WannaCry之后又出更牛病毒,然而开发者怂了
Security researcher who discovered worm that could have bigger impact than WannaCry says the author seems to have given up. The EternalRocks worm attracts intense media attention because of fears that, once weaponised, it could have a much greater impact than the WannaCry ransomware attacks. Some security commentators have said EternalRocks appears to be designed to establish a launchpad for future attacks using the NSA exploits. The worm caused a stir in the wake of WannaCry because it uses seven of the exploits and attack tools developed by the NSA and leaked by the Shadow Brokers hacking group, including the two used by WannaCry. EternalRocks was discovered and named by Miroslav Stampar, a security researcher and member of the Croatian government’s computer emergency response team (Cert), who captured a sample of the worm in a Windows 7 honeypot he runs. Stampar also reports that the code of EternalRocks has been updated so that it no longer downloads the Shadow Brokers exploit pack, but a dummy executable file instead. “Well, it seems that I captured author’s worm in testing phase. It had great potential, though,” Stamper said. “Anyway, I suppose that he got scared because of all this fuzz and just dropped everything before being blamed for even something he didn’t do.” |