in the wake of the wannacry ransomware attack. today is the necessary part of the conversation the federal government should have to look for ways to improve the cyber security prosture. while wannacry failed to -- rather than seeing this outcome as cyber security defenses, we must then increase this to better identify constantly evolving cyber security threats. this is particularly true since many cyber experts predict that we'll experience an attack similar to wannacry that is more sophisticated in nature carrying with it an ever greater possibility of wider spread destruction. congress should not allow cyber security to be ignored across government agencies. and i'm proud of the work the committee has accomplished to acquire the cyber security prosture. during the last congress, the committee conducted investigations into the federal deposit insurance corporation, the internal revenue service and the office of personnel management. as well as passed key legislation with providing the government with the tools it needs to streng

wannacry communicated out to. and there were very, very close similarities to other kinds of attacks that we have seen. specifically attacks that we attribute to a group called lazarus. and these attacks, malware, the reuse of strings in that malware, the reuse of command and control infrastructure out on the internet by that malware led our researchers to believe this is strongly linked to the lazarus group. now similar to my colleague on the end, we're not the intelligence community either. and i agree with those comments that attribution is often difficult. but what we've seen leads us to believe it was a part of this lazarus group. separately the f.b.i. has linked the lazarus group with north korea. and i think chairman lahood, the article that you're referring to from yesterday is another potential evidence point on that as well from the n.s.a. mr. lahood: thank you. dr. neino, we talked about the kill switch and how that stopped the attack but we also referenced the fact that last week a hospital on the east

but also where wannacry communicated out to. and there were very, very close similarities to other kinds of attacks that we've seen specifically attacks that we ibute -- we attribute to lazarus. the reuse of command and control infrastructure out on the internet by that malware led our researches to believe that this is strongly linked to the lazarus group. similar to my colleague at the end, we're not the intelligence community either. and i agree with those comments that attribution is often difficult. but what we've seen leads us to believe there was a part of this lazarus group and separately the f.b.i. has linked the lazarus group with north korea. and i think chairman lahood's article that you're referring to from yesterday is another from the arning n.s.a. >> dr. nino, we talked about the kill switch and how that stopped the attack. but we referenced the -- that a hospital and a high school were subject the attack. can you explain -- if the kill switch was implemented correctly how the hackers were able to perpetuate the

this virus is similar to wannacry. ransom ware infects and locks a computer and demands $300 in bit coin to open it up. microsoft did release a security patch in march but the virus targets anyone that hasn't updated their system. we don't know yet the source of the attack. while some experts say the virus spread from software in ukraine, but we do know the virus uses hacking tools believed to be stolen from the nsa and they are investigating. you shouldn't pay the ransom if you're affected. instead, they should back up data now before it's too late. >> don't close out that update software thing. >>> ahead, we're getting new insight into the why the white house warned syria not to launch another chemical attack. there's hope the russians can stand in assad's way. more from the pentagon, next. "how to win at business." step one: point decisively with the arm of your glasses. abracadabra. the stage is yours. step two: choose la quinta. the only hotel where you can redeem loyalty points for a free night-instantly and win

that's about 2/3 less than we saw with wannacry.mily: what more do we know about where this attack originated? caroline: the epicenter where it kicked off seemed to have been the ukraine. how? still being debated. many people say, like the wannacry virus we saw last month, this is playing on a weakness in the microsoft operating system. that seems to be how it has spread so. ultimately -- so virulently across the world. it seems to have started in the ukraine tax accounting software company. i might add that this particular company has refuted that. they said they had no responsibility for spreading this particular virus, but notable cyber security experts have said they think this is where initially it was first rooted and then it spread through the windows update being disguised as a windows update. it leached out from the ukraine. what's interesting here, when you look at the payments being made, why are few payments being made? some security experts are saying this is rather rudimentary cyber hacking. this is not a very efficien

you'll remember that wannacry virus that attack -- affected hundreds of thousands of computers in morehan 150 countries. joining us in london is caroline hyde. what do know right now about the spread? caroline: quite amazing, from chocolate, toil, to central banks being affected by this. at least 80 countries have been hit in ukraine and russia. this seems to be the epicenter of where this all started, and it started to leach out into europe and the united states. mentioning one of the companies hit there, and mark -- merck. at least 2000 networks have been hit users have been hit. , it is very similar to the wannacry ransomware. prevalent, that is what some 200,000 computers affected. very similarly, the computer you find is shut down, and suddenly the demand for $300 worth of the currency if you want to be able to access your computer once again. interpol is involved. they are investigating, so clearly they are trying to lock down the spread. once again, it seems to be something exploiting the weakness of the microsoft operating system. emily: hang on a second. another big story out

it's exploiting a similar loophole to the wannacry virus, which caused havoc last month.fine by the european union. the eu says google's search engine gives an unfair advantage to its own shopping websites. and this story is trending on bbc.com tennis star serena williams has posed naked for the cover of this month's vanity fair magazine. she was six months pregnant when this picture was taken by celebrity photgrapher annie liebovitz. she's said she plans to be back on court by january. that's all from me now. stay with bbc world news.

