Rysiekúr Memesson
So, just listened to the newest episode of the #DefensiveSecurity podcast.
One of the topics touched on was WannaCry/NotPetia - it's been over a year since they hit, and @jerry made some good points about why these infections keep happening (have a listen, worth it!).
But one thing I felt was sorely missing: the way three-letter-agencies basically made us all less secure. EternalBlue, after all, was #NSA's tool that got leaked.
US CERT budget: ~$93mln
NSA official budget: ~$10bln
Rysiekúr Memesson
These numbers are insane. It should be the other way around!
I firmly believe we need to start calling NSAs and GCHQs of this world out on their bullshit. If you have ~$10bln annual budget and you leak a weaponized exploit, which then gets used in *malware*, you should be liable for damages.
WannaCry alone caused estimated $4bn of damage. Why should the victims pay for it?
Jonkman Microblog is a social network, courtesy of SOBAC Microcomputer Services. It runs on GNU social, version 1.2.0-beta5, available under the GNU Affero General Public License.
All Jonkman Microblog content and data are available under the Creative Commons Attribution 3.0 license.