News tagged: WannaCrypt
A couple reports have connected the WannaCrypt ransomware with North Korea, but a new analysis by researchers at Flashpoint suggests there could be a Chinese link. Based on language in the ransom notice, the creators of the notice appear to have been Chinese.
After tentatively identifying a connection between the WannaCrypt ransomware and North Korea, Symantec has become more confident in that link. It now strongly believes Lazarus, a North Korean hacking group, is responsible. Symantec says the link is "highly likely."
Windows 7, not Windows XP, has been the most problematic operating system during WannaCrypt's spread. A report from Kaspersky found 98% of all known infections occurred on versions of Windows 7. The 64-bit version accounted for over 60% of infections on its own.
More NSA secrets are going to leak this summer, claim The Shadow Brokers. The hacking group says more tools from the US spy agency have been stolen and it's going to set up a monthly subscription model for accessing security exploits. It revealed the exploit behind WannaCrypt.
Computer security company Symantec has protected computers from nearly 22 million instances of WannaCrypt, a piece of ransomware that's been spreading over the past week. Symantec says it "blocked nearly 22 million WannaCry infection attempts across 300,000 endpoints."
The WannaCrypt ransomware that's infected hundreds of thousands of systems might be connected to North Korea. According to researchers with Kaspersky Labs, a piece of code in one of the first variants matches code from 2015 that was linked to Lazarus Group.
Windows may be the operating system that's affected by the WannaCrypt ransomware, but Microsoft isn't taking all of the blame. Brad Smith, the company's chief legal officer, has pointed a finger at the US government. The NSA knew about the exploit's existence.
Renault and Nissan have both been affected by the WannaCrypt ransomware, forcing some of their plants to temporarily shut down. Several European plants operated by Renault had to halt their work because data on their computers was entirely inaccessible.
The reach of WannaCrypt, a fast-growing ransomware, will significantly increase as business begins Monday, says Robert Wainwright, executive director of Europol. There are already upwards of 200,000 victims in over 150 countries. Indonesia has issued a similar warning.
Although Microsoft ended its support for Windows XP three years ago, it has issued a rare update to defend computers against WannaCrypt attacks. Ransomware based on leaked NSA hacking tools has been spreading around the world, affecting thousands of unpatched systems.