In the United States, the city of Baltimore hostage to a group of hackers

After Atlanta and San Antonio, the metropolis of Maryland is the new major American city to date victim of a cyberattack.

Hackers have exploited a flaw in the most widely used operating system (OS) in the world: Windows. An OS that generally equips public service computers in many countries. Their hack blocked these, as well as online payments and real estate sales.

EternalBlue, a virus created by the NSA

According to the New York Times, this attack was carried out using the malware, developed by the NSA, EternalBlue. Software that is wreaking havoc and which, according to the blog WeLiveSecurity, caused one of the largest “ransomware” outbreaks in history. EternalBlue was allegedly stolen from the NSA in 2016, before being leaked online on April 14, 2017 by a group called Shadow Brokers.

This program targets a vulnerability at Microsoft, which has since patched it. Despite all the efforts made by the American giant, vulnerable systems are still very widespread today.

Baltimore asks for help

It’s a smart virus“, said Jack Young, the mayor of Baltimore. “Whenever the NSA does something, it does it well. I just wish she had a key to get us out of here“, he added, desperate.

Since the attack, discovered on May 7, the technical teams of the town hall have been trying to restore the computer network, helped by experts from the State of Maryland, the federal government and the private sector. However, despite some progress, according to the mayor, the city is “still not out of the woods“.

The virus, having been created by the NSA, Jack Young hopes to obtain federal financial assistance to cover the costs that the various repairs will generate.

The mayor refuses to give in to blackmail

According to the Baltimore Sun, the hackers are demanding a ransom of 13 bitcoins, or just over $110,000 (even if the mayor denies these figures). A sum that, basically, the city might pay.

Nevertheless, Jack Young refuses to do so, in particular because the secret services advise once morest it. Moreover, the payment of this ransom would in no way constitute a long-term protection. Nothing guarantees, either, that the systems will be freed from the virus a posteriori.

EternalBlue, easy culprit?

According to some cybersecurity specialists, the light is far from being shed and the responsibility of the EternalBlue software is far from proven. They believe that another culprit might be implicated, another malicious software: RobbinHood.

A possibility that would bring a heavier responsibility to the city, because in this case, it is the security flaws of the Democratic municipality that would be called into question.

Leave a Replay