“The self-spreading ‘WannaCry’ internet worm, which ripped through 160,000 computers and crippled hospitals and other businesses, is now being linked to a North Korean cyber gang,” reports Kevin Poulsen at Daily Beast.
Snip from his reporting:
Google security researcher Neel Mehta was first to cautiously connect the DPRK to the WannaCry attack. In a cryptic tweet Monday, Mehta referenced two seemingly different breeds of computer attack code. One was an early version of the WannaCry code that was found in the wild last February. The other was the “Contopee” backdoor program previously used in the Lazarus Group’s attacks on Asian financial institutions.
Mehta drew attention to a section of code that, upon inspection, turned out to be nearly identical in each program. Such commonalities are considered a key metric in determining that a common actor is behind two hacks, and other researchers quickly affirmed the importance of the find. “For now, more research is required into older versions of WannaCry,” wrote analysts at Kaspersky Lab. “We believe this might hold the key to solve some of the mysteries around this attack. One thing is for sure—Neel Mehta’s discovery is the most significant clue to date regarding the origins of WannaCry.”
Security giant Symantec says it has been thinking along similar lines. Over the weekend the company discovered that early versions of WannaCry—used before the NSA code was added—had a way of turning up on victim computers right after a confirmed Lazarus Group attack. “However, we have not yet been able to confirm the Lazarus tools deployed WannaCry on these systems,” wrote Vikram Thakur, technical director at Symantec, in a statement. “In addition, we found code in WannaCry… that historically was unique to Lazarus tools.”
Read the rest here, and for background, read Kevin's earlier piece on WannaCry.
Donald Trump once boasted of being so rich he did not want campaign contributions from wealthy donors. Like everything he says, that was a lie. Here is where Donald Trump is on Friday night, July 10, as COVID-19 ravages America.
Longtime Donald Trump consigliere Roger Stone is due in prison next week. Facebook on Wednesday took down 50 personal and professional pages connected to the U.S. President’s former adviser, about 10 years after it would do any good.
“#BreakingNews an SUV just plowed through protesters on 42nd street in #manhattan Still assessing injuries if any. More on @NY1 #blacklivesmatter #nycprotest more on @NY1,” tweeted NY1 news reporter Ruschell Boone [@RuschellBoone] at 10:19pm New York Time.
It’s almost shocking to say…but there’s actually an incredible amount of manhood wrapped up in how well you cook a steak. Of course, no one would argue your grilling abilities are THAT important. Or that how well you sear a prime slab of beef should have any bearing on your social standing or feeling of […]
The notion of two people sleeping in the same bed always inspires romantic visions of love and intimacy. However, most quickly realize that the romance of sleeping together is often quickly replaced by the realities of the act. One partner snores. The other talks in their sleep. One grinds their teeth. The other hogs the […]
Add Internet of Things to the shortlist of those actually benefiting from the effects of the COVID-19 pandemic. You might not realize it, but the organizing principle that is bringing more automation to the world is actually proving to be a major asset as human beings are forced to stay home and away from the […]