Global ransomware attack is similar to North Korean-orchestrated hacks, expert says

Global ransomware attack is similar to North Korean-orchestrated hacks, expert says

Global ransomware attack is similar to North Korean-orchestrated hacks, expert says

Google security researcher Neel Mehta sent out a tweet Monday linking two samples of malicious code: One from an early version of WannaCry and the other from the Lazarus Group, a collection of cybercriminals reportedly affiliated with North Korea.

The North is internationally suspected of having committed the ransomware attack as it is believed to have associated with Lazarus Group, which is also suspected of hacking into South Korean banks in 2013, Sony Pictures in 2014 and Bangladesh's central bank in February. The malware has scrambled data at hospitals, factories, government agencies, banks and other businesses since Friday.

The "ransomeware" blocks computers and puts up images on victims' screens demanding payment of $300 (275 euros) in the virtual currency Bitcoin, saying: "Ooops, your files have been encrypted!"

"If you are a country that is supplying or supporting North Korea, we will call you out on it".

According to Mehta's discovery, the "Lazarus Group" that works on behalf of North Koreans may be behind the attack as the hacking group has, in the past, used the same coding and tools as were used in "WannaCrypt" - the software used in the current hacking into the Microsoft operating software, the BBC reported on Tuesday.

Experts think they have uncovered evidence that could potentially connect North Korea to the recent WannaCry cyber attack that paralyzed computers worldwide.

John McCain: Trump Scandal Nearing "Watergate Size and Scale"
Ralph Abraham of Alto said he would like to see Comey testify before Congress and that he will go into it with an open mind. Other people familiar with Comey's style of working told CBS News they fully expect more Comey memos exist.

If the latter sounds familiar, that's because recent reports linked North Korea to a huge bank heist previous year that targeted the Bangladesh Bank. "We should never underestimate it". There have been three accounts identified so far, and there's no indication yet that the criminals have touched the funds.

Council diplomats, speaking on condition of anonymity because the consultations were private, said China never mentioned working with the USA on a new sanctions resolution, and both China and Russian Federation said they support a negotiated solution through dialogue.

Infected computers appear to largely be out-of-date devices that organizations deemed not worth the price of upgrading or, in some cases, machines involved in manufacturing or hospital functions that proved too hard to patch without possibly disrupting crucial operations, security experts said.

But that technique is no sure bet. And even finding a real person might be no help if they're in a jurisdiction that won't cooperate.

"We are not aware if payments have led to any data recovery", Bossert said, adding that no USA federal government systems had been affected. That switch was essentially a beacon sending the message "hey, I'm infected" to the hidden address, Weaver said. Speaking at a meeting of the National Assembly's defense committee on Tuesday, Han Min-koo stressed the importance of the USA missile defense system.

South Korea reported that just five companies were affected, including the country's largest movie chain.

Related news