White House Blames North Korea for WannaCry Attacks

White House Blames North Korea for WannaCry Attacks

The White House has publicly blamed North Korea for the WannaCry ransomware attack earlier this year that locked more than 300,000 computers in 150 countries.

  • By Jessica Davis
  • Dec 20, 2017

The White House has publicly blamed North Korea for the WannaCry ransomware attack earlier this year that locked more than 300,000 computers in 150 countries. White House Homeland Security Advisor Tom Bossert said Tuesday that the attack was ordered by North Korean leader Kim Jong Un.

Bossert formally announced the blame in an op-ed in the Wall Street Journal on Monday night and followed the statement with a White House press conference Tuesday. At the press conference, Bossert said that other nations, including Australia, Canada, Japan and the United Kingdom as well as private sector partners including Microsoft had agreed with the U.S. assessment that North Korea was responsible for the attack, which was “widespread and cost billions”.

“We do not make this allegation lightly. We do this with evidence. We do so with partners,” Bossert said.

The WannaCry attack was considered unprecedented in scale at the time, locking computers at hospitals, universities and businesses and demanding ransom payments and deletion of victims’ data if they didn’t pay. The ransomware was made possible by a flaw in Windows software that was discovered by the U.S. National Security Agency and made publicly available online in an NSA security breach.

Security researchers believe the notorious North Korean hacking entity known as Lazarus Group carried out the attack on behalf of the North Korean government. Bossert said the goal of the announcement was to “name and shame” the North Korean actors.

“North Korea has acted especially badly, largely unchecked, for more than a decade, and its malicious behavior is growing more egregious,” Bossert said. “WannaCry was indiscriminately reckless.”

The attribution represents a move by the Trump administration to work against malicious cyber activity. Last month, the White House published a document about its Vulnerabilities Equities Process in an effort to increase transparency about how it decides whether and when to disclose cybersecurity flaws.

“Stopping malicious behavior like this starts with accountability,” Bossert said. “It also requires governments and businesses to cooperate to mitigate cyber risk and increase the cost to hackers. The U.S. must lead this effort, rallying allies and responsible tech companies throughout the free world to increase the security and resilience of the internet.”

North Korea has repeatedly denied responsibility for WannaCry and called other allegations about cyberattacks a smear campaign. The White House’s accusation comes as worries increase about North Korea’s hacking abilities and nuclear weapons program.

About the Author

Jessica Davis is the Associate Content Editor for 1105 Media.

Featured

  • Live from GSX 2024: Post-Show Recap

    Another great edition of GSX is in the books! We’d like to thank our great partners for this years event, NAPCO, LVT, Eagle Eye Networks and Hirsch, for working with us and allowing us to highlight some of the great solutions the companies were showcasing during the crowded show. Read Now

    • Industry Events
    • GSX

  • Research: Cybersecurity Success Hinges on Full Organizational Support

    Cybersecurity is the top technology priority for the vast majority of organizations, but moving from aspiration to reality requires a top-to-bottom commitment that many companies have yet to make, according to new research released today by CompTIA, the nonprofit association for the technology industry and workforce. Read Now

  • Live from GSX 2024: Day 3 Recap

    And GSX 2024 in Orlando, is officially in the books! I’d like to extend a hearty congratulations and a sincere thank-you to our partners in this year’s Live From program—NAPCO, Eagle Eye Networks, Hirsch, and LVT. Even though the show’s over, keep an eye on our GSX 2024 Live landing page for continued news and developments related to this year’s vast array of exhibitors and products. And if you’d like to learn more about our Live From program, please drop us a line—we’d love to work with you in Las Vegas at ISC West 2025. Read Now

    • Industry Events
    • GSX

  • Bringing New Goods to Market

    The 2024 version of GSX brought with it a race to outrun incoming hurricane Helene. With it’s eye on Orlando, it seems to have shifted and those security professionals still in Orlando now have a fighting chance to get out town. Read Now

    • Industry Events
    • GSX
Most   Popular

Featured Cybersecurity

Webinars

New Products

  • A8V MIND

    A8V MIND

    Hexagon’s Geosystems presents a portable version of its Accur8vision detection system. A rugged all-in-one solution, the A8V MIND (Mobile Intrusion Detection) is designed to provide flexible protection of critical outdoor infrastructure and objects. Hexagon’s Accur8vision is a volumetric detection system that employs LiDAR technology to safeguard entire areas. Whenever it detects movement in a specified zone, it automatically differentiates a threat from a nonthreat, and immediately notifies security staff if necessary. Person detection is carried out within a radius of 80 meters from this device. Connected remotely via a portable computer device, it enables remote surveillance and does not depend on security staff patrolling the area. 3

  • ResponderLink

    ResponderLink

    Shooter Detection Systems (SDS), an Alarm.com company and a global leader in gunshot detection solutions, has introduced ResponderLink, a groundbreaking new 911 notification service for gunshot events. ResponderLink completes the circle from detection to 911 notification to first responder awareness, giving law enforcement enhanced situational intelligence they urgently need to save lives. Integrating SDS’s proven gunshot detection system with Noonlight’s SendPolice platform, ResponderLink is the first solution to automatically deliver real-time gunshot detection data to 911 call centers and first responders. When shots are detected, the 911 dispatching center, also known as the Public Safety Answering Point or PSAP, is contacted based on the gunfire location, enabling faster initiation of life-saving emergency protocols. 3

  • Connect ONE’s powerful cloud-hosted management platform provides the means to tailor lockdowns and emergency mass notifications throughout a facility – while simultaneously alerting occupants to hazards or next steps, like evacuation.

    Connect ONE®

    Connect ONE’s powerful cloud-hosted management platform provides the means to tailor lockdowns and emergency mass notifications throughout a facility – while simultaneously alerting occupants to hazards or next steps, like evacuation. 3