Categories

WannaCry Bitcoin ransom wallets emptied

The Bitcoin wallets used by the operators of the WannaCry ransomware have been emptied, Quartz reported[1]. WannaCry infected Windows machines and encrypted their files – demanding a £300 or £600 ransom in Bitcoin to have them returned. It spread around the globe using an NSA-created cyber weapon called EternalBlue[2].

The WannaCry ransomware earned its makers around £140,000 in Bitcoin in total, which sat untouched for months in three wallets. According to Quartz, the Bitcoin is likely to have been sent through a “mixer”, obscuring its trail as the attackers try to cash out. An internal NSA document[3] stated that based on an analysis of the ransomware, it points with “moderate confidence” to the Reconnaissance General Bureau – North Korea’s spy agency.

It believes WannaCry was an attempt to raise money for Kim Jong-un’s regime.

Now read: South African government safe from ransomware like WannaCry: SITA[4]

References

  1. ^ Quartz reported (qz.com)
  2. ^ NSA-created cyber weapon called EternalBlue (mybroadband.co.za)
  3. ^ An internal NSA document (mybroadband.co.za)
  4. ^ South African government safe from ransomware like WannaCry: SITA (mybroadband.co.za)

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.