North Korea tie to ransomware attack? Scientists find link between North Korean hackers and Wanna Cry
North Korea tie to ransomware attack? Scientists find link between North Korean hackers and Wanna Cry

North Korea May Be Linked To WannaCry Ransomware, Researchers Say.

Researchers at Google, Symantec, Kaspersky Lab, and Comae Technologies say an early version of the WannaCry software contains code similar to that used by the Pyongyang-linked Lazarus group in a 2015 cyberattack, the Wall Street Journal reports.

Researchers say it could be the case that the attackers simply copied the code, or included it so that North Korea would be blamed for the attack, though the fact that it was removed from the final version of the software, which has hit at least 200,000 computers worldwide, seems to rule out the latter theory, the Guardian reports.

The copied code isn’t proof on its own, but “this is the best clue we have seen to date as to the origins of WannaCry,” Kaspersky researcher Kurt Baumgartner tells Reuters. Whoever the culprits are, they made some amateurish mistakes that severely limited their take from the scheme, experts tell Wired.

The errors include a “kill switch” that a British security researcher was able to activate for $11, and flaws that experts believe make it impossible for the criminals to know who has paid the ransom. “From a ransom perspective, it’s a catastrophic failure,” says Cisco security researcher Craig Williams.

The attack is believed to have brought in just $55,000, a fraction of the millions that smaller attacks have netted.

SHARE
Previous articleBarbara Rank: US woman’s letter to the editor about Rod Blum goes viral
Next articleHenderson Island Plastic Debris chokes remote South Pacific
Content created by France Hebdo is available without charge to any eligible news publisher that can provide a large audience. For licensing opportunities of our original content, please contact [email protected]

LEAVE A REPLY

Please enter your comment!
Please enter your name here