Kaspersky identifies mysterious APT mentioned in 2017 Shadow Brokers leak

In 2017, a mysterious group of hackers known as the Shadow Brokers published online a data dump called “Lost in Translation.”

The data dump — believed to have been obtained from the US National Security Agency (NSA) — contained a collection of exploits and hacking tools, including the now-infamous EternalBlue, the exploit that provided the steam for the WannaCry, NotPetya, and Bad Rabbit ransomware outbreaks of 2017.

However, one of the nuggets in the release was a file named sigs.py, a veritable treasure trove of signals intelligence data.

Read more…
Source: ZDNet

Related story: APT trends report Q3 2019