时间:2025-04-04 05:04:16 来源:网络整理编辑:探索
When it comes to online currency, lulz just might outvalue Bitcoin. A unknown group of hackers is wo
When it comes to online currency, lulz just might outvalue Bitcoin.
A unknown group of hackers is working behind the scenes to restart the ransomware WannaCry, and one security expert believes the culprits this time around aren't who you think.
And neither is their motivation.
SEE ALSO:It won't be easy for WannaCry hackers to get their cashContrary to what you might expect, it appears not to be the initial group responsible for WannaCry now working to startle the ransomware monster awake from its slumber. Rather, we may have some internet randos to thank.
Why? The leading theory, proposed by security researcher Marcus Hutchins, suggests it's all about shits and giggles.
WannaCry rushed onto the international scene on May 12, infecting and encrypting hundreds of thousands of computer systems running unpatched Windows operating systems. The ransomware demanded that victims pay around $300 in the cryptocurrency Bitcoin to their attackers if they ever wanted to see their files again.
"Yeah, it's most likely scriptkiddies doing it for lulz."
Some paid up, but computers stayed encrypted.
And while the damage was bad — England's National Health Service was hit particularly hard — it could have been a lot worse. The ransomware -- which utilized a stolen NSA exploit called EternalBlue -- stopped spreading when Hutchins registered a mysterious domain he discovered in the malware code and sinkholed it.
Hutchins explained the process on his blog, noting that "a sinkhole is a server designed to capture malicious traffic and prevent control of infected computers by the criminals who infected them."
The ransomware, it seems, was designed to contact Hutchins' domain before it spread to the next victim. Hutchins' registration of that domain created a kind of kill switch — effectively telling WannaCry to stop spreading.
As long as that domain, and one other discovered and sinkholed by a different researcher, remain up and active the ransomware won't spread. Which brings us back to our lulz-pirates.
Hutchins has observed an intentional distributed denial of service attack aimed at his domain with the apparent goal of knocking it offline. Wiredreports that the traffic appears to be coming courtesy of the Mirai botnet — the same botnet, comprised of IoT devices like wireless security cameras, that brought down parts of the internet in the fall of 2016.
Tweet may have been deleted
Why would anyone do this? Could the initial WannaCry developers simply want more computers infected with the hope of making more money? Probably not.
As Hutchins confirmed via Twitter direct message, the initial attackers can't appear to even keep up with the volume of decryption requests they've already received.
"[The] decryption system is stupid and completely unscalable," he observed.
In other words, infecting more computers won't exactly translate to more Bitcoin in their wallets. That leaves another possibility: someone just looking to mess with people.
"Yeah, it's most likely scriptkiddies doing it for lulz," Hutchins further speculated — using a term that refers to relatively low-skilled hackers.
So there you have it. If someone manages to knock Hutchins' sinkhole offline, allowing WannaCry to spread further in the process, you'll likely have some random prankster with a messed up sense of humor to thank.
But don't stress about it too much. "The DDoS is unlikely to be successful," reassures Hutchins.
Phew. Now if only Hutchins could solve our other internet security problems.
TopicsCybersecurity
Sound the alarms: Simone Biles finally met Zac Efron2025-04-04 04:55
尤文VS米蘭前瞻 :斑馬軍爭聯賽首勝 紅黑傷兵滿營2025-04-04 04:53
馬內迎紅軍生涯百球裏程碑 單支球隊九連殺創曆史2025-04-04 04:09
孫繼海:新疆男足銀牌隻是開始 相信未來有人為國征戰2025-04-04 04:01
Daughter gives her 1002025-04-04 03:53
官方 :保利尼奧與吉達國民解約 加盟僅2個月嫌球隊太業餘2025-04-04 03:41
孫繼海:新疆男足銀牌隻是開始 相信未來有人為國征戰2025-04-04 03:40
曝恒大隊第三次推遲集合 媒體人 :廣州體育局無能力托管2025-04-04 03:30
Photos show the Blue Cut fire blazing a path of destruction in California2025-04-04 02:47
皇馬前瞻 :客戰瓦倫西亞力爭登頂 近9次做客僅1勝2025-04-04 02:33
Daughter gives her 1002025-04-04 05:02
萊茵克爾質疑裁判對沃克的判罰:VAR取消點球很奇怪2025-04-04 04:56
傅明將繼續執法12強賽第三輪 馬寧轉場亞冠淘汰賽2025-04-04 04:45
巴黎前瞻 :梅西王子公園迎首秀 姆巴佩大概率缺席2025-04-04 04:17
You will love/hate Cards Against Humanity's new fortune cookies2025-04-04 04:17
尤文本季領先情況下丟7分 阿萊格裏排兵布陣遭質疑2025-04-04 03:33
孫繼海:新疆男足銀牌隻是開始 相信未來有人為國征戰2025-04-04 03:26
曝保利尼奧家庭遭遇橫禍被迫解約 將重回科林蒂安2025-04-04 03:20
You will love/hate Cards Against Humanity's new fortune cookies2025-04-04 03:17
女足奧運隊被造謠保送進決賽? 記者:可以去看是不是真槍實彈2025-04-04 02:28