China Daily Global Edition (USA)
Who’sCyber chaos behind keeps ‘WannaCry’ spreadingworldwidecyberattack?
WASHINGTON — Cyber security researchers have found technical evidence they said could link DPRK with the global WannaCry “ransomware” cyber attack TOKYO—that has Global infected cyber more chaos than was 300,000 spreading computerson Mondayin 150 countriesas companies since Friday. booted up computers Symantecat work and following Kaspersky the Lab weekend’ssaid on worldwideMonday that ransomwaresome code in cyberattack.an earlier version of the WannaCryThe extortion software scheme had createdalso appearedchaos in in 150 programs countries used and by could the wreak Lazarus even Group, greater which havoc researchersas more from maliciousmany companies variations have appear. identifiedThe initialas a DPRKrun attack, known hackingas “WannaCry”,operation. paralyzed “This computersis the best clue runningwe have the seen UnitedKingdom’sto date as to hospitalthe origins network, of WannaCry,” Germany’s Kaspersky national Lab railway researcher and Kurt scores Baumgartnerof other told companies Reuters. and government agenciesBoth firms around said the it world.was too early As toa loosetell whether global DPRK network was of involved in the attacks, based on the evidence that was published on Twitter by Google security researcher Neel Mehta. The attacks, which slowed on Monday, cybersecurityare among expertsthe fastestspreading fought the ransomware extortion hackers, campaigns Chinese on record. media said 29,372 institutions In a blog had post been on Sunday, infected Microsoftalong with hundredsCorp Presidentof thousands Brad Smithof devices. confirmed what researchersThe Japan already Computer widely Emergencyconcluded: ResponseThe attack Team made Coordinationuse of a hacking Center,tool builta by nonprofitthe US National providing Security support Agencyfor computer(NSA) that attacks,had leaked said online 2,000 in computersApril. He at poured600 locationsfuel on ina Japanlongrunning were reported debate affectedover how so governmentfar. Government intelligence agencies services said shouldthey were balance unaffected.their desire CompaniessuchasHitachiandNissanto keep software flaws secret — in order Motor to reported conduct espionageproblems and they cybersaid had warfarenot seriously— against affectedsharing their those business flaws operations.with technology companiesIn China, to about better secure 18,000 the IP internet. addresses in China have been confirmedOn Monday,as infected Trump with homeland the “WannaCry” security ransomware.adviser Tom Universities Bossert soughtand otherto distance educationalthe NSA institutionsfrom any were blame. among the hardest“This hit, was Xinhuanot a tool reported. developed Thatmayby the be becauseNSA to schoolshold ransomtend to data. have Thisold was computersa tool developedand be slow by about culpable updates parties, of potentiallyoperating systems criminals andor foreign security, nation-states,said Fang that Xingdong,were put togetherfounder in of such ChinaLabs,a way as to an deliver internet phishing strategy emails,think tank.put it into Railway embedded stations, documents, mailand cause delivery, infection,gas stations, encryption hospitals,and locking,” office Bossert buildings,said. shopping Russian malls Presidentand governmentVladimir Putin, services noting also the were technology’s affected, link Xinhuato the said, US citingQihoospy service, said 360, it a should Chinesebe “discussedinternet immediately security serviceson a company.serious political level.”
“OnceBut the they’re spread letof the out ransomwareof the lamp, geniesis ongoing,of this but kind, is especially those created by slowing intelligence down, services,the Cyberspacecan later Administrationdo damage to their of authorsChina saidand in creators,”a statement.he said.
Elsewhere Regardless in of Asia,the source officialsof in the Japan attack, and investorsthe Republicpiled into of Koreacyber securitysaid they stocks believedon Monday, security updatesbetting that had governmentshelped ward off and the corporationsworst of the impact.will spend more The to most upgrade public their damage defenses. in the The ROK perpetratorswas to cinemahad raised chain CJ less CGV than Co. $70,000It was restoringfrom users its advertisingpaying to regain servers accessat to dozenstheir of computers,theaters after Bossert the said. attack left the “We companyare not unable aware to displayif payments trailers of have upcomingled to movies.any data recovery,”The attack Bossert was said, disruptingadding computersthat no US federalthat run government factories, banks, systems governmenthad been affected. agencies and WannaCry transport systems demandedin scoresransoms of countries, starting includingat $300, Russia,in line Ukraine,with many Brazil,cyber extortionSpain, Indiacampaigns, and Japan, which among keep others. pricing Russia’slow so more InteriorMinistryvictims will pay. and companies Still, some including security experts Spain’s Telefonica,said they were FedEx not in sure theUnitedif the States motive andof WannaCryFrench carmakerwas primarily Renault to all make reported money, troubles. noting Expertsthat large were cyber urging extortion organizations campaigns and typically companies generateto immediatelymillions of dollars updateof revenue. older Microsoft“I believe operatingthat this was systems, spread suchfor the as purpose Windows of XP, causing with asa patch much releaseddamage as byMicrosoftpossible,” saidto limit Matthew vulnerabilityHickey, a co-founderto a more powerfulof British cyber version consultingof the malware firm Hacker or House.to future versions that can’t The be economiesstopped. most affected by Paying WannaCrythe ransomto date are will Russia,not ensure Taiwan,any fix, Ukrainesaid EiichiMoriya,and India, accordinga cybersecurityto security expertfirm Avast.and professorThe number atMeiji of University. infections has “You fallen are dramaticallydealing with sincea criminal,”Friday’s peakhe said. when “It’s more like thanafter 9,000a robber computers enters your were home. being Youhit per can hour. change the locks but what Authoritieshas happenedin Europe cannot andbe undone.the UnitedIf States someone turned kidnaps their your attention child, to you preventingmay pay hackersyour ransombutfrom spreading there new isnoguaranteeversions of the your virus. child will return.”
have have reported reported cases cases of of damage damage from from the the cyberattack. cyberattack.