Baltimore has battled the effects of a ransomware attack that started May 7 and now it seems that a familiar culprit, the National Security Agency (NSA) EternalBlue tool, known to exploit some versions of Microsoft Windows XP and Vista, is behind the city’s misery, which has included a shutdown of many vital systems and services.

Although Microsoft released a patch for the vulnerability just one day after The Shadowbrokers hacking group published it in April 2017, EternalBlue has wreaked havoc through devastating cyberattacks such as WannaCry and NotPetya in 2017.

“The government has refused to take responsibility, or even to answer the most basic questions,” the New York Times, which first reported the EternalBlue connection, quoted Johns Hopkins University cybersecurity expert Thomas Rid as saying. “Congressional oversight appears to be failing. The American people deserve an answer.”

Please register to continue.

Already registered? Log in.

Once you register, you'll receive:

  • News analysis

    The context and insight you need to stay abreast of the most important developments in cybersecurity. CISO and practitioner perspectives; strategy and tactics; solutions and innovation; policy and regulation.

  • Archives

    Unlimited access to nearly 20 years of SC Media industry analysis and news-you-can-use.

  • Daily Newswire

    SC Media’s essential morning briefing for cybersecurity professionals.

  • Learning Express

    One-click access to our extensive program of virtual events, with convenient calendar reminders and ability to earn CISSP credits.