-- with wannacry they now are affecting entire networks.t's what we started to see with wannacry, and we are seeing the next step of the evolution with petya. emily: what should companies be doing to protect themselves? isst: the number one thing make sure they are catching the vulnerabilities they have been alerted to in their environments. second they may need to be doing is making sure they are updating all of their cybersecurity defenses. make sure they have got the latest versions of the cybersecurity software working, adequate monitoring and alerting capabilities in their organization, make sure they got users on the alert for these kinds of attacks, as well. a really good, important source of intelligence when these kinds of attacks happen. emily: why are rain somewhere attacks becoming so popular among hackers? guest: we believe it is a few reasons. number one, there is an case for then this red zone where attackers to monetize the attack in different ways that we -- different ways that we have traditionally seen when it is just ste

this virus is similar to the wannacry ransom ware that hit 150 companies.ks a computer and then it demands $300 in bit coins to open it up. microsoft released a security patch in march but the virus targets anyone who has not updated their system. >>> cyber security and law enforcement officials are investigating. we're live from london where several companies were hit. good morning to you. what do we know about who might be behind this attack? >> reporter: that's the big question everybody is trying to answer this morning and this is a month after after the wannacry attack that paralyzed about 200,000 computers in 150 countries and we still don't know who was behind that. people suspect north korea but there's been no confirmation of that. early yesterday when this started in ukraine, perhaps russia had a hand in this, but then we saw the big oil and gas company in russia and some state lenders saying they had been infiltrated again, so that again doesn't lend credence to the fear that russia could be behind this attack. it could be the tools that were lea

of new york times: "whatever this new ransomware is called they say it will more damaging than #wannacryne wakefield about how big this seems to be. jane wakefield says how fast and how quickly this is expanding. initially we were getting reports from the ukraine, things like the airport, the metro system. then we had a russian oil company and gradually through the course of the afternoon added to the list was spanish companies, danish companies, companies from the netherlands. it seems contained to europe but as i left my desk there was an unconfirmed story that a us hospital had been affected. it looks like a global problem. it suggests some of the loopholes opened the last time there was this major ransomware attack had not been shut. yes, security experts are now analysing the code and it seems they are using the same windows exploit that was used with wannacry, the ransomware attack a few months ago. early on people were putting it down to a piece of ransomware that‘s readily available to hackers on forums called petya. there is now some debate about whether it is petya. there is al

we just had the wannacry attack. and many lessons were there to be learnt. many of you not have heeded them. in the us, several big firms were affected, and as you said, it is spreading across the world in a dramatic way. i am joined by andre mcgregor. he is a security expert. what can you tell us about this attack? the world is experiencing a global ransomware attack that has crippled companies across several industries. you look at mersk, they are reduced to working on pen and paper to conduct their business. so a crippling attack. you used to work for the fbi. they will be looking at us. what have you been hearing about the potential impact of this attack? first off, with the fbi, they are looking to find the organisation thatis looking to find the organisation that is doing this. as far as the impact? we're looking at the fact that companies need to get going again. the way to do it is through patching. microsoft rated a patch, pushing it out the computers that are affected, and are looking for additional services or files that can additional services or

oss a cyber attack is causing chaos across the world and experts say it is more sophisticated than wannacryvenezuela's supreme court attacked bya venezuela's supreme court attacked by a helicopter. setback for donald trump. five republicans have said they will replace the republican health bill meaning it would not have a majority. time now for world business report. another big cyber hack brings yet more disruption to business around the world. what more can they to do keep themselves safe? rebooting the sale. toshiba announces another delay in raising the cash it badly needs from it's memory chip unit. welcome to world business report. i'm rachel horne. another huge cyber attack is affecting businesses and other organisations across the world. those affected include banks, retailers, energy firms and transport networks. it means many companies can't access their computer systems and for some that means it's all but impossible to get any work done. the virus was first detected in ukraine on tuesday but has quickly spread across the planet. according to russia based kaspersky labs more than

