Darknet Diaries 73: WannaCry
68 snips
Sep 1, 2020 In this engaging discussion, Matt Suiche, founder of Comae Technology and an expert in incident response, dives deep into the infamous WannaCry ransomware attack of May 2017. He shares firsthand accounts from the UK’s NHS, revealing the chaos as medical staff scrambled to maintain patient care without their usual tech aids. Unpacking the attack's global disruption, Matt highlights the cybersecurity community's rapid response and the pivotal discovery of a 'kill switch' that halted the ransomware, tying it to larger threats from North Korea's notorious Lazarus Group.
AI Snips
Chapters
Transcript
Episode notes
WannaCry and the NHS
- WannaCry ransomware attack hit the UK's National Health Service (NHS) in May 2017, causing major disruption.
- Dr. Tony Bleatman, an emergency physician, described the scene and how the NHS adapted by using manual processes.
Security Researchers' Race
- The WannaCry attack drew attention from security researchers worldwide, sparking a race to understand the malware.
- This created an exciting opportunity for researchers to find key vulnerabilities.
Shadow Brokers and Matt Suiche
- The Shadow Brokers mentioned Matt Suiche in a tweet, causing him amusement rather than concern.
- Matt believed the Shadow Brokers were likely U.S.-based, finding their communication style entertaining.