While researchers across the world are trying their best to contain the damage by world’s biggest ransomware attack – WannaCry – researchers at Symantec Corp believe the ransomware is “highly likely” from a hacking group associated with North Korea.
Due to the similarities in the tools, codes and infrastructure used by the hackers, the cyber security company believes it could be the doing of Lazarus, a North Korean hacking group that was also behind cyber attacks on Sony Pictures and Bangladesh Central Bank, stealing more than $81 million.
“Analysis of these early WannaCry attacks by Symantec’s Security Response team revealed substantial commonalities in the tools, techniques, and infrastructure used by the attackers and those seen in previous Lazarus attacks, making it highly likely that Lazarus was behind the spread of WannaCry,” Symantec wrote in a blog post.