didn't patch up the holes wannacry would have come through, because it had been resolved. "it isn't going to happen to me" attitude. and it is a more sophisticated virus every time. the fear it is, no matter what is done there will be a new virus which will find chinks in the armour. one other point on that is the message from the americans and homeland security said, don't pay the ransom. there is no guarantee. clearly people pay the ransom and presumably they get something back otherwise no one would pay the ransom any more. it is a desperate dilemma. it is a very tricky situation. i agree. a desperate dilemma. it is a very tricky situation. iagree. let's move on to this google story, this trip when 4 billion euros —— this 2.4 billion euro fine. tell us what happened. we will have this tremendous power and they were placing their own shopping comparison site very highly. if consumers did a google search, there's wood, first and others would show up on the fourth page. as we know, 95% of clicks are on the first page. it is really important. such a huge disparity and put i

it is certainly more sophisticated than the attack we saw a month ago, the wannacry at tack.companies had systems which are up to date this would not be an issue for them. there are patches available which would have prevented this attack harming companies. while wannacry should have been a huge wake—up call, the companies around the world, not all heeded that morning and did something about it. while it isa and did something about it. while it is a sophisticated attack, not enough lessons were learnt previously. 2008 is ago, 96 men, women and children —— 96 years ago, liverpool fans were caught in a crush when their team were playing. today, families of victims will gather to hear if any individuals or organisations will be charged for their deaths. # walk on # walk on, with hope in your heart... it was a moment of history, the inquest‘s finding last year that 96 liverpool fans were unlawfully killed at hillsborough. for theirfamilies, it was justice, but their legal journey did not end there. steve kelly lost his brother michael in the disaster. he's spent the 28 years sinc

it appears to be similar to the wannacry ransomware also last month -- assault last month.et's get to our global tech editor. how bad is this attack? we have heard similarities to wannacry, but we are hearing it could be worse than last month. >> we are still hearing from different parts of the world that are just waking up. we just found out about some grain ports in latin america that were also affected. you have seen this spread from ukraine, russia, across europe and into the united states and latin america. we will certainly be on the lookout for any evidence of the impact in your region. in terms of numbers, not quite thatg as wanna cry -- reached hundreds of thousands. 2000 is the estimate we have heard so far. in some ways this is more sophisticated. it does spread like wannacry. it attacks vulnerabilities in the microsoft windows operating system. we have not found what is called a kill switch. lingos the tool in cyber that would allow you to easily shut this down. again, your best defense in a case like this is to make sure you are upgrading to the latest version

just over one month since that huge wannacry attack and here we go again.ms to target the ukraine, part of the code specifically goes after ukrainian software. however, such is the indiscriminate nature of ra nsomwa re attacks, this has now spread all over the world. here, in the us, we have seen a major pharmaceutical company have their it systems affected, and also dla piper, a major law firm, has been caught up in the attack. security researchers are trying to see if there are any clues as to where this has come from. it is a new strain of ransomware but there are similarities between this and previous attacks. companies that took sufficient measures to upgrade their system should have been protected, but as we've seen in the past, not all firms were diligent enough to make sure that happen. —— sure that's happened. attackers are only asking for $300 as a ransom payment and from our analysis not many people seem to have paid up, it seems increasingly that these attacks aren't about making money. senate republicans in the us have delayed a vote on their p

with petya versus wannacry, is that people are now understanding that this is going to be an ongoingorld. i mean, in this instance, petya was targetted at pcs but what people are now understanding is that, at the end of the day, ransomware and this type of security threat is going to be here to stay and it is probable not going be too long until we see another variation using similar code that tries to use ransomware as a method to making money for cyber—criminals. businesses, of course, continue to plan and continue to have methods in place to find a solution should this happen, but for individuals, what really needs to be done today is the same as every day — it is up to our behaviour that we do put some things in place to ensure that, should a worm like this, should ransomeware like this hit our machine, we have taken steps to stop it causing us harm. and really, at the end of the day, it's quite simple, if you're using windows 10, your machine is being patched on a daily or multiday basis, depending on what threats are out there, so continue that allow that to happen. but you sho

with wannacry and with this, you talk about the soft underbelly of computer systems, but actually aree are becoming more aware of what they need to do to protect themselves? i think they are, but obviously different industries have different levels of maturity. the financial sector tends to have good centralised security, good virtualisation computers, good patch updates, but obviously something, an area like the nhs, it has weighed and disparate network that will have old systems, so i think there needs to be large—scale investment —— it has wide and disparate network. i think there needs to be large—scale investment in our it infrastructure to stop this from happening. from edinburgh university, professor bill buchanan, thank you very much. time to catch up with the weather. another wash—out for many of us. yesterday it was pouring across the south—east and east and today the rain is moving further northwards and you can see its journey in the last 18 hours or so, most of it falling across eastern areas overnight. more than a month's falling across eastern areas overnight. more than

