U.S. declares North Korea carried out massive WannaCry cyberattack
The U.S. government is publicly acknowledging that North Korea was behind the WannaCry computer worm that affected more than 230,000 computers in over 150 countries earlier this year.
As a result, the Trump administration will be calling on “all responsible states” to counter North Korea’s ability to conduct cyberattacks and to implement all “relevant” United Nations Security Council sanctions, according to a U.S. official familiar with the matter.
Trump’s homeland security adviser, Tom Bossert, made the announcement in a Wall Street Journal op-ed Monday evening and will follow up with a statement Tuesday morning.
North Korea was widely suspected to have created the virus, which was paired with ransomware that encrypted data on victims’ computers and demanded money to restore access. Until now, the U.S. government has not publicly stated as much.
In June, The Washington Post reported that the National Security Agency had linked North Korea to the creation of the worm. In October, the British government declared that it believed North Korea was the culprit. The following month, the CIA issued a similar classified assessment, which has not been previously reported.
The official noted that the U.S. government has released technical details of North Korean cyber-tools and operational infrastructure and has worked with other countries to lessen North Korea’s ability to conduct further tests or generate illicit funding.
The May 12 global cyberattack affected critical sectors, including health care, “potentially putting lives at risk,” said the official, who spoke on the condition of anonymity to discuss a move not yet public. This follows a pattern of disruptive and harmful cyber activity by the reclusive country. Its leader, Kim Jong Un, has pushed for the development of hacker forces as a low-cost, high-impact tool that can rattle the nerves and damage the systems of more powerful nations.
Free Active Directory Assessment
Get Visibility Into Privilege And Service Account Exposure
For a limited time, Attivo Networks is providing free Active Directory Security Assessments to demonstrate how ADAssessor provides unprecedented and continuous visibility to AD vulnerabilities.
Try Our Endpoint Detection Net (EDN) for Free
FAST AND EASY
Free use offer of our Award-winning security solution to prevent attackers from lateral movement, credential theft, and privilege escalation, fast and easy.
ADSecure 90-Day Free Trial
GET PROTECTION AGAINST UNAUTHORIZED ACCESS TO ACTIVE DIRECTORY
- Hide and deny access to AD objects
- Get alerted on unauthorized queries
- Attack details easily viewable in dashboard
- Your data remains on-premise