Last week, Shadow Brokers released a cache of hacking tools that can be used to compromise firewall/routing hardware. The exploits affect Cisco, Fortinet, WatchGuard, and Juniper.
These tools are supposedly linked to Equation Group, a hacking group that some speculate is actually the NSA.
One group of files is up for bid. While they have released some files for free; some have tested/confirmed those exploits do work against the vendors.
In one of today’s blogs, Duo’s Thu Pham describes some of the methods that different industry experts have used for attribution. She also provides useful information related to the actual vulnerabilities and our own security recommendations from Labs.