in a similar fashion to the wannacry virus we saw spreading so rapidly last month. caused huge problem but it is the same idea, ransomware? this is a bit of malware that gets into a computer, it could be by a spam e—mail, there are all kinds of ways that these can get into systems and when they do they freeze it and send you a message saying, if you want to get your systems back you have to pay a ransom in bitcoin, a virtual currency. on the basis that the last attack was eventually brought to a halt, somewhere or something has upgraded the attack and this is a new one? some reports are suggesting, and obviously that this is an early stage, that this is older software than wannacry. quite a few security expert and the swiss government have said it could be a variant of a bit of ransom ware called petya, we don't know if that is the case yet but there are a lot about and it shows that if a criminal gang ora about and it shows that if a criminal gang or a state—sponsored group get hold of this malware they can doa group get hold of this malware they can do a lot of da

the researchers are seeing big differences from wannacry. this is a more complicated attack it is stealing user names and log-in details in order to gain access to secure files and instore more of this malware across the network it's a different piece of work here security companies are still scrambling about how to fix it and whether there is a fix >> arjun, thank you very much for that any big plans for your birthday? i har you'ear you're 21 again? >> there's going to be a party >> am i invited? >> absolutely. >> appreciate it before we wrap up the show, futures in the u.s., a mixed picture. the s&p 500 off fractionally the dow jones set to add 33 points the nasdaq, which saw a 1.6% decline in yesterday's trading session, the biggest drop in roughly a month, that is event off by another 27 points quick look at the heat map in europe stoxx 600 is off 0.6%. tech is really underperforming today given the tech weakness in the u.s. and the ransomeware attack that's it for today's show "worldwide exchange" is up next. we'll see you same time sam

in both the wannacry case and in this case it seems that actually the damage was contained.at it is not a question of if but when the world faces a major cyber attack that is not contained and where the damage is substantially greater than either of these attacks? i do stand by that because as i said the ransomware episodes generally speaking are ways of extorting money for criminal purposes. attacks carried out by terrorists or where there is a geopolitical issue, for example the shutdown of ukrainian power last christmas and the christmas before by the russians, those are much more damaging because the objective is not to extort money, the objective is actually to inflict harm. and we have seen examples of that, in estonia in 2007, in georgia in 2008. we could see more of that to come. how concerned are you about the prospect that there will be a major attack? by a national or a non—state player? i think as with many people in the intelligence field, i believe this is probably the most serious threat we currently face. first of all the terrorists, although they have not ye

whether this represents elevated strike from the wannacry just a few weeks ago. >> yeah, this is seriousiness you know, for people who don't know exactly how these attacks work, they typically work through attachments and phishing, which means you're getting an attachment from a friend, log in, oh, my god, i'm sharing photos our i have an important business proposal. you log into a website that is not microsoft or google, you give credentials and the machine gets encrypted they lock up your data or delete it then demand bitcoin or payment anonymously in order to release it all this could be avoided with two factor authentication, people not opening attachments and updating your software so it has to happen, corporate america has to not allow people to use outdated software this was a patch a month ago done by microsoft. >> it strikes me as we are looking at the ten-year anniversary of the iphone. and this is hitting pcs. use of the cloud and mobile devices kind of gives you another line of productivity away from this sort of attack, does it not? >> yeah, it's a great point. why is this h

this virus is very similar to an attack named "wannacry" that hit 300,000 computers last month. >>> acase that could reshape the san francisco waterfront and beyond. a. >>> judge will hear arguments from the california state lands commission seeking to take control of the waterfront. >>> and in just a few hours, state assembly member phil ting will announce legislation boosting electric vehicle sales. it's all in an effort to fight climate change. >>> and we are starting to see some more slowdowns drivers going towards the richmond/san rafael bridge. it's 10 minutes from the parkway to 101. in the red under 30 minutes from hayward to foster city. 880 starting to get sluggish in that northbound direction. travel time 20 minutes from 238209 maze and speaking of the maze, there is a look at the bay bridge toll plaza. the backup continues into the city. eastshore freeway the hot spot 44 minutes from the carquinez bridge to the maze. roberta? >>> the reason why we do call it "june gloom," that is it. right there. only partial bay clearing today. no sunshine along the coast. but plenty of s

