Manhunt for hackers behind large-scale global 'cyber-attack'
BY Agencies14 May 2017 4:00 PM GMT
Agencies14 May 2017 4:00 PM GMT
International investigators hunted for those behind an unprecedented cyber-attack that affected systems in dozens of countries, including at banks, hospitals and government agencies, as security experts sought to contain the fallout.
The assault, which began on Friday and was being described as the biggest-ever cyber ransom attack, struck state agencies and major companies around the world— from Russian banks and British hospitals to FedEx and European car factories. "The recent attack is at an unprecedented level and will require a complex international investigation to identify the culprits," said Europol, Europe's police agency.
Europol said a special task force at its European Cybercrime Centre was "specially designed to assist in such investigations and will play an important role in supporting the investigation". The attacks used ransomware that apparently exploited a security flaw in Microsoft operating systems, locking users' files unless they pay the attackers a designated sum in the virtual currency Bitcoin. Images appeared on victims' screens demanding payment of USD 300 in Bitcoin, saying: "Ooops, your files have been encrypted!" Payment is demanded within three days or the price is doubled, and if none is received within seven days the files will be deleted, according to the screen message. But experts and government alike warn against ceding to the hackers' demands.
"Paying the ransom does not guarantee the encrypted files will be released," the US Department of Homeland Security's computer emergency response team said.
"It only guarantees that the malicious actors receive the victim's money, and in some cases, their banking information."
Experts and officials offered differing estimates of the scope of the attacks, but all agreed it was huge. Mikko Hypponen, chief research officer at the Helsinki- based cyber security company F-Secure, told AFP it was the biggest ransomware outbreak in history, saying that 130,000 systems in more than 100 countries had been affected. He said Russia and India were hit particularly hard, largely because Microsoft's Windows XP — one of the operating systems most at risk — was still widely used there. French police said there were "more than 75,000 victims" around the globe, but cautioned that the number could increase "significantly".
The virus spread quickly because the culprits used a digital code believed to have been developed by the US National Security Agency.
NHS cyber attack: 'Accidental hero' who halted ransomware gets week off as reward
The 22-year-old cybersecurity analyst who "accidentally" managed to halt the spread of malicious ransomware that has affected hundreds of organisations, including the NHS, has been given a week off from work as a reward.
The researcher, who tweets under the name MalwareTech and works for security firm Kryptos Logic, told the BBC he was able to stop vast numbers of attacks by the WannaCry ransomware by buying a domain name hidden in the program for $10.69. The domain name appears to have been written into the software by hackers as a kill switch for the malware. The analyst had taken a week off from work, but decided to investigate the ransomware after hearing about the global cyber-attack that sent organisations like the NHS into meltdown, with hospitals across the UK having turn away non-critical patients and resort to pen and paper. Now, he says his boss has rewarded him with another week off for all his hard work.
"The attention has been slightly overwhelming," the 22-year-old said. "The boss gave me another week off to make up for this train-wreck of a vacation." He has been hailed as an "accidental hero" as it "was actually partly accidental".
Next Story