On Wednesday, US officials declared North Korea to have been behind May’s Wannacry ransomware attacks. North Korea reiterated their denial, but perhaps even more meaningful were statements from independent researchers.
US officials claim there is “proof,” but researchers say that the case is extremely flimsy, resting on common code snippets which don’t in any way prove common origins, and the server’s use of a North Korean IP address for an apparently unused connection.
The IP address, however, could be any number of things, either an attempt by the attackers to frame North Korea to bring the attention away from themselves, or perhaps even a sign that a North Korean official got infected by the ransomware too and was trying to track it down.
North Korean officials have insisted they have nothing to do with any cyberattacks, and that they don’t deny every single allegation made against them because there are simply too many to keep track of.
Last 5 posts by Jason Ditz
- Saudi Coalition to Open Humanitarian Corridors Out of Yemen's Hodeidah Port - September 24th, 2018
- Trump Expects Announcement of Second Summit With North Korea 'Pretty Soon' - September 24th, 2018
- US Troops Will Remain in Syria, Officials Say - September 24th, 2018
- Bolton Slams Russia, Says S-300 Sale in Syria Is 'Significant Escalation' - September 24th, 2018
- Russia Will Provide S-300 Air Defense to Syria - September 24th, 2018