Jan 12, 2019

Tribune ransomware attack was reportedly criminals, not nations

Computer hacked by a virus. Photo: Donat Sorokin\TASS via Getty Images

McAfee assesses that the ransomware attacks that hobbled the distribution of the Los Angeles Times and other Tribune papers in late December were carried out by a criminal group, not a nation, as the Times itself had reported.

The intrigue: Attackers used Ryuk ransomware, a variant of Hermes ransomware that has been used by the North Korean Kim Jong-un regime to funnel cash to the nation. But McAfee notes that Ryuk and Hermes have each been offered commercially on a Russian hacker forum, which appears to be the source of recent infections. That doesn't mean it's impossible for North Korea to be behind the Tribune attacks, but Ryuk's use alone doesn't strongly suggest the attack was from North Korea.

Go deeper

The Americans who can't hide from coronavirus

Illustration: Eniola Odetunde/Axios

The stock markets are in bad shape, but for the millions of Americans who aren’t invested in stocks, coronavirus is presenting a far more imminent concern.

Why it matters: Quarantines usually work with at least 90% participation, but many Americans lack the flexibility to work remotely, take a sick day or absorb having schools close.

Go deeperArrow17 mins ago - Health

Wall Street notches worst week for stocks since 2008

Traders work on the floor of the New York Stock Exchange. Photo: Scott Heins/Getty Images

Stocks closed down about 1% on Friday, ending the worst week for Wall Street since the financial crisis.

Why it matters: The stretch of declines came after a spike in coronavirus cases around the world earlier this week. The steep losses prompted questions about the fate of the record-long economic expansion, as well as a rare statement from the Federal Reserve.

Go deeper: The growing coronavirus recession threat