new developments in the investigation into the wannacry computer worm.. the national security agency believes the north korean government is responsible. that's what u.s. intelligence officials tell "the washington post." they the assessment is not conclusive, but evidence points to pyongyang. the worm affected more than 300-thousand people in about 150 countries last month. this was the first computer worm to be paired with ransomware. victims were told they had to pay a ransom to restore access. the family of otto warmbier will hold a press conference today to update the public on his health status. he's the university of virginia student who was imprisoned in north korea for over a year. warmbier was released to but is in a coma. right now he remains in a cincinatti hospital where he's receiving medical attention. covering metro.. safetrack surge 16 starts saturday. this will be the final safetrack surge. and it will run through june 25th. surge 16 will impact the red line. buses will replace trains between shady grove and twinbrook. the shady grove an

and if we -- then the wannacry virus, the wannacry outbreak was a strange one. microsoft had released a patch just two months before and it was enough time to have the systems updated. why it had such a big impact i think was caused by two facts. first, by the fact that it was widely crucial virus itself because it's encrypted, the code hardware. and the second because of the media effect. the media made it more bigger -- or bigger than it should be. >> i want to ask you, too, about russian hacking, which, of course, being a russian company, i'm sure you're briefed about this a lot. given all the allegations, despite deniales from vladimir putin that there have been russian hackers involved with meddling from the elections from the united states to france? >> well, let me start with the election, if i may. i don't believe that the modern technologists are so great that they are able to bring the sorts of the whole country into one direction. i think the technology -- there was some use of the technologies, but i think that wasn't the kissing. the kissing was a m

. >> it's very similar to an attack named "wannacry" that throws 300,000 computers just last month and cyber security experts predict these attacks will growing. the u.s. department of homeland security says it is monitoring the ransomware attack but still it's a little disheartening, discomforting. >> you have to be careful what you download on your computer. >> yes. >> no kidding. >> okay. thank you. >>> new at noon, the state of michigan is suing flint in connection with the city's lead tainted water crisis. michigan filed a lawsuit today in federal court after the flint city council missed the monday deadline to buy water long-term from a detroit area system. instead, the council approved a short-term extension of its existing contract with another provider. in 2014 a switch in water providers resulted in lead contamination. >>> in arizona, hundreds of firefighters continue to battle the goodwin fire near prescott. it burned more than 4,000 acres. heavy and dry vegetation are making the fight difficult. the fire is forcing mandatory evacuations and closing down major roads in the a

higgins: most cyber experts agree that it appears north korea was behind wannacry, do you degree? >> tails in the software program that you could use to associate it. but intelligence is cumulative. you need other areas to -- mr. higgins: what's your opinion? is north korea behind that? >> i don't want to comment. and i have seen people saying it was china and others saying it has been people. i'm not an expert in intelligence. mr. higgins: when security software design, how easy is it to build a back door access that would be virtually undetectible within that cybersecurity software? >> we have seen that a multitude of times and seen it from a variety of areas. the level of entry to do that is very low. mr. higgins: thank you for oncluding that, my question to you brigadier general. thank you for your service. are you familiar with the labs out of moscow, manufacturer of cybersecurity products. a long list of cybersecurity products that top intelligence officials at the f.b.i., c.i.a., n.s.a. and others advise this body that they don't trust the lab, and will not use their produc

similar to the "wannacry" attack in may, today's hack takes over computers and demands digital ransomn order for owners to regain control. it's not clear who is behind it. >>> the white house has issued a warning to syria as the trump administration says they have potential evidence that syria is preparing for another chemical weapons attack. last night press secretary sean spicer released a statement saying it identified potential preparations and also called our the syrian president bashar al-assad saying if he conducts another mass murder attack using chemical weapons he and his military will pay a heavy price. at this point the white house has given no evidence backing the statements. >>> a chaotic morning commute for passengers in new york city after a subway train derailed in manhattan. 34 people had minor injuries. the derailment caused a power outage and suspended service on four lines. passengers felt it jump off the tracks. >> we thought we were going to die. everybody was crying out loud. there was no doubt when the train was rocking, when it was flying, everyone was flying

