Tuesday, December 19, 2017

Cyber-Attack: US blames North Korea for WannaCry - BBC News

19/12/2017
Cyber-Attack: US blames North Korea for WannaCry
The comments came from White House Homeland Security adviser Tom Bossert
The US administration has said North Korea was "directly responsible" for the WannaCry malware attack affecting hospitals, businesses and banks across the world earlier this year.
The attack is said to have hit more than 300,000 computers in 150 nations, causing billions of dollars of damage.
Thomas Bossert, an aide to US President Donald Trump, made the accusation in the Wall Street Journal newspaper.
It is the first time the US has blamed the country officially for the worm.
Mr Bossert, who advises the president on homeland security, said the allegation was "based on evidence".
He did not produce any evidence in the article, but said US findings concurred with judgments from other governments and private companies.
The United Kingdom government said in November that it was "all but certain" that North Korea carried out the attack.
In May, Windows computers hit by the cyber-attack had their contents locked, with users asked to a pay a ransom to have their data restored. EU police body Europol called the scale of the attack "unprecedented".
A programmer shows a sample of the WannaCry locked encryption page on a laptopImage copyrightEPA
Image caption
Attackers encrypted user's devices, and typically demanded a ransom of $300-600 in Bitcoin
In the piece, Mr Bossert said North Korea must be held "accountable" and said the US would continue to use a "maximum pressure strategy" to hinder the regime's ability to mount cyber-attacks.
He did not specify what action, if any, the US government planned to take in response to their findings.
The country is already facing major economic sanctions after being redesignated a state-sponsor of terrorism last month amid tension over the North Korean nuclear programme and missile tests.
Malware, patches and worms defined
UK say cyber-attack was 'launched from North Korea'
"North Korea has acted especially badly, largely unchecked, for more than a decade, and its malicious behaviour is growing more egregious. WannaCry was indiscriminately reckless," Mr Bossert wrote.
"As we make the internet safer, we will continue to hold accountable those who harm or threaten us, whether they act alone or on behalf of criminal organizations or hostile nations," he went on.
"The tool kits of totalitarian regimes are too threatening to ignore."
Why blame N Korea now?
Analysis: Gordon Corera, BBC security correspondent
Britain's National Cyber Security Centre, part of the GCHQ signals intelligence agency, attributed the May 2017 Wannacry attack to North Korea within weeks of the ransomware spreading, as the BBC reported in June.
The speed was because the UK led the international investigation after the National Health Service was hit hard.
The US intelligence community may have taken longer to concur with that assessment but there is still the question of why the White House is only going public now.
Governments used to be cautious about attribution in cyber attacks but it is becoming increasingly common - beginning with the claim North Korea was behind the attack on Sony in 2014 and more recently involving Russia's alleged hacking in the 2016 US election.
This latest claim is almost certainly an attempt to put more pressure on North Korea in the crisis over its nuclear programme with the attempt to rally international support behind the notion that the country is a real danger - whether from cyber weapons or nuclear weapons. And to make the case that further action, of some kind, needs to be contemplated.
'Unprecedented attack'
In the UK, the National Health Service (NHS) was hit particularly hard by the cyber-attack, with 48 affected health trusts forced to turn many patients away for appointments and even surgeries.
It spread across the world, with Russia reportedly being badly hit, causing problems to the country's postal service.
North Korea has not yet responded to the US allegation
In 2014, the US claimed North Korea were behind cyber-attacks on Sony Pictures, after it released a film featuring the fictional killing of its leader Kim Jong-un.
A guide to the cyber-attack on Hollywood
The entertainment company had its films leaked and details of corporate finances and private emails released online.
The North Koreans hit out at former president Barack Obama over the claim, but has not yet responded to the White House accusations about the WannaCry hack.
In October it said rumours from a UK government minister that they were behind the 2017 attack was "groundless speculation", and a "wicked attempt" to tighten international sanctions on the country.

No comments:

Post a Comment