The best way to get these vulns into criminal hands would be to send them to criminals. And yet we haven't seen this.
-
-
Replying to @matthew_d_green @pwnallthethings and
Why not? Certainly the NSA would notice it right away. But would there be broad coverage of the form "NSA exploits used in crimes"? Nope.
2 replies 0 retweets 1 like -
Replying to @matthew_d_green @pwnallthethings and
Would they though? Do you think the Russians would sit on something as good as EternalBlue and never appropriate it for their own ops?
1 reply 0 retweets 0 likes -
Replying to @josh_watson @pwnallthethings and
If they did you would probably not be reading about it in USA Today.
2 replies 0 retweets 0 likes -
Replying to @matthew_d_green @josh_watson and
Yeah. Not like there is a shortage of bugs. They have 'em, too. Their own.
1 reply 0 retweets 1 like -
Replying to @zeynep @matthew_d_green and
Pre-auth point-and-shoot SMB exploits aren't a dime a dozen like browser exploits though
2 replies 1 retweet 6 likes
No, but how many do you need? Seems kind of obvious you can sit and phish all day with little problems, eventual success.
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.