Chinese state media says US should take some blame for cyber attack

The Wanna Cry ransomware has a new face.                  James Martin  CNET

The Wanna Cry ransomware has a new face. James Martin CNET

Microsoft also issued a security patch for older Windows operating systems that are no longer supported: Windows Server 2003 SP2 x64, Windows Server 2003 SP2 x86, Windows XP SP2 x64, Windows XP SP3 x86, Windows XP Embedded SP3 x86, Windows 8 x86 and Windows 8 x64 directly from Microsoft. China is preparing to enforce a wide-reaching cyber security law that US business groups say will threaten the operations of foreign firms in the country with strict local data storage laws and stringent surveillance requirements.

"This attack provides yet another example of why the stockpiling of vulnerabilities by governments is such a problem", Microsoft President and Chief Legal Officer Brad Smith said in a blog post on Sunday, comparing the recent leaks of NSA and Central Intelligence Agency hacking tools to, in the real world, the theft of cruise missiles.

Calling for a "Digital Geneva Convention", Microsoft's Smith said the widespread damage caused by the ransomware shows that governments need to treat cyber weapons the same way they treat conventional weapons.

"The NCSC has been working around round the clock with numerous partners, including the National Crime Agency, NHS Digital UK and worldwide partners, to respond to this cyber attack".

"Who's culpable are the criminals that distributed it and the criminals that weaponized it", Bossert said. And Washington had no trustworthy proofs to sustain prohibitions on Chinese tech companies in the United States of America after the WannaCry ransomware attack. His point to governments is this: report vulnerabilities to vendors rather than exploit them.

An analysis by The Register revealed that the patches weren't new, though, and had been around since February 2017.

The government, on the other hand, has a different story to narrate.

"Whether or not you think the US government should be spending a fortune developing such cyber-weapons, surely it is obvious that the weapons they develop should be properly secured", said Phillip Hallam-Baker, principal scientist for New Jersey-based cybersecurity firm Comodo, in an emailed statement.

"T$3 his attack demonstrates the degree to which cybersecurity has become a shared responsibility between tech companies and customers", Smith said in his blog post. In other words, paying may not guarantee you can again access your files.

Notícias recomendadas

We are pleased to provide this opportunity to share information, experiences and observations about what's in the news.
Some of the comments may be reprinted elsewhere in the site or in the newspaper.
Thank you for taking the time to offer your thoughts.