A new set of documents published by a group calling itself TheShadowBrokers suggests that the U.S. National Security Agency has burrowed deep into the Middle East's financial network.

Hickey said the Windows exploits leaked on Friday could be used to conduct espionage and target critical data in Windows-based environments.

Researchers are now poring over the cache of files.

The group Friday appeared to release tools created to target Windows PCs and servers, along with presentations and files purporting to detail the agency's methods of carrying out clandestine surveillance. This details exact targets, such as particular systems in eastnets.com to leverage access into the SWIFT systems of client banks, and sql queries created to extract, in bulk, transactions of interest.

The SWIFT system is used by banks to transfer trillions of dollars each day.

The Shadow Brokers latest NSA dump indicates that Dubai-based firm EastNets, which oversees SWIFT transfers for various Middle Eastern clients, was hacked by the NSA. It mentions "ongoing collection" from servers owned by financial institutions in the United Arab Emirates, Yemen, Kuwait, Palestine, and Bahrain.

"It contains the evidences of the largest infection of a SWIFT Service Bureau to date", Suiche later added.

"I'll bet it's not the only SWIFT service bureau that's been compromised", he said.

Reuters reports that SWIFT also claims there's no evidence its network has been accessed.

Manufacturing drags IIP down to 4-month low in Feb
The decline in the IIP in February is mainly due to 2% contraction in manufacturing, which constitutes over 75% of the index. The non-durable consumer goods output shrank by 8.6 percent in the month over a contraction of 4.9 percent year ago.

"We can confirm that no EastNets customer data has been compromised in any way".

The GitHub post of the tools by The Shadow Brokers contains three folders, marked "oddjob", "swift" and "windows", which can be unlocked by a password that was released by the group.

The release included computer code that could be adapted by criminals to break into SWIFT servers and monitor messaging activity, said Shane Shook, a cybersecurity consultant who has helped banks investigate breaches of their SWIFT systems.

The first dumps by the Brokers were source code the group hoped would prove they had the wares they claimed to be selling.

However, computers running Windows Server are particularly at risk, Hickey said.

A Microsoft spokesperson provided a statement via e-mail, stating that "we are reviewing the report and will take the necessary actions to protect our customers". It declined to elaborate.

Former NSA intelligence contractor Edward Snowden talks to a security conference via a video link from Russian Federation.

The Shadow Brokers, an unidentified group or persons, has hacked the NSA for the past eight months and have leaked a gigabyte of NSA data.

The mysterious tragicomic hacking group The Shadow Brokers continues to dump incredibly compromising cyberweapons and internal information looted from the NSA, accompanied by Borat-compliant gibberish that reads like someone trying to make you guess whether there's a false flag in play, and if so, who is waving it.


COMMENTS