41 for Windows
    File size:
    63.23 MB
    Requirements:
    • Windows 10 64-bit,
    • Windows XP,
    • Windows Vista 64-bit,
    • Windows 8 64-bit,
    • Windows Vista,
    • Windows XP 64-bit,
    • Windows 10,
    • Windows 7 64-Bit,
    • Windows 2000,
    • Windows 7,
    • Windows 8,
    • Windows 2003
    Language:
    English
    License:
    Free
    Author:
    Skype Technologies



Skype | Download Skype | Skype for Desktop

Posted by : Admin
Read More

Product Description

Free Download Manager for Mac and Windows allows you to adjust traffic usage, organize downloads, control file priorities for torrents, efficiently download large files and resume broken downloads.
FDM can boost all your downloads up to 10 times, process media files of various popular formats, drag&drop URLs right from a web browser as well as simultaneously download multiple files!
Our internet download manager is compatible with the most popular browsers Google Chrome, Mozilla Firefox, Microsoft Edge, Internet Explorer and Safari.


Product details

  • * Fast, safe and efficient downloading
  • * Video downloading from popular websites
  • * Proxy support
  • * HTTP/HTTPS/FTP/BitTorrent support
  • * User-friendly interface with modern design
  • * Support for Windows and Mac OS X



Free Download Manager - Internet Download Manager

Posted by : Admin
Read More

NordVPN promises a private and fast path through the public internet, with no logs, unmetered access for 6 simultaneous devices and access to 5,232 servers worldwide. They are currently running a promotion, but you'll have to use this link to find it. Its typical price has been discounted for 3 years of service -- a good deal at just $2.99 per month.  See the $2.99/month NordVPN deal here.
This story, "Get 3 Years of NordVPN Service for Just $2.99 Per Month - Deal Alert" was originally published by TechConnect.

Get 3 Years of NordVPN Service for Just $2.99 Per Month

Posted by : Admin
Tuesday 21 May 2019
Read More

Product Description

SHAREit Features

  • 200 times faster than Bluetooth technology. Transfer rate upto 20 MB/sec.
  • Transfer supports all files, photos, music, videos and apps.
  • Pre-integrated video player to stream in HD (supports all video format).
  • Listen to high quality music both online and offline.
  • Personalize by downloading GIF, Wallpapers and Stickers.


Download SHAREit for PC

  1. Download EXE File(Supports Windows XP, Vista, 7, 8, 8.1, 10)
  2. Find the downloaded file on your PC and open it.
  3. Install the file on your PC. Install it like any other software on your PC.
  4. You need to create an account then to start sharing the files through SHAREit.





SHAREit – Download SHAREit for PC free

Posted by : Admin
Monday 20 May 2019
Read More

Best WordPress hosting services 2020 in the table below. Logo Plan  Price/ month Features Support View Full Review Basic $2.95/mo. 1...

Popular Posts

Blogroll

5/Top 5/slider

BTemplates.com

SmartPhone Apps/feat-big
Powered by Blogger.

Contributors

Search This Blog

Labels

How To

How To/feat-big

Tech News

Tech News/feat-big

SmartPhone Games

SmartPhone Games/feat-big

PC Games

Games/feat-big

- Copyright © Download PC Software, Games and Mobile Apps - PcToolsWorld.Com - Blogger Templates - Powered by Blogger - Designed by Johanes Djogan -