(National Sentinel) Cyberwar: The ransomware attack that began and spread rapidly on Friday is continuing to encircle the globe, with thousands more computers affected on Monday as Russian President Vladimir Putin puts the blame on the United States.
Hackers using malware they stole from the National Security Agency hit dozens of countries on Friday in a massive ransomware attack that some cyber analysts believe was a sort of dry run in advance of a much larger assault, we reported last week.
Putin, in China for a state-to-state visit, said his country had “nothing to do” with the attacks as he laid the blame squarely on the U.S.
“Malware created by intelligence agencies can backfire on its creators,” said Putin, as reported by The Telegraph. He also noted that world leaders needed to discuss cyber security at a “serious political level” and said the U.S. has backed away from signing a cyber security agreement with Russia.
The paper added:
Authorities fear a second wave of the “WannaCry” ransomware could hit systems as people return to work and switch on their computers on Monday morning.
Japanese computer experts said around 2,000 PCs had been affected while the Chinese news agency Xinhua reported that almost 30,000 had been hit.
At present no one knows who is responsible for the attacks, but cyber experts are nearly universal in their opinion that this won’t be the last one. A group calling itself the Shadow Brokers leaked the stolen NSA malware.
What’s more, the attacks make it clear that computer systems the world over remain extremely vulnerable to cyber assaults, as IT system security around the world is a maintained via a patchwork of various levels that do not coordinate with each other.
“When people ask what keeps you up at night, it’s this,” Chris Camacho, the chief strategy officer at Flashpoint, a New York security firm tracking the attacks, told The New York Times.
Ransomware works by locking users out of their system, encrypting their files and then demanding a ransom – often via Bitcoin so it cannot be tracked – in order to get their computers unlocked.
The ransomware used is called WannaCry and Shadow Brokers has been dumping it and other stolen software online since last year.