Expert finds more possible North Korea links to cyberattack | Inquirer News
Close  

Expert finds more possible North Korea links to cyberattack

/ 07:00 PM May 16, 2017
South Korea moviehouse - 15 May 2018

A customer walks by the notice about “ransomware” at CGV theater in Seoul, South Korea, Monday, May 15, 2017. The letters read “Due to ransomware affection, we are unable to screen advertisement. The movie is going to start 10 minutes after the ticket time.” (Photo by LEE JIN-MAN / AP)

SEOUL, South Korea — A South Korean cybersecurity expert said Tuesday there is more circumstantial evidence that North Korea may be behind the global “ransomware” attack: the way the hackers took hostage computers and servers across the world was similar to previous cyberattacks attributed to North Korea.

Simon Choi, a director at anti-virus software company Hauri Inc. who has analyzed North Korean malware since 2008 and advises the government on cyberattacks, said the North is no newcomer to the world of bitcoins and has been mining the digital currency using malicious computer programs since as early as 2013.

ADVERTISEMENT

In the current attack, hackers demand payment from victims in bitcoins to regain access to their encrypted computers.

Last year, Choi accidentally spoke to a hacker traced to a North Korean internet address about development of ransomware and he alerted South Korean authorities.

FEATURED STORIES

If North Korea, believed to be training cyberwarriors at schools, is indeed responsible for the latest attack, Choi said the world should stop underestimating its capabilities and work together to think of a new way to respond to cyber threats, such as having China pull the plug on North Korea’s internet.

Choi is one of a number of researchers around the world who have suggested a possible link between the “ransomware” known as WannaCry and hackers linked to North Korea. While Choi’s speculation may deepen suspicions that the nuclear-armed state is responsible, the evidence is still far from conclusive. Authorities are working to catch the extortionists behind the global cyberattack, searching for digital clues and following the money.

Researchers at Symantec and Kaspersky Lab have found similarities between WannaCry and previous attacks blamed on North Korea.

South Korea has been a frequent target of cyberattacks that it traced to its northern neighbor. Some high-profile attacks between 2009 and 2013 shut down government websites, banking systems and paralyzed broadcasters.

South Korea was mostly spared from the latest ransomware attack, partly because the constant threats have made the government and companies careful about always updating their software.

Subscribe to our daily newsletter

By providing an email address. I agree to the Terms of Use and acknowledge that I have read the Privacy Policy.
Read Next
Don't miss out on the latest news and information.

Subscribe to INQUIRER PLUS to get access to The Philippine Daily Inquirer & other 70+ titles, share up to 5 gadgets, listen to the news, download as early as 4am & share articles on social media. Call 896 6000.

TAGS: cyberattacks, North Korean hackers, ransomware attack, WannaCry
For feedback, complaints, or inquiries, contact us.

Subscribe to our daily newsletter

By providing an email address. I agree to the Terms of Use and
acknowledge that I have read the Privacy Policy.



© Copyright 1997-2022 INQUIRER.net | All Rights Reserved

We use cookies to ensure you get the best experience on our website. By continuing, you are agreeing to our use of cookies. To find out more, please click this link.