bla bla fucking bla shit from the kunt in the korner

Researchers see possible NK link to global cyber attack
Dustin Volz, Jim Finkle, Reuters, May 13 2017

Cyber security researchers have found technical evidence they said could link NK with the global WannaCry “ransomware” cyber attack that has infected more than 300,000 computers in 150 countries since Friday. Symantec and Kaspersky said on Monday that some code in an earlier version of the WannaCry software had also appeared in programs used by the Lazarus Group, which researchers from many companies have identified as a NK-run hacking operation. Kaspersky researcher Kurt Baumgartner told Reuters:

This is the best clue we have seen to date as to the origins of WannaCry.

Both firms said it was too early to tell whether NK was involved in the attacks, based on the evidence that was published on Twitter by Google security researcher Neel Mehta. The two security firms said they needed to study the code more and asked for others to help with the analysis. Pijndostani & Eurostani boxtops told Reuters on condition of anonymity that it was too early to say who might be behind the attacks, but they did not rule out NK as a suspect. FireEye, another large cyber-security firm, said it was also investigating a possible link. FireEye researcher John Miller said:

The similarities we see between malware linked to that group and WannaCry are not unique enough to be strongly suggestive of a common operator.

The Lazarus hackers, acting for impoverished North Korea, have been more brazen in pursuit of financial gain than others, and have been blamed for the theft of $81 million from the Bangladesh central bank, according to some cyber security firms. The NK mission to the UN was not immediately available for could not be bothered to comment. Regardless of the source of the attack, investors piled into cyber-security stocks on Monday, betting that governments and corporations will spend more to upgrade their defenses. The perpetrators had raised less than $70k from users paying to regain access to their computers, according to Trump homeland security adviser Tom Bossert. Bossert said:

We are not aware if payments have led to any data recovery. No U.S. federal government systems had been affected.

WannaCry demanded ransoms starting at $300, in line with many cyber-extortion campaigns, which keep pricing low so more victims will pay. Still, some security experts said they were not sure if the motive of WannaCry was primarily to make money, noting that large cyber-extortion campaigns typically generate millions of dollars of revenue. Matthew Hickey, a co-founder of British cyber consulting firm Hacker House:

I believe that this was spread for the purpose of causing as much damage as possible

The countries most affected by WannaCry to date are Russia, Taiwan, Ukraine and India, according to Czech security firm Avast. The number of infections has fallen dramatically since Friday’s peak when more than 9,000 computers were being hit per hour. Earlier on Monday, Chinese traffic police and schools reported they had been targeted as the attack rolled into Asia for the new work week, but no there were no major disruptions. Shares in firms that provide cyber-security services rose sharply, led by Israel’s Cyren and Pindo-based FireEye. Cisco Systems closed up 2.3% and was the second biggest gainer in the Dow Jones Industrial Average, as investors focused more on opportunities that the attack presented for technology firms than the risk it posed to corporations. Morgan Stanley, in upgrading the stock, said Cisco should benefit from network spending driven by security needs. Beyond the immediate need to shore up computer defenses, the attack turned cyber-security into a political topic in Eurostan & Pindostan, including discussion of the role national governments play. In a blog post on Sunday, Microsoft President Brad Smith confirmed what researchers already widely concluded: The attack made use of a hacking tool built by the NSA that had leaked online in April. He poured fuel on a long-running debate over how government intelligence services should balance their desire to keep software flaws secret, in order to conduct espionage and cyber-warfare, against sharing those flaws with technology companies to better secure the internet. On Monday, Bossert sought to distance the NSA from any blame, saying:

This was not a tool developed by the NSA to hold ransom data. This was a tool developed by culpable parties, potentially criminals or foreign nation-states, that were put together in such a way as to deliver phishing emails, put it into embedded documents, and cause infection, encryption and locking.

Pres Putin, noting the technology’s link to the NSA, said:

(This needs to be) discussed immediately on a serious political level. Once they’re let out of the lamp, genies of this kind, especially those created by intelligence services, can later do damage to their authors and creators.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s