Skip to main content

Sign up for our newsletter.

Quality journalism. Progressive values. Direct to your inbox.

At least two hospitals in London were forced to shut down and stop admitting patients after being attacked by the malware, which operates by locking out the user, encrypting data, and demanding a ransom to release it. (Photo: Tim Wang/flickr/cc)

NSA Tools, Built Despite Warnings, Used in Global Cyber Attack

Disruptions reported in at least 74 countries, including Russia, Spain, Turkey, and Japan, with some reports of U.S. infiltration as well

Nadia Prupis

Apparent National Security Agency (NSA) malware has been used in a global cyber-attack, including on British hospitals, in what whistleblower Edward Snowden described as the repercussion of the NSA's reckless decision to build the tools.

"Despite warnings, @NSAGov built dangerous attack tools that could target Western software. Today we see the cost," Snowden tweeted Friday.

At least two hospitals in London were forced to shut down and stop admitting patients after being attacked by the malware, which operates by locking out the user, encrypting data, and demanding a ransom to release it. The attacks hit dozens of other hospitals, ambulance operators, and doctors' offices as well.

The Blackpool Gazette in the northwest reported that medical staff had resorted to using pen and paper when phone and computer systems shut down. Elsewhere, journalist Ollie Cowan tweeted a photo of ambulances "backed up" at Southport Hospital as the staff attempted to cope with the crisis.

Other disruptions were reported in at least 74 countries, including Russia, Spain, Turkey, and Japan, and the number is "growing fast," according to Kaspersky Lab chief Costin Raiu. Security architect Kevin Beau said it was spreading into the U.S. as well.

The malware was stolen earlier this year by a group calling itself the Shadow Brokers, which has been releasing NSA hacking tools online since last year, the New York Times reports.

Times journalists Dan Bilefsky and Nicole Perlroth wrote:

Microsoft rolled out a patch for the vulnerability in March, but hackers apparently took advantage of the fact that vulnerable targets—particularly hospitals—had yet to update their systems.

The malware was circulated by email. Targets were sent an encrypted, compressed file that, once loaded, allowed the ransomware to infiltrate its targets.

Reuters reported that the National Health Service (NHS), England's public health system, was warned about possible hacking earlier in the day, but that by then it was already too late.

A Twitter account with the handle @HackerFantastic, the co-founder of the cyber security company Hacker House, tweeted that the firm had "warned the NHS with Sky news about vulnerabilities they had last year, this was inevitable and bound to happen at some stage."

"In light of today's attack, Congress needs to be asking @NSAgov if it knows of any other vulnerabilities in software used in our hospitals," Snowden tweeted. "If @NSAGov had privately disclosed the flaw used to attack hospitals when they *found* it, not when they lost it, this may not have happened."

Disclosing the vulnerability when it was found would have given hospitals years, not months, to update their systems and prepare for an attack, he added.

Twitter user @MalwareTechBlog added, "Something like this is incredibly significant, we've not seen P2P spreading on PC via exploits at this scale in nearly a decade."

Patrick Toomey, a staff attorney with the American Civil Liberties Union's (ACLU) National Security Project, said, "It would be shocking if the NSA knew about this vulnerability but failed to disclose it to Microsoft until after it was stolen."

"These attacks underscore the fact that vulnerabilities will be exploited not just by our security agencies, but by hackers and criminals around the world," Toomey said. "It is past time for Congress to enhance cybersecurity by passing a law that requires the government to disclose vulnerabilities to companies in a timely manner. Patching security holes immediately, not stockpiling them, is the best way to make everyone's digital life safer."


Our work is licensed under Creative Commons (CC BY-NC-ND 3.0). Feel free to republish and share widely.

... We've had enough. The 1% own and operate the corporate media. They are doing everything they can to defend the status quo, squash dissent and protect the wealthy and the powerful. The Common Dreams media model is different. We cover the news that matters to the 99%. Our mission? To inform. To inspire. To ignite change for the common good. How? Nonprofit. Independent. Reader-supported. Free to read. Free to republish. Free to share. With no advertising. No paywalls. No selling of your data. Thousands of small donations fund our newsroom and allow us to continue publishing. Can you chip in? We can't do it without you. Thank you.

'Congress Must Act': Bernie Sanders Demands End of Filibuster to Codify Abortion Rights

"We must pass legislation that codifies Roe v. Wade as the law of the land in this country. And if there aren't 60 votes to do it, and there are not, we must reform the filibuster to pass it with 50 votes."

Jon Queally ·


Human Rights Defenders Warn Biden Border Policy 'Quickly Transforming Into Trump 2.0'

Like his predecessor, President Joe Biden now being accused of "using racist, xenophobic tropes about immigrants to weaponize Covid-19 against migrants and asylum-seekers."

Jon Queally ·


'Bombshell': Israeli Spyware Used to Hack iPhones of US State Department Officials

Calling the Israel-based spyware maker NSO Group an "in-plain-sight national security threat," one expert warned that "a multi-agency investigation is immediately needed."

Jessica Corbett ·


US Progressive Caucus Hails Honduran Election as Chance for 'New Chapter' in Relations

"We encourage the Biden administration to use this opportunity to make a clean break with previous presidential administrations, which worked to ensure that the 2009 coup d'état succeeded."

Brett Wilkins ·


'The Facts of This Case Are So Egregious': Parents of Michigan School Shooter Charged in Killings

"There were a lot of things that could have been so simple to prevent," the Oakland County prosecutor said of the mother and father now being sought by law enforcement.

Kenny Stancil ·

Support our work.

We are independent, non-profit, advertising-free and 100% reader supported.

Subscribe to our newsletter.

Quality journalism. Progressive values.
Direct to your inbox.

Subscribe to our Newsletter.


Common Dreams, Inc. Founded 1997. Registered 501(c3) Non-Profit | Privacy Policy
Common Dreams Logo