Microsoft criticises NSA's role in the global cyber attack

A clamour spread on 12 May 2017 as a malware was launched infecting more than 57,000 computers in almost 100 countries including UK, Russia, Unites states, Spain, china and India. He says Chinese security companies have been offering their help.

In addition to the UK's NHS, the WannaCrypt ransomware also hit Spain's Telefonica telco and other companies in Russia, Spain, Taiwan and Ukraine, according to the security firm Malwarebytes.

Further, while the WannaCry ransomware attack targeted PCs with Microsoft software, one researcher said Apple (AAPL) could also be hit with similar attacks.

"We weren't expecting to see it but there has been a slight decline in the number of computers affected in Europe", Europol said.

The worldwide cyber attack was orchestrated using a malware called Wanna Decryptor or WannaCry. In the United Kingdom, the National Health Service's systems across 48 localized trusts fell victim, for example, seriously impacting patient care.

While ransom payments for users' stolen data had been notably low, the Security Response blog notes that a bitcoin address linked to the hackers showed a "spike in payments" to the account that began at 8 a.m. Greenwich Mean Time on Monday.

Smith then likened the severity of the scenario to the "U.S. military having some of its Tomahawk missiles stolen".

Microsoft Corp President Brad Smith sharply criticized the USA government on Sunday for "stockpiling" software flaws that it often can not protect, citing recent leaks of both NSA and Central Intelligence Agency hacking tools.

The original attack lost momentum late on Friday after a security researcher took control of a server connected to the outbreak, which crippled a feature that caused the malware to rapidly spread across infected networks. Computer worms like this first drew attention to the vulnerabilities of connecting to the Internet almost two decades ago. "Upon running the sample in my analysis environment I instantly noticed it queried an unregistered domain, which I promptly registered".

The National Security Agency (NSA) alerted Microsoft about the issue three months ago and Microsoft released an upgrade that patched the flaw, but many users were yet to run it, CNN reported.

"Seeing businesses and individuals affected by cyberattacks, such as the ones reported today, was painful", Microsoft's principal security group manager Phillip Misner wrote yesterday in an update on the TechNet site.

The unprecedented WannaCry global cyber attack beginning on Friday has unleashed a new wave of criticism directed at the NSA. This person discovered that the unnamed online terrorists accidentally included a "kill switch" in their software that allowed owners of websites to stop the attack. Aleksandr Yampolskiy, founder and chief executive of SecurityScorecard, told CNBC that Apple computers are also vulnerable as well. Most importantly, take back-ups. Well, once files are encrypted, users have very limited options to retrieve them.

Latest News