Slashdot Mirror

← Back to Stories (view on slashdot.org)

ShadowBrokers Releases NSA UNITEDRAKE Manual That Targets Windows Machines (schneier.com)

Posted by BeauHD on from the target-acquired dept.

AmiMoJo shares a report from Schneier on Security: The ShadowBrokers released the manual for UNITEDRAKE, a sophisticated NSA Trojan that targets Windows machines: "Able to compromise Windows PCs running on XP, Windows Server 2003 and 2008, Vista, Windows 7 SP 1 and below, as well as Windows 8 and Windows Server 2012, the attack tool acts as a service to capture information. UNITEDRAKE, described as a 'fully extensible remote collection system designed for Windows targets,' also gives operators the opportunity to take complete control of a device. The malware's modules -- including FOGGYBOTTOM and GROK -- can perform tasks including listening in and monitoring communication, capturing keystrokes and both webcam and microphone usage, the impersonation users, stealing diagnostics information and self-destructing once tasks are completed."

26 of 99 comments (clear)

  1. A complete uninstall? by waynemcdougall · · Score: 5, Funny

    Self-destruction? A complete self-uninstall - no registry entries left behind, no temporary files, DLL's lurking in system32, no empty folders?

    It's miracle software. NSA - sell your uninstaller and you can pay off the US National debt.

    --
    Recycle PCs and build a wireless community network www.hillsborough.org.nz
  2. Re:U N I T E D R A K E by BlueLightning · · Score: 1

    i undertake
    i need kraut
    rude intake
    dunk tea ire
    tuna reek id
    take run die ...

  3. Re:And yet the US whines when others do it ... by Anonymous Coward · · Score: 1, Insightful

    Americans aren't doing shit like this. The NSA is. There's a difference.

  4. windows 10 is safe... by zlives · · Score: 5, Funny

    notice win10 is not on the list :)
    because NSA doesn't need undertake, spyware is baked in /duck

    1. Re:windows 10 is safe... by Proudrooster · · Score: 1

      Microsoft copied United Drake and named it System Center. However, it is harder to configure and doesn't always work, but the NSA knows how to use its API to get whatever it needs, including your keystrokes.

      This is why I don't run Windows 10.

  5. under no immediate threat by turkeydance · · Score: 1

    except dumb remote access keystroke extensions.

  6. not very interesting. by Gravis+Zero · · Score: 1, Offtopic

    We already know Windows security is crap which is why malware for Linux systems would be far more interesting.

    --
    Anons need not reply. Questions end with a question mark.
    1. Re:not very interesting. by eaglesrule · · Score: 1

      So that is why all the major distros have systemd now. Seems plausible.

    2. Re:not very interesting. by Proudrooster · · Score: 2

      systemd is really, systemDrake! Wha ha ha!

  7. Computers are insecure by 110010001000 · · Score: 1

    Computers are insecure. They run software. Software can do anything the programmers wants it to. The operating system doesn't matter either. Why do people expect computers or the Internet to be secure? They aren't.

    1. Re:Computers are insecure by 110010001000 · · Score: 1

      No. My bank is secure. They have armed guards and a vault. Plus it is insured by FDIC. Computers and networks aren't secure. Stop pretending they are.

    2. Re:Computers are insecure by MrKaos · · Score: 1

      No. My bank is secure. They have armed guards and a vault. Plus it is insured by FDIC. Computers and networks aren't secure. Stop pretending they are.

      Everything in your bank is on computers in their network. The value isn't just your money, it's your information.

      --
      My ism, it's full of beliefs.
  8. If anyone still uses Windows... by Anonymous Coward · · Score: 4, Insightful

    they deserve what every they get. After almost 25 years of problems with Windows NT, I don't understand why anyone still uses it.

    1. Re:If anyone still uses Windows... by Howitzer86 · · Score: 1

      I bought a used mid-2012 MBP recently. It's been great, and I use it a ton for homework (gone back to school), and light browsing. I don't even use my Surface Pro anymore.

      But that's about all I really use it for. Most Autodesk software is Windows only, this is software I need for work. That, and I maintain a small c# .net plugin for one of them. Most of my games are Windows only as well.

      Other than that, I really love macOS. I wish more software ran on it, because if not for the aforementioned issues, I'd have built a hackintosh instead of a typical Windows gaming rig, and then I wouldn't have to worry as much about hackers or being spied upon.

  9. Who should be embarassed by Anonymous Coward · · Score: 1

    NSA for having their stuff stolen and published.
    Microsoft for making the shipping the bugs that made it all possible.

    The sad thing is that neither seems much concerned.

  10. Re: And yet the US whines when others do it ... by _merlin · · Score: 1

    So you're saying that the US essentially isn't a democracy? Because in a democracy, in theory the power is with the people. The irony is huge - the US is a shining beacon of democracy, freedom, liberty and hope, but only when convenient; the rest of the time, the populace is completely out-of-touch with what the government does, and have no responsibility.

  11. reality check by JustNiz · · Score: 1

    Anybody that believes Microsoft's claims that Windows is secure needs this reality check.

  12. What I Can't Understand by boudie2 · · Score: 1

    Why do they need unitedrake when they have AMT? https://en.wikipedia.org/wiki/...

    1. Re:What I Can't Understand by ELCouz · · Score: 1

      PSP is also in the same trash can.

    2. Re:What I Can't Understand by Chris+Mattern · · Score: 1

      PSP is also in the same trash can.

      I dunno, I liked it better than the Vita.

    3. Re:What I Can't Understand by Gornkleschnitzer · · Score: 1

      What? Not Paint Shop Pro?

  13. lol... by rakslice · · Score: 1

    "Contact Software, Inc.
    12345 Main Street â Suite 100
    Phone 123.456.7890 â Fax 123.456.7890"

    No city or state provided.

    Seems legit.

    1. Re:lol... by rakslice · · Score: 1

      I wonder how many PDF 0-days there are atm.

  14. 2012R2 OK ? by Joe_Dragon · · Score: 1

    2012R2 OK ?

  15. Re:And yet the US whines when others do it ... by BronsCon · · Score: 1

    Sorry, done on your behalf, for your benefit, and tacitly approved as "as long as you're keeping us safe I don't care what you do to everyone else".

    Fucking Americans, too stupid to understand the same thing is the same thing.

    Approved by whom? I surely didn't approve it and I'd quite rather it stopped, personally.

    Fucking Whereveryou'refromicans, too stupid to understand that not everyone from a given country agrees with the actions of their government.

    Wait, no, that's just you.

    --
    APK quotes people (including myself) without context and should not be trusted. Just thought you should know.
  16. Re:And yet the US whines when others do it ... by fustakrakich · · Score: 1

    Oh? And where is the NSA? On Mars?

    --
    “He’s not deformed, he’s just drunk!”