Security experts are observing a significant increase in the number of malware and hacking tools leveraging the ETERNALBLUE NSA exploit. The alleged NSA exploit made the headlines with DOUBLEPULSAR in the WannaCry attack. A new ransomware, dubbed UIWIX, was discovered to be using the NSA-linked EternalBlue exploit for distribution. The new threat has the ability to run in the memory of the infected system after the exploiting of the EternalBlue. vulnerability in the SMBv1 protocol.”]
Source: https://securityaffairs.co/wordpress/59688/cyber-crime/eternalblue-hacking-tools.html