The backdoor "DoublePulsar" from the NSA, the infection rapidly increased in the world

A new backdoor infection called "DoublePulsar" has been reported in the issue of hacking tools at the US National Security Bureau (NSA).Although the size of the infection depends on the observation, it seems that it can reach tens of thousands to hundreds of thousands.

In this issue, on April 14, US time, Shadow Brokers released many hacking tools based on the development of NSA.Several tools showed that Windows vulnerabilities were abused, and Microsoft responded in the update program.Shadow Brokers also released a vulnerability verification tool called "FUZZBUNCH".

According to a group of security researchers surveyed about FUZZBUNCH, DoublePulsar plays a backdoor to download any script on a hacking tool.Hacking tools and DoublePulsar's terminals are at risk of executing any code through the remote control of the attacker.

The US Security Vendor Below0day scanned more than 5.5 million units on the Internet on the Internet on April 18, discovering 3626 hosts suspected of DoublePulsar infection.The number of observations on the 21st has increased to 56,586 units.In the infected area, more than 10,000 USA and Asian countries are scattered in Europe and Asian countries, and more than 1,000 units are infected in Japan.

Meanwhile, according to Switzerland's security vendor BINARYEDGE, DoublePulsar's infections have risen to 106,410 units as of April 21, and as of the 23rd, 164,715 units.

In this issue, Microsoft has dealt with the nine types of attack code that abuses vulnerabilities.Three types of attack code are not affected by Window 7 or later and Exchange 2010 or later products, but they may be affected by non -support products and recommend upgrate.

ZDNET JAPAN article is read by email every morning (free registration)