Pontus Johnson about ''The Market of Vulnerabilities''

Nyhet   •   Mar 16, 2018 14:12 CET

On May 12 2017, one of the biggest virus attacks in history began. Wannacry, which encrypted computers and demanded a ransom to unlock them, over 230,000 computers in all corners of the world in a short period of time were infected.

Although, the story begins a year earlier with an anonymous hacker group called The Shadow Brokers.

In the summer before Wannacry, this group appears out of nowhere. They claimed to have hacked a server belonging to the US Security Service NSA and stolen lots of cyber weapons.

Many were skeptical, but the group presented their evidence. They began selling  cyber weapons to the highest bidder, and on a certain moment, the Shadow Brokers started releasing the tools for free.

In April last year, one month before Wannacry started, the group leaked a bug with the nickname 'Eternal Blue'. It can be used to spread malicious code on older Windows versions. 

The rest is history. Wannacry and the subsequent attack Petya made Eternal Blue to spread over the world, causing serious damages.

"During Wanacry we saw that there are real consequences when states try to conceal this type of vulnerability, rather than making sure they are being patched," says Pontus Johnson, Professor of Network and Systems Engineering at KTH.

Read the full article (in Swedish) here:

Article retrieved from: and translated into English.