Microsoft said it has already patched vulnerabilities revealed in Friday’s of suspected U.S. National Security Agency spying tools, meaning customers should be protected if they’ve kept their software up-to-date.
Friday’s leak caused in the security community. The spying tools include about 20 exploits designed to hack into old versions of Windows, such as Windows XP and Windows Server 2008.
However, Microsoft said several patches — one of which was made only last month — address the vulnerabilities.
“Our engineers have investigated the disclosed exploits, and most of the exploits are already patched,” the company said in a blog late on Friday.
that one of the exploits in the leak can easily trigger remote code execution in a machine running Windows Server 2008 R2 SP1.
, addresses the exploit. Microsoft issued the fix last month, but it’s unclear how the company learned of the security issue.
“Microsoft doesn’t credit anyone for the report behind the March patch,” former NSA contractor Edward Snowden. He wonders whether the NSA tipped off Microsoft.
Friday’s high-profile leak was the latest disclosure from a mysterious group known as the The group has been posting files suspected to originate from the NSA since last August.
Security experts say Friday’s disclosure is probably another blow to the U.S. spy agency. The Shadow Brokers have also warned they have more files to release.