not have a kill switch, so that is a problem, because this is a lot more sophisticated than the wannacryg because the number of machines that can be attacked have reduced from the previous attack. major companies have been affected across 60 countries. what should countries do to make sure they are not affected? first thing they should do is close the doors, that is, get all of the updates in place for all of the windows patches. if you leave the door open, somebody will come in and attack. secondly, they have to track the behaviour of the malware, how it spreads within an organisation. they must also track data moving out of the company, because what is going out can mean something wrong inside. when you mention these three points for companies not to be affected, do you need additional funding for companies to be able to support it? yes, you have to put systems and processes in place. you have to have the tools and the processes. people need to have the skills, you've got to invest in people, processes and tools. are companies or individuals more at risk and more able to protect oursel

it's exploiting a similar loophole to the wannacry virus, which caused havoc last month. google has been given 90 days to put its house in order, after being hit with a record fine by the european union. the eu says google‘s search engine gives an unfair advantage to its own shopping websites. and this story is trending on bbc.com tennis star serena williams has posed naked for the cover of this month's vanity fair magazine. she was six months pregnant when this picture was taken by celebrity photgrapher annie liebovitz. she's said she plans to be back on court by january. that's all from me now. stay with bbc world news. now on bbc news it's time for hardtalk. welcome to hardtalk. i'm stephen sackur. greece's debt crisis and economic collapse used to be headline news, not so much any more. but does that mean the country is in recovery? not if you ask your average greek. almost half of all young people are jobless, the elderly continue to see their pensions cut, austerity bites deeper with every new release of european bailout money. my guest is greece's economy minister,

what has really happened with petya verses wannacry, people understand this is going to be an ongoingintosh around the world. at the end of the day, ransomware and this type of security threat is going to be here to stay and it will not be too long until we see another variation using similar code that tries to use ransomware is a method to making money for cyber—criminals. businesses continued to plan and continue to have methods in place to find a solution should this happen but the individuals, what needs to be done today is the same as every day that it is up to how behaviour. we should put things in place so that should work like this hit our machines we have taken steps to stop it causing us harm. if you're using windows ten, your machine is being patched on a daily basis depending on threats. that should continue to happen. you should be spending a couple of 100 dollars and buy an external hardware. if ransomware is leased on your machine, by having the data secured and backed up, you really do not need to do much more than a rollback yours eastern and you are back running agai

the wannacry infection caused disruption in 99 countries with health services, energy companies and mobilestimated to have cost the global economy around a50 billion dollars last year alone. so tackling these online threats is big business. and there's a new technology that could stop the hackers in their tracks. "behavioural biometric technology" as it's known, tries to identify unusual behaviour on smartphones using information such as typing speed the force applied to the touch—screen and the angle at which the smartphone is held. neil costigan, chief executive of behaviosecjoins me now. your company comes as a great relief to the banking sector because actually, when we find we have financialfraud, actually, when we find we have financial fraud, the banks actually, when we find we have financialfraud, the banks have to reimburse us, they carry the weight of the cost and the fraud but your technology is helping. no silver bullet, the industry uses every tool in its arsenal, and more and more, trying to get into the frictionless way of doing it. so you are not asking the user to a member

the first thing is that wannacry leveraged a specific exploit -- >> a weakness? >> a weakness in the environment. it exploits a vulnerability. >> in windows. >> this exploits the same vulnerability in windows >> which is what >> windows has a way to communicate between servers, smb, server message block, that was known vulnerable as part of the nsa leak that came out when the attack methods were stolen microsoft patched that vulnerability for moths st of i systems in march but what you find is systems all over the world are still vulnerable >> because they have not downloaded the patch >> because they have not downloaded it. this calls out a core thing, a big part of the vulnerability that we find all over the world is that there's lots of known things we can do something about, but we have not found the mechanism to address those issues >> even though you think you have downloaded this patch at your company, if there's one company that has not been patched, that's the weakness in the system and that's the way in is that true >> that is true. i would say that mos

remember "wannacry" ransomware attack in europe, that was a few weeks ago, right. one they're dealing with across much of europe, particularly ukraine where homeland security in this country reporting it hit the ukrainian power grid, a number of banks, offices across europe, rosneft oil company and danish shipping concern, apmersk. that list in last 20 minutes or so that list doubled since i've been keeping track. hard to say whether there is another "wannacry" situation, if you're affected by any of these institutions or any of these ukraine ukrainian banks or customers offices or rosneft or some other you are already crying. what happens when you pop it up, it vanishes. there is nothing there to see. that leads people to worry did their bank account vanish as well? we're keeping eye on that. this looks like it happened second time in as many months. >>> meanwhile google is considering appealing a $2.7 billion european union fine. at the heart of this is this notion that google or alphabet parent more to the point favors in searches or google does, in searches pro

