Slashdot Mirror

← Back to Stories (view on slashdot.org)

NSA Links WannaCry To North Korea (washingtonpost.com)

Posted by BeauHD on from the finger-pointing dept.

An anonymous reader quotes a report from The Washington Post: The National Security Agency has linked the North Korean government to the creation of the WannaCry computer worm that affected more than 300,000 people in some 150 countries last month, according to U.S. intelligence officials. The assessment, which was issued internally last week and has not been made public, is based on an analysis of tactics, techniques and targets that point with "moderate confidence" to North Korea's spy agency, the Reconnaissance General Bureau, according to an individual familiar with the report. The assessment states that "cyber actors" suspected to be "sponsored by" the RGB were behind two versions of WannaCry, a worm that was built around an NSA hacking tool that had been obtained and posted online last year by an anonymous group calling itself the Shadow Brokers. Though the assessment is not conclusive, the preponderance of the evidence points to Pyongyang. It includes the range of computer Internet protocol addresses in China historically used by the RGB, and the assessment is consistent with intelligence gathered recently by other Western spy agencies. It states that the hackers behind WannaCry are also called "the Lazarus Group," a name used by private-sector researchers.

15 of 99 comments (clear)

  1. Oh by Anonymous Coward · · Score: 5, Insightful

    How convenient

    1. Re:Oh by TFlan91 · · Score: 3, Funny

      Looks like NK needs some democracy

  2. It's only bad when they do it, not us!!! by Anonymous Coward · · Score: 5, Insightful

    Honestly such hypocrisy and double standards - the nsa hacks get leaked all the time and used for evil but when its another government doing it everyone must get up in arms about it! But as the dumbo in chief always says, its #fakesnews don't believe it folks!

  3. Funny! by helsinki92 · · Score: 5, Funny

    Pot, meet Kettle. NSA finds the exploit and North Korea weaponizes it and sends it into the wild.

  4. Bullshit by Anonymous Coward · · Score: 5, Insightful

    I don't beleive anything three letter agencies say any more about this stuff. It's already leaked that they have stockpiled these sorts of voilnerabilities and it was also shown in Wikileaks that they can and do impersonate other countries.

    How do we know this isn't the Military Industrial complex trying to secure more lucrative sales?

    1. Re:Bullshit by Anonymous Coward · · Score: 5, Funny

      How do we know you're not a paid shill employed by foreign nations to help undermine public trust in American agencies?

    2. Re:Bullshit by Kiaser+Zohsay · · Score: 4, Interesting

      The only TLA that applies here is "CYA". I guess they think it's less embarrassing for another state actor to weaponize their leaked vulnerabilities than for some script kiddies scamming for bitcoin to do it.

      --
      I am not your blowing wind, I am the lightning.
    3. Re:Bullshit by Coisiche · · Score: 3, Insightful

      Well except for all those Bitcoins they just made out of WannaCry (allegedly).

    4. Re:Bullshit by DontBeAMoran · · Score: 4, Funny

      I don't believe anything three letter agencies say any more.

      Damn right! Just last week I got a letter telling me my car could have an "accident" in the near future because of "faulty parts". Well, fuck you KIA.

      --
      #DeleteFacebook
  5. Don't believe it by campuscodi · · Score: 5, Interesting

    Recored Future is disputing WaPo's findings: https://www.recordedfuture.com...
    Furthermore, the US seems to be on a PR campaign to blame NK. Yesterday, FBI&DHS put out a report claiming that big bad NK was building a botnet. They put out 8-year-old IOCs: https://www.us-cert.gov/ncas/a...
    Someone's pushing an agenda here...

  6. This dynamic will soon change by Anonymous Coward · · Score: 4, Funny

    Dennis Rodman just gave the North Koreans a copy of The Art Of The Deal.

  7. You know who else is linked to WannaCry? by zedaroca · · Score: 5, Insightful

    They are, the NSA, they gave away the vulnerability. They didn't warn M$ when they found the vulnerability. They didn't warn M$ as soon as their weapon was stolen.

    Of course there is no reason to believe any official statements made by them, but the least they should do in this case is to shut up.

    1. Re:You know who else is linked to WannaCry? by zedaroca · · Score: 4, Informative

      “NSA identified a risk and communicated it to Microsoft, who put out an immediate patch,” Mike McNerney, a former Defense Department cybersecurity official, told the Post.

      It became public that they were stolen in August, when did they warn Microsoft? The "immediate patch" came in march, 8 months after everybody knowing about it.

  8. I trust the NSA implicitly by JoeyRox · · Score: 5, Interesting

    Why would a government agency spying on me have a reason to lie?

  9. Let me guess... by Anonymous Coward · · Score: 4, Insightful

    Oh wait, is Russia no longer the flavor of the month now that they realize the bogus claims won't stick?

    Guess it's time to shoo up a new boogey man.