{"id":311640,"date":"2017-04-17T16:59:05","date_gmt":"2017-04-17T16:59:05","guid":{"rendered":"http:\/\/citifmonline.com\/?p=311640"},"modified":"2017-04-17T16:59:05","modified_gmt":"2017-04-17T16:59:05","slug":"microsoft-tackled-nsa-hack-before-leak","status":"publish","type":"post","link":"https:\/\/citifmonline.com\/?p=311640","title":{"rendered":"Microsoft tackled &#8216;NSA hack&#8217; before leak"},"content":{"rendered":"<p>Microsoft says it had already fixed software flaws linked to an alleged breach of the global banking system before they were exposed last week.<\/p>\n<p>On Friday, a group called the Shadow Brokers published details of several hacking tools, indicating they had been used by the US National Security Agency (NSA) to spy on money transfers.<\/p>\n<p>Reports suggested Microsoft&#8217;s Windows operating system remained vulnerable.<\/p>\n<p>But the firm revealed it had in fact addressed the problem in March.<\/p>\n<p>&#8220;Customers have expressed concerns around the risk [Shadow Brokers&#8217;] disclosure potentially creates,&#8221; it said in a security update.<\/p>\n<p>&#8220;Our engineers have investigated the disclosed exploits, and most of the exploits are already patched.&#8221;<br \/>\nThe company has not, however, revealed how it became aware of the flaws.<br \/>\nMicrosoft normally acknowledges third parties who tip it off to problems, but has not done so in this case.<\/p>\n<p>The Reuters news agency reported that the company had told it that neither the NSA nor any other part of the US government had informed it of the hacking tools&#8217; existence.<\/p>\n<p>That calls into question how Microsoft learned of the issue &#8211; tech blog Ars Technica commented it was &#8220;highly unlikely&#8221; that the patch and leak would both have occurred so close together by coincidence.<\/p>\n<p><strong>&#8216;God&#8217;s eye&#8217;<\/strong><br \/>\nWhisteblower Edward Snowden had previously leaked documents in 2013 that alleged the NSA had carried surveillance of the Brussels-based Society for Worldwide Interbank Financial Telecommunication (Swift) for several years, but did not specify how.<\/p>\n<p>Swift allows the world&#8217;s banks to send payment orders and other messages about large financial transactions in a &#8220;secure and reliable&#8221; manner.<\/p>\n<p>It is used by about 11,000 financial institutions. The allegation is that third parties &#8211; known as Swift Service Bureaus &#8211; that provide access to Swift&#8217;s network were targeted by the NSA, rather than Swift itself.<\/p>\n<p>&#8220;If Shadow Brokers&#8217; claims are indeed verified, it seems that the NSA sought to totally capture the backbone of [the] international financial system to have a God&#8217;s eye [view] into a Swift Service Bureau &#8211; and potentially the entire Swift network,&#8221; blogged security researcher Matt Suiche after the latest leak.<\/p>\n<p>&#8220;If the US had a specific target in the region&#8217;s financial system, NSA penetration offers [an alternative to] merely relying upon good faith compliance procedures, standard diplomatic requests, or collaborating with Swift.&#8221;<\/p>\n<p>Swift has not confirmed it was compromised.<\/p>\n<p>&#8220;We have no evidence to suggest that there has ever been any unauthorised access to our network or messaging services,&#8221; it said in a statement on Friday.<\/p>\n<p>The BBC has not been able to verify the authenticity of the Shadow Brokers&#8217; claims, and the NSA has not provided comment.<br \/>\nRelated Topics<\/p>\n<p>&#8211;<\/p>\n<p>Source: BBC<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Microsoft says it had already fixed software flaws linked to an alleged breach of the global banking system before they were exposed last week. On Friday, a group called the Shadow Brokers published details of several hacking tools, indicating they had been used by the US National Security Agency (NSA) to spy on money transfers. [&hellip;]<\/p>\n","protected":false},"author":14,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"jnews-multi-image_gallery":[],"jnews_single_post":[],"jnews_primary_category":[],"jnews_social_meta":[],"jnews_override_counter":[],"footnotes":""},"categories":[106],"tags":[1492,727],"class_list":["post-311640","post","type-post","status-publish","format-standard","hentry","category-technology","tag-citi-trends","tag-microsoft"],"_links":{"self":[{"href":"https:\/\/citifmonline.com\/index.php?rest_route=\/wp\/v2\/posts\/311640","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/citifmonline.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/citifmonline.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/citifmonline.com\/index.php?rest_route=\/wp\/v2\/users\/14"}],"replies":[{"embeddable":true,"href":"https:\/\/citifmonline.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=311640"}],"version-history":[{"count":0,"href":"https:\/\/citifmonline.com\/index.php?rest_route=\/wp\/v2\/posts\/311640\/revisions"}],"wp:attachment":[{"href":"https:\/\/citifmonline.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=311640"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/citifmonline.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=311640"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/citifmonline.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=311640"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}