Ransomware based on leaked NSA hacking tools is spreading around the world and has already shown up in dozens of nations. On Friday, Kaspersky estimated there were at least 45,000 infected computers. Most are in Russia, Ukraine, India, and Taiwan.
This ransomware is utilizing an exploit called EternalBlue that was published last month by the Shadow Brokers. The vulnerability affected by the exploit was already patched, but this ransomware has spread among unpatched systems.
It appears as though the attackers are already making good money. A Bitcoin wallet attached to the malware has been consistently receiving 0.15 to 0.3 Bitcoins, coming out to hundreds of dollars per transaction.
