As security experts continue to assess the damage from Friday’s worldwide hacking attack, Microsoft’s president said governments should come together to set guidelines on warfare in cyberspace.
Microsoft says government hoarding of hacking tools is partly to blame for the cyberattacks that crippled computer systems around the world on Friday.
The company also reiterated a call it made earlier this year for an international agreement among states to shield civilians and corporate noncombatants from hacking.
In what one of the most significant cyberattacks ever recorded, computer systems from the U.K. to Russia, Brazil and the U.S. were hit beginning Friday by malicious software that exploited a vulnerability in Microsoft’s Windows operating system. The hacking tool at work was originally developed by the U.S. National Security Agency, before it leaked online earlier this year.
“This attack provides yet another example of why the stockpiling of vulnerabilities by governments is such a problem,” Microsoft President and Chief Legal Officer Brad Smith said in a blog post on Sunday, comparing the recent leaks of NSA and CIA hacking tools to, in the real world, the theft of cruise missiles.
Most Read Stories
Instead of developing hacking tools in secret and holding them for use against adversaries, governments and intelligence agencies should share weaknesses they find with Microsoft and other software makers so that vulnerabilities can be repaired, he said.
Smith repeated a call he made in February, calling for an international convention on the use of cyberwarfare akin to the Geneva Conventions’ protections for noncombatants and other guidelines in conventional warfare.
Microsoft had released in March a patch to fix the flaw exploited this week, but many computers, particularly older systems or devices…