"TheShadowBrokers is launching new monthly subscription model... 'Each month peoples can be paying membership fee, then getting members only data dump each month...' It claimed to have exploits for web browsers, routers, operating systems (including Windows 10), compromised data from banks and Swift providers and stolen network data from Russian, Chinese, Iranian, and North Korean nuclear missile programs..." http://www.ibtimes.co.uk/mysterious...r-carnage-stolen-nuclear-missile-data-1621797 The Shadow Brokers Original Post: "OH LORDY! Comey Wanna Cry Edition ...In June, TheShadowBrokers is announcing "TheShadowBrokers Data Dump of the Month" service. TheShadowBrokers is launching new monthly subscription model. Is being like wine of month club. Each month peoples can be paying membership fee, then getting members only data dump each month. What members doing with data after is up to members. TheShadowBrokers Monthly Data Dump could be being: web browser, router, handset exploits and tools select items from newer Ops Disks, including newer exploits for Windows 10 compromised network data from more SWIFT providers and Central banks compromised network data from Russian, Chinese, Iranian, or North Korean nukes and missile programs More details in June... https://steemit.com/shadowbrokers/@theshadowbrokers/oh-lordy-comey-wanna-cry-edition
There is a lot to read into those statements. It is chess. The Shadow Brokers have introduced a foil to trick you into divorcing them from the ransomware thuggery that created havoc on May 12th. However, it was the Shadow Brokers who released that code for free after they could not get the price they wanted for it. We are acting very predictably. Microsoft has publicly denounced the NSA for hoarding exploits, posters and bloggers have torn strips off the UK's NHS (many referring to them as incompetent idiots), and Win/XP users have been called a danger to public safety. We are cannibalizing ad nauseam. Now it is their move. The escalation, taunts and threats are all meant to create more internal turmoil in the west and we are all too willing to participate. Checkmate.
"Who Are the Shadow Brokers? What is—and isn’t—known about the mysterious hackers leaking National Security Agency secrets..." https://www.theatlantic.com/technology/archive/2017/05/shadow-brokers/527778/
"Cash for hacking tools' sparks debate Security researchers are considering buying undetected software security vulnerabilities from a notorious group of hackers. The Shadow Brokers group has previously leaked exploits allegedly stolen from the US National Security Agency (NSA), and is offering more for sale. Some researchers want to buy the next batch of hacking tools, and help fix them before cyber-criminals strike. But critics argue that the Shadow Brokers should not be funded..." http://www.bbc.com/news/technology-40107093 "There's now a crowdfunding campaign to buy stolen hacking tools... The researchers behind the Patreon campaign, Hacker Fantastic and x0rz, hope that by purchasing the data they will be able to analyze it and possibly prevent another attack like the WannaCry ransomware..." http://mashable.com/2017/05/30/shadow-brokers-nsa-exploits-hacking-wannacry/#JOJszsOfsmqP
Possible solution: US government buys those bugs (since they lost them) and then releases them for free to vendors and security companies to patch and protect their software and services.
Minimalist- they already do (and have) bought exploit data- sadly often from folks that were trained in the Security services (usually former TAO staffers). Zerodium, Endgame, and Exodus have been using this business model for years; Endgame charges in the 7 figures USD for their data. I'll bet buying from Shadow Brokers will be a bargain in comparison.
Yes 20k is not much if they have good exploits on sale. As you said some of those exploits could be sold for millions.
"'Cash for hacks' crowd-funding campaign abandoned Security researchers have cancelled plans to buy potentially undetected software security vulnerabilities from a notorious group of hackers... One of the researchers behind the plan said the scheme was being abandoned for 'legal reasons'..." http://www.bbc.com/news/technology-40107099
In in view of "the success" of this week's cyberattack, The Shadow Brokers have raised their "NSA exploits-as-a-service" subscription fee from $21,000/month to $61,000/month. http://thehill.com/business-a-lobby...lize-on-ransomware-scare-based-on-their-wares