Loading...
 

the stream

speculating on why nobody paid for the Shadow Brokers cache

Alexander Bochmann Saturday 15 of April, 2017
After the Shadow Brokers group dumped another piece of their "Equation Group" exploit cache yesterday, Microsoft anounced that almost all of the vulnerabilities from that had already been fixed. In September of last year, they also advised customers on disabling SMB1 on servers and getting rid of remaining Windows XP and Server 2003 installations.

There's been some speculation on the timeline of events (emptywheel.net).

I'd currently assume that the data that the Shadow Brokers have is in several hands (outside of the original owners), and that bits and pieces have been making their way around the ITSEC community for quite some time. Which might also be one of the reasons why no one ever bid on one of the several auction attempts.