NSA tools are still letting hackers take over unpatched systems

the fbi wants you to reboot your router insecure getty
Casezy/Getty Images

It’s been more than a year since some of the NSA’s most capable hacking tools were stolen and leaked online, and despite a concerted effort to see PCs and systems patched against them, many thousands are still vulnerable to the attacks, which continue to work. Worse still, new and more advanced attack methods are being used to make these tools even more effective, leading to hackers taking over systems in their entirety.

The NSA has long been known to be involved in developing clever hacking tools that can snoop on all sorts of networked hardware all over the world. The Edward Snowden revelations provided just a small insight into their capabilities and just over a year ago, when some of the agency’s hacking tools leaked online, we learned even more. But that leak was far worse in many ways, as it meant that hackers could take advantage of those hacking tools, and they still are, to great effect.

The UPnProxy attack was first spotted earlier this year, with cloud service provider Akamai Technologies highlighting how more than 3.5 million devices around the world were potentially vulnerable to the hack, which used port-forwarding on a router to send malicious traffic to a connected system. Months later, that number of vulnerable systems has been limited to just 277,000, but that’s still a huge pool for hackers to draw from, and Akamai is now reporting that some 45,000 of those have already been compromised.

As TechCrunch reports, hackers are now using a pair of exploits developed by the NSA to burrow through the router and attack connected systems. The two exploits, known as EternalBlue and EternalRed, target Windows and Linux-based systems respectively. This new attack is being termed “EternalSilence” by Akamai, which warns that with 45,000 infected devices, more than a million connected computers could also be vulnerable.

Suggestions on how to protect yourself and your system from the attack include patching to the latest version of your operating system — Microsoft has patched most of the vulnerabilities these tools exploit — and updating your router firmware. If there is any suggestion that your network may have been compromised though, Akamai suggests that replacing the potentially infected router entirely may be the best course of action.

Concerned about PC security? Check out our regular [in]secure column to learn more.

Emerging Tech

CES 2019 recap: All the trends, products, and gadgets you missed

CES 2019 didn’t just give us a taste of the future, it offered a five-course meal. From 8K and Micro LED televisions to smart toilets, the show delivered with all the amazing gadgetry you could ask for. Here’s a look at all the big…
Smart Home

The best smart locks turn your phone into a key

A good smart lock should offer a combination of security and convenience. Fortunately, these devices keep your home protected, your family safe, and your belongings secure from possible intruders.

Biometric phone unlocks can’t be forced by feds, says U.S. judge

Fingerprint and face unlocks used to not be protected by the Fifth Amendment, but that may soon change. A judge in California has ruled biometric unlocking methods of all kinds are protected in the same way as passcodes.

Lost your router? Here's how to find its IP address to help track it down

Changing the login information for your router isn't always easy, that's why so many have that little card on the back. But in order to use it, you need to know where to go. Here's how to find the IP address of your router.

Looking for an interesting case for your device? CES 2019 has you covered

We saw a few interesting phone cases and a really cool new tablet case at CES 2019. It's a smart move to protect your gadgets, so check out these options which are all available now or coming very soon.

Hackers are scoring with ransomware that attacks its previous victims

Computer viruses are always evolving. In a new one, dubbed "Ryuk," hackers are targeting PCs with ransomware that scours an infected network in order to pinpoint and attack and enterprises with big money.

An update to Microsoft To-Do will help you keep up with your resolutions

If you're looking to stay productive in 2019, you might want to check out the freshly updated Microsoft To-Do app, now with additional integration with the Windows 10 Start Menu and more.

Want to save a webpage as a PDF? Just follow these steps

Need to quickly save and share a webpage? The best way is to learn how to save a webpage as a PDF file, as they're fully featured and can handle images and text with ease. Here's how.

Could the next Microsoft HoloLens be announced at MWC 2019?

After not having a presence at Mobile World Congress for three years, Microsoft is now sending out media invites for a press conference on February 24 during the annual event in Barcelona. Could a next-generation HoloLens be on the way?

Microsoft to separate Cortana from search with the next version of Windows 10

Changes are on the way for two key features in Windows 10. A separation of Windows 10 search and Cortana will allow Microsoft to more often innovate on each of the features independently.

Delete tracking cookies from your system by following these quick steps

Cookies are useful when it comes to saving your login credentials and other data, but they can also be used by advertisers to track your browsing habits across multiple sites. Here's how to clear cookies in the major browsers.

Convert your PDFs into convenient Word documents with Adobe or a free option

PDF files are great, but few document types are as malleable as those specific to Microsoft Word. Here's how to convert a PDF file into a Word document, whether you prefer to use Adobe's software suite or a freemium alternative.

Nvidia’s next midrange card might be a GTX 1660 Ti, rumors suggest

Nvidia may be working on a non-RTX Turing graphics card called the 1660 Ti. Rumors suggest it will have around 20 percent fewer CUDA cores than the RTX 2060 and will lack ray tracing support.

From Samsung to HP, here are the best cheap Chromebook deals right now

Whether you want a compact laptop to enjoy some entertainment on the go, or you need a no-nonsense machine for school or work, we've smoked out the best cheap Chromebook deals -- from full-sized laptops to 2-in-1 convertibles -- with most…