By NICOLE PERLROTHMAY 22, 2017

Share it with your friends Like

Thanks! Share it with your friends!

Close

By NICOLE PERLROTHMAY 22, 2017
There are now hard links connecting a group of North Korean hackers
that experts call the Lazarus Group to the ransomware known as WannaCry, according to researchers at the security company Symantec.
But the hackers left behind a trail of digital crumbs
that Mr. Chien and his colleagues had traced to previous attacks by the Lazarus Group, which United States government officials have said works at the behest of Pyongyang.
In the February WannaCry attacks, Symantec’s researchers said the hackers spread from
server to server the same way the Lazarus hackers had in their previous attacks.
That crossover provided what Mr. Chien said was yet another “hard link.”
Other digital crumbs linking the North Korean group to WannaCry include a tool that deletes data that had been used in other Lazarus attacks.
In May, another group of hackers that call themselves the Shadow Brokers published the details of National Security Agency hacking tools
that the WannaCry hackers were able to use to add muscle to their attacks.
Some computer security experts have said it is too soon to accuse North Korea, and North Korean officials have denied involvement

Comments

Write a comment

*