The ShadowBrokers is a group of hackers known for leaking exclusive information about the National Security Agency – NSA’s hacking tools and tactics.
Recently they have released the UNITEDRAKE NSA exploit, which is a remote access and control tool that can remotely target Windows-based systems to capture desired information and transfer it to a server. It captures information using plugins to compromise webcam and microphone output along with documenting log keystrokes, carrying out surveillance and access external drives.
UNITEDRAKE, described as a "fully extensible remote collection system designed for Windows targets," also gives operators the opportunity to take complete control of a device. The malware's modules -- including FOGGYBOTTOM and GROK -- can perform tasks including listening in and monitoring communication, capturing keystrokes and both webcam and microphone usage, the impersonation users, stealing diagnostics information and self-destructing once tasks are completed.
UNITEDRAKE was also mentioned in several Snowden documents and Kaspersky Labs has found evidence of these tools in the wild, associated with the Equation Group. Such kind of exploit tools were developed and used by the US National Security Agency (NSA) to perform mass surveillance and bulk hacking worldwide.
ShadowBrokers has now decided to release two data dumps every month dubbed as the Monthly Dump Service. For its latest data dump, the group is expecting to receive 500 Zcash, a type of cryptocurrency, which facilitates secure, private transactions. It is worth noting that the current rate of Zcash is US$215 or 163 GBP per unit.