Second even bigger global cyber attack already underway

https://www.rt.com/news/388749-wannacry-adylkuzz-worldwide-cyberattack-nsa/

As the world reels from the WannaCry ransomware attack, it’s now emerged that a second, potentially larger attack, is already under way. It seems the widespread proliferation of military-grade cyberweapons has ushered in a new era of digital crime.

Cyber bandits have again deployed both the EternalBlue and DoublePulsar exploits developed and used by the NSA which were released by the ShadowBrokers hackers back in April.

“Initial statistics suggest that this attack may be larger in scale than WannaCry, affecting hundreds of thousands of PCs and servers worldwide: because this attack shuts down SMB networking to prevent further infections with other malware (including the WannaCry worm) via that same vulnerability, it may have in fact limited the spread of last week’s WannaCry infection,” wrote a security researcher who goes by the alias Kafeine at cybersecurity company Proofpoint.

This latest attack uses the two exploits to install the cryptocurrency miner Adylkuzz over corporate Local Area and wireless networks but, rather curiously, may actually have helped slow the spread of WannaCry.

However, in an apparent case of “picking your poison,” the Adylkuzz miner dramatically slows PC and server performance as it extracts cryptocurrency but it does not lock users out of their machines and data, as WannaCry did.

Researchers at Proofpoint estimate that the Adylkuzz attack may have begun as early as April 24 but was subsequently overshadowed in the hysteria that followed the WannaCry ransomware attacks.

The attack is launched from multiple virtual private servers which scour the internet for vulnerabilities to install the Adylkuzz miner.

The malware infection occurs as follows:

The EternalBlue exploit opens the door for infection with DoublePulsar on a target machine. DoublePulsar then downloads and runs Adylkuzz on the computer.

Adylkuzz then stops any preexisting versions of itself on a target machine, while also blocking SMB network communications with other machines to prevent any further malware infections from disrupting its operations. It initially prevents cybersecurity professionals from identifying that there is a problem.

Once the door has been held open and detection risks have been minimized, Adylkuzz then downloads mining instructions, the cryptocurrency miner itself and a variety of cleanup tools to mask its activities.

———-

what the hell is going on?..i really feel this is elading to soemthing else or is hiding something else..

“The EternalBlue exploit opens the door for infection with DoublePulsar on a target machine. DoublePulsar then downloads and runs Adylkuzz on the computer.”

yeah right..got it..

“It seems the widespread proliferation of military-grade cyberweapons has ushered in a new era of digital crime.”

these are state created cyberweapons..so which state?

401

Advertisements

~ by seeker401 on May 19, 2017.

23 Responses to “Second even bigger global cyber attack already underway”

  1. Cyber Attacks Are The Perfect Trigger For A Stock Market Crash

    http://www.alt-market.com/articles/3192-cyber-attacks-are-the-perfect-trigger-for-a-stock-market-crash

  2. http://www.zerohedge.com/news/2017-05-18/there-coup-attempt-underway-america

    thing about world events from now on .. is — you never know if
    WW3 has started
    economies are in meltdown
    Coup is underway
    who is a master & who is the apprentice

    everything is veiled

  3. Reblogged this on World Peace Forum.

  4. The historical background and some definitions helped me:

    seeker’s article above, “Once the door has been held open and detection risks have been minimized, Adylkuzz then downloads mining instructions, the cryptocurrency miner itself and a variety of cleanup tools to mask its activities.”

    Wikipedia, “A cryptocurrency (or crypto currency) is a digital asset designed to work as a medium of exchange using cryptography to secure the transactions and to control the creation of additional units of the currency.[1] Cryptocurrencies are a subset of alternative currencies, or specifically of digital currencies.

    Bitcoin became the first decentralized cryptocurrency in 2009.[2] Since then, numerous cryptocurrencies have been created.[3] These are frequently called altcoins, as a blend of bitcoin alternative.[4][5] Bitcoin and its derivatives use decentralized control[6] as opposed to centralized electronic money/centralized banking systems.[7] The decentralized control is related to the use of bitcoin’s blockchain transaction database in the role of a distributed ledger.

