SaveSave story

U.S. intel firm finds Chinese traces in ransomware attack notes

Mark Schiefelbein / AP

U.S. intelligence firm Flashpoint claims with "high confidence" that the notes accompanying the ransomware attack were written by Chinese-speaking hackers from southern China, Hong Kong, Taiwan, or Singapore. The notes, sent out in 28 different languages, warned users they couldn't access their data unless they paid a ransom in an attack this month that hit 150 countries, called the WannaCry attack.

Why this matters: The group that launched the attack is suspected to be a North Korean hacker group. This either adds a hitch to that suspicion or means the North Koreans have gone to great lengths to cast doubt on their identity by forging Korean into Chinese.