According to ZDNet
and Hacker Fantastic on Twitter
, the tools and exploits affect Windows 2000, Windows XP, Windows 7, Windows 8, as well as their server-side variants like Server 2000, 2003, 2008, 2008 R2 and 2012. These exploits have been allegedly used by the NSA to target several banks and the SWIFT banking system. What's more, according to security researcher Kevin Beaumont, the hacking tools belonging to the Agency's so-called Equation Group even give it the ability to infiltrate deep inside networks by exploiting VPN and firewall systems. Among the leaked arsenal there is ExplodingCan
, which creates a remote backdoor by exploiting the Windows web server Internet Information Services on older versions of the OS. Then, there is EternalSynergy
, a remote SMB exploit for Windows 8 and Server 2012. From the same "family", there is also EternalRomance
, a remote SMB1 exploit targeting Windows XP, Vista, 7, 8 and their server counterparts, Sever 2003 plus 2008 and 2008 R2. Even more so, info has been revealed about EsteemAudit
, a Remote Desktop Protocol exploit targeted at Windows Server 2003. This one exploits SmartCard authentication at login, and works on a patched version of the server OS.