    The underlying technical system upon which decentralized cryptocurrencies are based was created by the group or individual known as Satoshi Nakamoto.” ( https://en.wikipedia.org/wiki/Cryptocurrency )

    Wikipedia, “Satoshi Nakamoto is the name used by the unknown person or persons who designed bitcoin and created its original reference implementation.[1] As a part of the implementation, he also devised the first blockchain database. In the process he was the first to solve the double spending problem for digital currency. He was active in the development of bitcoin up until December 2010.

    Nakamoto has claimed to be a man living in Japan, born on 5 April 1975.[2] However, speculation about the true identity of Nakamoto has mostly focused on a number of cryptography and computer science experts of non-Japanese descent, living in the United States and Europe.[3] One person, Australian programmer Craig Steven Wright, has claimed to be Nakamoto, though he has not yet offered proof of this.[4]

    As of 2 February 2017, Nakamoto is believed to own up to roughly one million bitcoins,[5] with a value estimated at over US$1.9 billion.”
    ( https://en.wikipedia.org/wiki/Satoshi_Nakamoto )

    • wow, all of that is over my head, lol Does this mean it’s searching to steal ‘bitcoin’?

      • It is hard to understand. Very technical jargon. I thought I knew what the article said, but I had to again re-read much of the article a couple times this morning. I, also, had to go back and forth some more, as I was explaining it below.

        To answer your question, yes.

        The malware mines cryptocurrency, like bitcoin. There are other kinds of “bitcoin”, so probably why the article uses the term “cryptocurrency”. According to wikipedia, another digital currency is called altcoin.

        If there is any kind of digital currency (cryptocurrency), like bitcoin, the malware called Adylkuzz steals it.

        ——
        “to install the cryptocurrency miner Adylkuzz”

        “the Adylkuzz miner dramatically slows PC and server performance as it extracts cryptocurrency”
        ——

        The malware is in the internet programmed to search for vulnerabilities in a computer somewhere. A computer that has digital currency, like bitcoin. When it, Adylkuzz, finds a weak computer that it can effectively attack, then it gets into the computer, and steals the digital currency.

        These kinds of computer tools are used to exchange digital currency through the internet. So, they are normally in the internet and in computers making digital currency exchanges between buyers and sellers of the digital currency. We will call these good exchangers “bank armored personal”. But the malware Adylkuzz is not exchanging digital currency, it is stealing it. We will call these “robbers”. The “robbers” are programmed to take out the “bank armored personal” and take off with the loot themselves, instead of the proper “bank armored personal” who were hired to do the job.

        The “robbers” in the article are called “Adylkuzz miner”.
        The “bank armored personal” are called “preexisting versions of itself” (I quoted this name below from the article). Adylkuzz “stops” the “preexisting versions of itself” – the legal hired help or “bank armored personal” and Adylkuzz steals the digital currency for itself.

        ——
        “Adylkuzz then stops any preexisting versions of itself on a target machine….Adylkuzz then downloads mining instructions [and extracts cryptocurrency].”
        ——

        After extracting the stolen money it brings it back to its’ “hideout”, maybe? The article never states if the money is being gathered by people somewhere. Or how much money they are stealing. This is part of the conspiracy. The money is being stolen. Adylkuzz is downloading it from the computers, but bringing it where? to who? Is it a false flag? For what end?

        • Wow, thanks adirondack…I think you’ve explained it perfectly!

          “Adylkuzz is downloading it from the computers, but bringing it where? to who? Is it a false flag? For what end? ”
          the annunaki? 🙂 🙂 just joking, although I’ve always had a suspicion that those Vatican Bankers were the ‘aliens’.

  5. Cryptocoin

    https://www.worldcoinindex.com/trending

    • Cypercrime steals all your digital currency.
      Wanna cry?

      • 🙂

        • If you can be made to feel afraid of the internet (in) security draconian regulations you will beg for .
          Beg to loose the trinkle of so called “internet freedom” you have through a monopoly controlled search engine on a censored internet.
          Big buzz word “internet security ” and losts of lies saying it is the people’s biggest feat when its just the most threatening to the PTB as sometime the truth gets out.

  6. As there is no privacy using the internet is a “cyber attack” on the individual.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

 
%d bloggers like this: