NSA tools hacking group Shadow Brokers starts up monthly security subscription service

Hacking group changes tack in bid to 'monetise' its trove of US National Security Agency tools and exploits

The Shadow Brokers, the hacking outfit responsible for releasing a slew of US National Security Agency (NSA) tools and exploits, has started its monthly zero-day dump service in a bid to raise cash in return for more NSA hacking tools.

The service will start-up in June, but is only to people and organisations stumping up a monthly fee of 100 ZEC (Zcash), a virtual currency that cannot be traced like bitcoin. It equates to about £20,000 a month. The shift to Zcash comes after the group clear out its bitcoin wallet.

https://twitter.com/mikko/status/869071264316522496

The group explained its use of Zcash in terms of privacy, albeit in broken English.

"Be looking it up. Zcash is making claiming bitcoin + privacy. TheShadowBrokers is not making endorsements of Zcash.

"Theoretically only party seeing payment info is theshadowbrokers and theshadowbrokers only seeing amount and encrypted memo field, no sending address," it says as it admits that it does not quite trust the service.

https://twitter.com/josephfcox/status/869464164485517312

"If you caring about losing $20k+ euro then not being for you. Monthly dump is being for high rollers, hackers, security companies, OEMs, and governments. Playing 'the game' is involving risks. Zcash is having connections to USG [US government] (DARPA, DOD, John Hopkins) and Israel.

"Why USG is 'sponsoring' privacy version of bitcoin? Who the fuck is knowing? In defense, TOR is originally being by similar parties. TheShadowBrokers not fully trusting TOR either."

It is all very compelling, after all, who would not be convinced by such well-written marketing material? And who hasn't got €20,000 to fling at such a service?

Anyone that does could find themselves getting a monthly dose of some of the finest vulnerabilities out there. The Shadow Brokers are the source of the NSA-leaked tools that crippled the NHS and made us all want to cry. Well, technically the NSA is the source of those vulnerabilities.

The Shadow Brokers are said to be linked to the secret services of a non-Western power, which might make a subscription to its services an unwise corporate investment for anyone except a security software and services outfit.