Symantec Official Blog What you need to know about the WannaCry Ransomware The WannaCry ransomware struck across the globe in May 2017. Learn how this ransomware attack spread and how to protect your network from similar attacks. By : Symantec Security Response SYMANTEC EMPLOYEE Created 15 May 2017 0 Comments : 简体中文 , 繁體中文 , 日本語 19 1973 UPDATE: May 15, 2017 23:24:21 GMT: Symantec has uncovered two possible links that loosely tie the WannaCry ransomware attack and the Lazarus group: Co-occurrence of known Lazarus tools and WannaCry ransomware: Symantec identified the presence of tools exclusively used by Lazarus on machines also infected with earlier versions of WannaCry. These earlier variants of WannaCry did not have the ability to spread via SMB. The Lazarus tools could potentially have been used as method of propagating WannaCry, but this is unconfirmed. Shared code : As tweeted by Google’s Neel Mehta, there is some shared