WannaCry ransomware has links to North Korea, cybersecurity experts say
Posted in: Legal & Security at 16/05/2017 16:22
Two top security firms have found evidence linking the WannaCry ransomware to the prolific North Korean cybergang known as Lazarus Group.
Kaspersky and Symantec both said on Monday that technical details within an early version of the WannaCry code are similar to code used in a 2015 backdoor created by the government-linked North Korean hackers, who were implicated in the 2014 attack on Sony Pictures and an $81m heist on a Bangladeshi bank in 2016. Lazarus Group has also been known to use and target Bitcoin in its hacking operations. The similarities were first spotted by Google security researcher Neal Mehta and echoed by other researchers including Matthieu Suiche from UAE-based Comae Technologies.
Researchers see possible North Korea link to global cyber attack
Cyber security researchers have found technical evidence they said could link North Korea with the global WannaCry "ransomware" cyber attack that has infected more than 300,000 computers in 150 countries since Friday.
Symantec and Kaspersky Lab said on Monday that some code in an earlier version of the WannaCry software had also appeared in programs used by the Lazarus Group, which researchers from many companies have identified as a North Korea-run hacking operation.