as we were first getting details of the companies affected right this new attack, attack.to the wannacrye i could be an immediate beneficiary. it was one of the companies called in the immediate aftermath. the shares are up 3%. and then midterm beneficiaries could include one camp, proof point, and symantec. palo alto shares are getting a boost by about 1%. infor the companies targeted this attack, it is worth talking about those as well, we have been tracking them. fedex just coming out in the last little while and saying worldwide operations had been affected by the attack. agency, alsoish at affected. other companies like the -- involved as well. and then there is bitcoin. the folks who committed the attack asked for ransom and bitcoin. bitcoin has been bouncing around after a plunge three weeks ago. bitcoin overall, over the last year or so versus something like gold, which has been a pretty reliable value, it is actually about double the price of gold because of the surge from 2017. blue, it hasere in come down from its highs, but he'll just about double -- but still just about doub

maybe like another "wannacry" situation, the last hack attack a month ago what are we looking at hereeal will this be? we have a cybersecurity experts here. welcome to both of you. tim, how this type of stuff and dimensions leak out the way it does? yesterday at this time it seemed fairly limited in scope. we get revelations it was much bigger. why is that? >> neil, with these types of cyber attacks, things changing all the time. new report came out from microsoft saying this started with update for some accounting software in the ukraine. we're still trying to grapple with understanding how far the thing will go and what dimensions of it will be and we won't know until we finish seeing what is happening. hopefully security researcher is looking at the code to get a sense what a kill switch might look like. neil: i hear you. in the case of fedex, they are announcing this as a computer virus. said no data was breached, but nevertheless it did happen. when companies get wind of this, brian, how, how do they appreciate the enormity of it? i do remember the case of target a couple years b

it looked like one of -- wannacry. but it seems to be about more than that.isrupt infrastructure? emily: the attacks range from russia to the u.s. to europe, specifically the motivation seems to be to wreak havoc in ukraine. >> it is hard to say, it is hard to define exactly what region they wanted to wreak havoc in because it was widespread. we got reports on grain shipments in latin america. it started to affect parts of india. how much was it targeted on ukraine and how much of this is collateral damage? it is hard to say because we do not know who is behind it yet. we do know as each one of these attacks, they are learning from it. they are learning how we can take what we have learned here and apply it to the next one. emily: also a huge story out of europe, google getting slapped with a $2.5 billion fine from the e.u., a record fine. talk to us about the fallout from it. >> there have been question marks about google's propensity and willingness to give its businesses priority in search, particularly relating to online shopping. there has been a certain

it is both similar to on wannacry. each time, it is basically ran somewhere.nfected and gets your demented to pay $300 in crypto currency. the same thing is happening with this particular virus. it seems to come from russia and the ukraine and is affecting companies. it is worrying that it is utilities like electric companies and the like. we are worried about the infrastructure and that seems to be what happened with one of cry in london. 80 companies less far we have counted have been hit hard. the have been coming out thick and fast saying the have been affected, shutting down the systems. we now need to see if the people behind this get any more money. successful. a bit vonnie: the companies tend to pay the ransom in crypto currency? does that get their operation back up and running? caroline: i think this is a key question. we found that not many people did pay it largely because it is affecting old computers. therefore people are using of that are perhaps not technologically savvy as others. they don't even know how to get a hold of $300 worth of bitcoin

. >> the wannacry attack had a kill switch. this attack doesn't appear to have that.pecific files demanding ransom for users to get access, this locks the entire hard drive, asking users to shell out $300 in bit coins. it crippled computers using microsoft. it rapidly spread across ukraine, russia, europe, even the u.s. among the targets, merck, the world's largest shipping container company and chernobyl was forced to witch to manual read yags monitoring. it's not clear who was responsible. some speculate it could have been a russian state attack designed to cause havoc in ukraine. with you nbc expert said it's too recall to tell whether or not the attack is winding down. it's affecting big companies more than individual users. all the more reason to back up your files, keep your software up to date and not to click on suspicious links. >> coming up next on "morning joe", the big question is what's next? >> republican senator ron john will explain what he wants and dick durbin weighs in on l his party will get involved or mere live talk bipartisan. and adam schiff jo

says lessons were not learned from last month's wannacry ransomware cyber attack. - varun badhwar, ceolock cloud security says:"and unfortunately it all stems from the same problem that we've been discussing for months now which is an unpatched microsoft operating system for which microsoft had released the patch in march and unfortunately there's research today showing that at the very least we've seen at least 38 million device is still at this point that i'm not been patched and there's probably millions more self- inflicted wounds and can organizations and users need to really think about packing their systems as as the utmost priority"so make sure your computer is up to date otherwise you could see a screen like this telling you are locked out of your machine and the only way to get your data back is to pay the ransom. or you can wipe your machine and start over using your backups. this is why it's also critical to backup all your data every week. cybersecurity experts say it's now more important than ever to have back ups more attacks are coming - varun badhwar, ceo redlock cloud

