24 May 2017
AsiaNews.it Twitter AsiaNews.it Facebook
Geographic areas

  • > Africa
  • > Central Asia
  • > Europe
  • > Middle East
  • > Nord America
  • > North Asia
  • > South Asia
  • > South East Asia
  • > South West Asia
  • > Sud America
  • > East Asia

  • » 05/16/2017, 10.09


    Beijing, schools and government offices hit by Ransomware ... of North Korean origin (maybe)

    Over 10,000 schools and colleges hit. License distribution and credit card payment at service stations blocked. Suspicions settle on Lazarus group who work in China are under North Korea.

    Beijing (AsiaNews / Agencies) - China is among the countries most affected by the Ransomware cyberattack, suspected of having a North Korean origin. About 30,000 IP addresses were hit by the virus that "seized" all the files on a computer and demanded a ransom of $ 300 to release them.

    The attack hit at least 10,000 school institutions, especially universities. Among them, the South West University, which suffered paralysis of the internal network and payment system with student cards.

    The government offices worst affected include the department for motor vehicles, housing loans, etc. Many offices have had to suspend services and update their systems, while driving licenses were suspended in many cities.

    Even China National Petroleum Corp's service stations were hit the putting the credit card and online payment system out of use. The company said that at least 80% of its stations have now resumed normal activities.

    China is the most affected because it is the nation with the greatest number of Internet users - about 700 million - and perhaps - as experts say - because computers are not updated and suffer from poor maintenance.

    But there is another reason: China may be the most affected because it was the first to be in the hacker's sights. Security experts point out that the date marked on the original Ransomware code is UTC + 9, that is, the Beijing time zone, and the text demanding a ransom, while in English, has a part written in Chinese.

    Suspects focus on a group called "Lazarus," responsible for hacking Sony in 2014 and a Bangladeshi bank in 2016. Many think that the Lazarus group is based in China but works in  for North Korea.

    Other security companies are doubtful: the link with North Korea is not so obvious, nor the one to Lazarus of the latter attack. It is also possible that hackers have simply copied the virus from previous Lazarus attacks.

    The virus exploits some vulnerabilities in the Microsoft Windows program. Last March, the company issued a corrective update, but most likely not everyone updated their system. Yesterday Microsoft also accused the national security agencies of being superficial and asked governments to point out computer vulnerabilities to sellers rather than storing them, selling them, or exploiting them for possible cyber-wars. 

    e-mail this to a friend Printable version

    See also

    15/05/2017 11:19:00 ASIA
    Ransomware cyberattack due to governments carelessness

    Microsoft warns national security agencies not to "store up" viruses – to only let them leak- but to make them known. South Korea, almost untouched. Russia, Britain, Germany, France hit as well as universities in China, Italy and Greece.

    Sony Pictures pulls 'The Interview' following threats from pro-North Korea hackers
    The comedy mocks North Korean dictator Kim Jong-un by concocting a CIA plot against him. Hackers steal sensitive company emails, posts their content, and warn viewers they might be victims of another 9/11.

    03/04/2017 11:35:00 US-CHINA-NORTH KOREA
    Trump ready to 'solve the North Korea problem' even without China

    Growing threats while approaching the meeting between Donald Trump and Xi Jinping in Florida. Beijing fears a collapse of the regime and a flood of refugees. But according to some it is "using" the threat of Pyongyang to hold off Seoul, Tokyo and Washington. The problem of US foreign debt to China.

    08/03/2017 10:24:00 CHINA - KOREA
    Wang Yi: No to Thaad anti-missile system

    The Chinese foreign minister calls on Pyongyang to stop its nuclear program and US-Seoul to cancel the military exercises. "Two accelerating trains, coming toward each other with neither side willing to give way". Beijing fears Thaad radar could be used for espionage. Boycott of Korean goods. Korean Church against Thaad because it is dragging the peninsula into a "new Cold War".

    09/03/2010 CHINA – NORTH KOREA
    Pyongyang leases port on the Sea of Japan to Beijing
    China now has direct access to the Sea of Japan for the first time since the 19th century. Goods from hitherto landlocked Jilin and Heilongjiang will be able to move through the port of Rajin. Trade with Japan and South Korea will be enhanced. North Korea is showing signs it is open for international cooperation, experts say.

    Editor's choices

    Pope: together with the faithful in China on 24 May to celebrate Our Lady of Sheshan

    During the Regina Caeli, Pope Francis speaks about the World Day of Prayer for the Church in China, instituted by Benedict XVI. Chinese Catholics must make a “personal contribution to communion among believers and to harmony in the whole society." AsiaNews Symposium on the Church in China is set for this week. Francis appeals for peace in the Central African Republic, and for loving “one another following the example of the Lord”. For him, “Sometimes conflicts, pride, envy, and divisions leave a blotch on the beautiful face of the Church.” Five new cardinals will be named, including a bishop from Laos.

    May 24, 2017: 'China, the Cross is Red', AsiaNews Symposium

    Bernardo Cervellera

    The event will be held to mark the World Day of Prayer for the Church in China. A title with many meanings: the Cross is red from the blood of the martyrs; From attempts to suffocate the faith with state control; Bceause of the contribution of hope that Christianity gives to a population tired of materialism and consumerism that is seeking new moral criteria. The theme is also about the great and unexpected religious rebirth in the country. Guests to include: Card. Pietro Parolin, Msgr. Savio Hon, the sociologist of religions Richard Madsen, the testimonies of Chinese priests and laity.


    AsiaNews monthly magazine (in Italian) is free.


    News feed

    Canale RSScanale RSS 

    Add to Google


    IRAN 2016 Banner

    2003 © All rights reserved - AsiaNews C.F. e P.Iva: 00889190153 - GLACOM®