Skip to Content
Computing

Hackers are using a leaked US cyber weapon against American targets

Baltimore City Hall
Baltimore City Hall
Baltimore City HallAP

The software tool, known as EternalBlue, has helped cripple computers in Baltimore and elsewhere.

The news: According to the New York Times, EternalBlue has been used in a “ransomware” attack that has encrypted files in computer systems used by city officials in Baltimore. The hackers have demanded around $100,000 in Bitcoin to liberate thousands of machines, but the city is refusing to cough up the ransom. Residents can no longer pay things like utility bills and parking tickets online while the chaos continues.

A cyber own goal: EternalBlue, which helps spread malicious software swiftly across computers, was created by the US National Security Agency (NSA) to exploit a flaw it had discovered in Microsoft’s operating system. The agency reportedly kept its tool secret for five years, but in 2017 a mysterious group called the Shadow Brokers leaked the code. Microsoft promptly issued a software fix, but Baltimore’s experience suggests it hasn’t been applied rigorously enough yet.

Coming to America: Hackers initially used EternalBlue outside the US, notably as part of the notorious WannaCry ransomware attack that caused havoc in the UK’s National Health Service. Now it’s being turned on Baltimore and other targets, which the Times says include the city of San Antonio.

Poacher and gamekeeper: There’s an inherent tension between the NSA’s dual missions of protecting US networks and spying on foreign ones. It’s mainly focused on snooping, so the temptation is to exploit cybersecurity holes it finds. But if bad guys spot them too, US networks are put at risk. The agency hasn’t yet commented on EternalBlue, but some politicians are calling for a full briefing about its role in the debacle.

Sign up here to our daily newsletter The Download to get your dose of the latest must-read news from the world of emerging tech.

Deep Dive

Computing

Russia is risking the creation of a “splinternet”—and it could be irreversible

If Russia disconnects from—or is booted from— the internet’s governing bodies, the internet may never be the same again for any of us.

Conceptual illustration of quantum computing circuity, in multiple colors
Conceptual illustration of quantum computing circuity, in multiple colors

Quantum computing has a hype problem

Quantum computing startups are all the rage, but it’s unclear if they’ll be able to produce anything of use in the near future.

winning team for Pwn2own 2022
winning team for Pwn2own 2022

These hackers showed just how easy it is to target critical infrastructure

Two Dutch researchers have won a major hacking championship by hitting the software that runs the world’s power grids, gas pipelines, and more. It was their easiest challenge yet.

white house regulates cyber concept
white house regulates cyber concept

Inside the plan to fix America’s never-ending cybersecurity failures

The specter of Russian hackers and an overreliance on voluntary cooperation from the private sector means officials are finally prepared to get tough.

Stay connected

Illustration by Rose WongIllustration by Rose Wong

Get the latest updates from
MIT Technology Review

Discover special offers, top stories, upcoming events, and more.

Thank you for submitting your email!

Explore more newsletters

It looks like something went wrong.

We’re having trouble saving your preferences. Try refreshing this page and updating them one more time. If you continue to get this message, reach out to us at customer-service@technologyreview.com with a list of newsletters you’d like to receive.