that definitely has been targeted primarily in ukraine, russia, certainly the previous attack, "wannacry in the u.s. but hasn't been focused here. part of that is frankly even timing. if you look at timing of these, they're happening in the morning in the u.s. so, i think it is important for every u.s. company and individual to understand that simply because we haven't been targeted yet doesn't mean we're protected. david: max, good to see you. thank you very much for coming in. melissa. >> thank you. melissa: you never believe what one passenger stuffed into his luggage. tsa did not see this comingli either. to a few places. and then, change those places every few months. enough with that! with quicksilver from capital one you've always earned unlimited 1.5% cash back on every purchase, everywhere. welcome to unlimited what's in your wallet? ♪ ♪ whoa that's amazing... hey, i'm the internet! i know a bunch of people who would love that. the internet loves what you're doing... ...so build a better website in under an hour with... ...gocentral from godaddy. type in your idea. select from d

it's thought to have exploited the same weaknesses used by last month's wannacry virus. pariah by its closest neighbours and it is feeling the effects. saudi arabia, the uae and bahrain have all cut off air, land and sea links with qatar, accusing the small gas rich state of supporting regional terrorism and opening up to their arch—rival — iran. the qatari government received a list of conditions from saudi arabia last week, and included in the list was a demand they close down the tv network aljazeera. the us secretary of state rex tillerson has called for a diplomatic solution, today he has been holding meetings with his qatari counterpart. our state department correspondent barbara plett usherjoins now. we are getting mixed signals from the american administration but president trump has tweeted that qatar have been financers of terrorism and then rex tillerson saying the other gulf countries need to make reasonable demands. where does qatar stand with regard to america? a good question because you get different signals from the white house and state department. the

the attack originating in the ukraine is similar to what we saw a month ago with the so-called wannacryh use methods that come from a national security agency database. these were developed by the agency and happy to be made public in april by a group of hackers called the shadow brokers. as variations of these tools spread, the nsa's digital break-in could mean the onslaught of cyber weapons could just be getting started. and the ukrainian got a taste of that as well on tuesday. this latest attack locked government accounting software and demanded ransom from customer attempting to withdraw cash from the country's state-owned bank. why hasn't congress put a little more pressure on the nsa to step in and deal with this stolen cyber toolkit? head of the counterterrorism center, you know how this stuff works. welcome back, sir. >> good to be here, chuck. >> it seems to me a bit problematic that people break into the nsa, these are tools created by the nsa. in essence, it our own weapons being used against us. number one, were we wrong to make the weapons, and number two, do we have a resp

we're going to see more of it, and it seems to be a variation of the wannacry ransom attack that we saw, again, had a real impact on the health care system, so i think that this is going to be with us for some time going forward. >> so if i'm merck and this happens and -- and they say, okay, we're only going to unlock your systems or whatever the case may be if you pay us 1,000 or a million or whatever amount of money in bitcoin, what is merck other any other company to do here? >> i think paying ransom is a big mistake because with hostage-taking as with human beings it encourages more of the same it's all about preparation, first of all about making sure that your patches are properly configured, that you've uploaded the most recent messages that come from your provider to make sure you are patched against vulnerabilities. it's about backing up your systems and segmenting your systems so if there's a penetration in someone spot it doesn't infect your entire network. if you don't prepare, you're just leaving yourself open for more and more of these attacks in the future. >> let me ask

in the recent wannacry, that gets our attention really pretty quickly. the reality is our ships and submarines today, there is not a system on that ship that doesn't have, that is not heavily invested in software and computers. i just came from the trials on the gerald ford, and she has a machinery control board that operates, that allows you to operate the ship remotely. that is great stuff. but all of that stuff has computers associated with it. and so the cyber piece is not just don't hack into my email or credit card, he goes a lot further than that on ships today. we have a very big focus on how we manage this going forward. >> have you had to set up any new staff organization or bring on new folks to deal with that? >> we have a chief information officer now. we have grown the size of my workforce there. believe it or not, the cyber folks are in the engineering directorate. we have a cyber counsel. we meet monthly. as we grow nav-c, we are looking pretty closely at the cyber piece as well. that is a key >> megan, you had point. your hand up earlier