|
|
|
|
|
|
by denzil_correa
3323 days ago
|
|
|
> Finally, this attack provides yet another example of why the stockpiling of vulnerabilities by governments is such a problem. This is an emerging pattern in 2017. We have seen vulnerabilities stored by the CIA show up on WikiLeaks, and now this vulnerability stolen from the NSA has affected customers around the world. Repeatedly, exploits in the hands of governments have leaked into the public domain and caused widespread damage. An equivalent scenario with conventional weapons would be the U.S. military having some of its Tomahawk missiles stolen. And this most recent attack represents a completely unintended but disconcerting link between the two most serious forms of cybersecurity threats in the world today – nation-state action and organized criminal action Did the Microsoft President just confirm that NSA develop the vulnerability which led to the attacks on hospitals this weekend?! |
|
|
Where did he do that? He said they found it and kept it for themself, but not that they injected it into Windows.
And about the whole thing, I would rephrase it to "many users learned the hard way about why are security-updates important".
But it is nice, that microsoft advocates a " digital genvue convention" even though I doubt anything will really change.