Is the Bitcoin virus leaked from the American virus database?

On June 5438+02, more than 75,000 computer virus attacks occurred in 99 countries and regions around the world. The culprit is a ransomware called WannaCry. Russia, Britain, China, Ukraine and other countries are "sandwiched" among them. The British medical system is paralyzed and a large number of patients are unable to seek medical treatment.

The virus originated from the National Insurance Agency virus database leaked last month. Many network experts and computer security companies retort that 90% of US network project expenditure is used to develop hacker attack weapons. Once the "arsenal" is leaked, it will inevitably affect the whole world.

Malicious extortion

According to the statistics of Avis, a Czech network security company, 12 has been attacked by computer viruses more than 75,000 times in 99 countries and regions around the world, especially in Russia and Ukraine.

This virus is called "want to cry" and belongs to a blackmail virus. Computer users will receive an e-mail, usually disguised as a job invitation, delivery list, security warning, etc. , but once you open the relevant link, it will lead to computer fraud.

The ransomware will immediately encrypt the files stored in the computer, and users should not open these files. A warning message pops up on the computer screen: "You can try to get the file back, but don't waste time!" "

Then, the computer prompts the user to pay a ransom of $300 within the prescribed time limit, and the computer data can be restored; Every few hours of delay, the ransom amount will rise a little, up to $600.

According to Kurt baumgartner, a researcher at Kaspersky Lab in Russia, "most users who pay ransom withdraw $300 in the first few hours."

Many countries suffer greatly from it.

Rich Badger, head of Splunk Network Security Company, said, "This is one of the biggest ransomware attacks in the world so far."

Kaspersky's global research and analysis team said that Russian attacks far exceeded other victims, while Chinese mainland and Taiwan Province provinces also suffered more attacks.

After the virus invaded the service system of British public health system and national health care system on June 5438+02, many hospitals had to stop receiving patients, and some medical services such as ambulances were also affected. British Prime Minister David theresa may said on the same day that the National Cyber Security Center is cooperating with the National Health Service to deal with the crisis.

Telecom companies in Spain, Portugal, Argentina and other countries, as well as FedEx companies in the United States are all affected by this virus.

The Russian Ministry of Internal Affairs and the megaphone telecommunications company suffered the same virus attack, and it is believed that the scale of virus transmission has been mastered. The Russian Interfax news agency quoted Irina Volcker, a spokesperson for the Russian Ministry of Internal Affairs, as saying that about 1 1,000 computers in the Russian Ministry of Internal Affairs were polluted, which was less than 1% of the total number of computers in the department. Another source said that Russian government documents were not leaked in this attack.

America has been criticized.

At present, no hacker organization has claimed the attack. However, what the insiders say is that this "crying" virus originated from the virus database of the National Security Bureau of the United States. Last month, the National Security Agency suffered a leak and its virus arsenal was exposed online.

Many network security experts accuse the United States of spending huge sums of money to develop hacking tools instead of self-defense mechanisms, which makes the global network environment "more insecure".

Reuters reported that 90% of the expenses of American network projects were spent on developing hacker attack weapons, such as hacking into "enemy" computer networks, listening to the public, and trying to paralyze or crash the infrastructure.

After learning of the latest attack, edward snowden, the exposer of the "Prism" monitoring project and a former employee of the US defense contractor, tweeted on 12 that "despite repeated warnings, [the US National Security Bureau] has developed a dangerous attack tool. Today, we have seen the price ... the lives of patients in hospitals are threatened. "

In the face of outside criticism, the US National Security Bureau has not yet responded. The computer emergency team of the US Department of Homeland Security said that it is paying close attention to this hacker attack that has spread to the whole world.