The young cyber security researcher -- known only by his Twitter handle @MalwareTechBlog -- who was able to slow down the spread of WannaCry says he found a weakness in the malware by chance. Photograph:( Reuters )
Some code in an earlier version of the WannaCry ransomware had also appeared in programs used by the Lazarus Group, allegedly run by North Korea.
Major cyber security firms Symantec and Kaspersky said on Monday they were looking into clues that may connect the global "ransomware" attack known as WannaCry with programs previously attributed to North Korea.
The two companies said some code in an earlier version of the WannaCry ransomware, which has encrypted data on hundreds of thousands of computers since Friday, had also appeared in programs used by the Lazarus Group, which researchers from many companies said is run by North Korea.
The ransomware demanded users pay money to regain control of their machines,
The North Korean mission to the United Nations was not immediately available for comment.