20 May, 2017
The group proposed a "monthly subscription model" for dumps, beginning in June - despite the fact that earlier plans to auction the vulnerabilities didn't pan out. According to reports, the fear is that the next such attack might not have a kill switch.
There's also the possibility of even more risky Shadow Broker releases in the coming months.
Things might take a turn for the worst because the collective hacking group known as The Shadow Brokers has revealed that they will be releasing more zero-day bugs and exploits.
"The ShadowBrokers is feeling like being very responsible party about Windows dump", Shadow Brokers wrote in the blog, in its usual freaky dialect.
It said is has always been about "the shadowbrokers vs theequation group", and implied the NSA is a cohort of tech companies like Microsoft. Shadow Brokers hinted that this problem could be prevented if NSA would pay for all the tools.
Tuesday's article doesn't say when NSA officials tipped off Microsoft.More news: Garland not interested in Federal Bureau of Investigation job, friends say
During the more than five years the NSA used EternalBlue's extraordinary powers to extract secrets from targeted computers, the Washington Post reported, some officials discussed whether the flaw was so risky they should reveal it to Microsoft.
Imagine a loot box - but for security exploits. The group said that the data would be locked behind a subscription fee, but, beyond that, they do not care who buys the data or for what objective it is used.
The move highlights the growing commercial sophistication of groups such as Shadow Brokers, which has already demonstrated a fearsome technical ability to compromise the world's top intelligence agencies. Now the group has said that if they found anyone who would is ready to buy they would also exploit the new browsers, Windows 10 OS or any other money transfer system.
Microsoft had previously patched the vulnerability, but many computers had not installed the updates and were left exposed. Is being like wine of month club.
The group also promised to include compromised financial data from the SWIFT global payment order system, used by banks to transfer trillions of dollars each day, as well as confidential data from several central banks. What members doing with data after is up to members.
In the blogpost which was made yesterday, the group claiming to be Shadow Brokers, said, "Shadow Brokers feels that it was "being very responsible" about April's dump-the one that resulted in WannaCrypt/WannaCry, and the potential for many more exploits." .