Between August 2016 and April 2017, a group known as ‘The Shadow Brokers’ released staged leaks of what they claimed were NSA cyberweapon repositories stolen from the NSA’s elite Tailored Access Operations (TAO) hacking division. The most impactful release was on April 14, 2017 — dubbed ‘Lost in Translation’ — which included EternalBlue (CVE-2017-0144, exploiting SMBv1), EternalRomance (CVE-2017-0145), DoublePulsar (a backdoor implant), and FUZZBUNCH (an exploit framework). Microsoft had issued patches for EternalBlue and related vulnerabilities in March 2017 (MS17-010), but millions of unpatched systems remained. The downstream impact was catastrophic: EternalBlue was incorporated into WannaCry ransomware (May 2017, ~$4B damages) and NotPetya wiper (June 2017, ~$10B damages). US intelligence officials and security researchers attributed the Shadow Brokers to Russian SVR or GRU intelligence services. NSA contractor Harold T. Martin III was arrested in August 2016 for stealing NSA materials, though he was not officially charged in connection with the Shadow Brokers leaks. The incident triggered a debate about the ‘Vulnerabilities Equities Process’ (VEP) — the US government policy for deciding whether to disclose discovered vulnerabilities to vendors or retain them for offensive use.