+

Cookies on the Business Insider India website

Business Insider India has updated its Privacy and Cookie policy. We use cookies to ensure that we give you the better experience on our website. If you continue without changing your settings, we\'ll assume that you are happy to receive all cookies on the Business Insider India website. However, you can change your cookie setting at any time by clicking on our Cookie Policy at any time. You can also see our Privacy Policy.

Close
HomeQuizzoneWhatsappShare Flash Reads
 

Hackers reportedly launched a cyberattack on Baltimore with a leaked NSA tool

May 26, 2019, 04:09 IST

The National Security Agency (NSA) logo is shown on a computer screen inside the Threat Operations Center at the NSA in Fort Meade, Maryland, January 25, 2006.Brooks Kraft LLC/Corbis via Getty Images

Advertisement
  • Hackers are reportedly using a tool leaked from the National Security Agency in a cyberattack that has plagued the city of Baltimore since May 7.
  • The New York Times reported that the tool, called EternalBlue, has affected residents' access to "real estate sales, water bills, health alerts," and other city services.
  • The tool has also been used in other major cyber attacks, including WannaCry in May 2017, as well as the June 2017 NotPetya attacks against Ukranian banks and official systems.
  • Visit Business Insider's homepage for more stories.

A tool leaked from the National Security Agency has reportedly been at the center of a ransomware attack that has shut down some online systems for the entire city of Baltimore.

Since May 7th, Baltimore has been plagued by cyberattacks caused by a tool called EternalBlue that has "frozen thousands of computers, shut down email," and targeted residents' access to services including "real estate sales, water bills, health alerts," according to The New York Times.

City officials have so far refused to pay a ransom demand, and some alternatives have popped up to aid residents and city officials in the meantime, including a city-specific Gmail.

The initial attack on the city contained a message in flawed English demanding about $100,000 in Bitcoin to free their files.

Advertisement

"We've watching you for days," the message said, according to a version obtained by The Baltimore Sun. "We won't talk more, all we know is MONEY! Hurry up!"

Read more: The NSA publicly released a tool for cracking software wide open, and hackers are loving it - so long as the NSA makes good on its promise not to use it to spy on them

This June 6, 2013 file photo shows the National Security Administration (NSA) campus in Fort Meade, Md., where the US Cyber Command is located.Patrick Semansky/AP

The city's IT department is currently working to fix residents' access to the affected systems and repair holes in software security, according to The Baltimore Sun.

Already, lawmakers and Baltimore officials have been demanding a briefing from the NSA on the issue.

Advertisement

"The information that was included in The Times story was very troubling," a spokesman for the city's acting mayor, Bernard Young, told The Baltimore Sun. "There's going to be a lot of speculation around this. What the mayor's going to be interested in is getting beyond speculation and hearing from the authorities that would have some insight into what actually went on."

The NSA and FBI declined The Times' request to comment.

The tool was initially leaked in April 2017 by the still-unidentified hacking group Shadow Brokers in April 2017, and within a day, Microsoft had released a patch to fix the exploit.

EternalBlue has since been used in several other major attacks. Hackers behind Wannacry in May 2017 were using the tool, as well as the June 2017 NotPetya attacks against Ukranian banks and official systems.

NOW WATCH: Nxivm founder Keith Raniere began his trial. Here's what happened inside the alleged sex-slave ring that recruited actresses and two billionaire heiresses.

You are subscribed to notifications!
Looks like you've blocked notifications!
Next Article