CSE Statement on the Attribution of WannaCry Malware

CSE believes that a safe and secure cyber space is important for the security, stability and prosperity of our country.

We are aware of the statements made by our allies and partners concerning the role of actors in North Korea in the development of the malware known as WannaCry. This assessment is consistent with our analysis. The Government of Canada strongly opposes the use of cyberspace for reckless and destructive criminal activities. Using malware such as WannaCry to extort ransoms and disrupt services is unacceptable, whether conducted by an individual or a nation state. We remain committed to working with our allies and partners to maintain the open, reliable and secure use of cyberspace.

As a result of our work with Shared Services Canada and our other partners, Government of Canada networks are well defended against this type of attack. Thanks to this work, there is no indication that Government of Canada systems were negatively impacted or that any information, personal or otherwise was compromised.

CSE continues to work with our domestic and international partners to help keep Canada safe from malicious cyber activities, regardless of the threat actor. Cyber security is a team effort. CSE encourages Canadians to read and follow our Top 10 IT Security Actions for simple, but important tips that will help keep your systems protected against cyber threats like WannaCry.

Greta Bossenmaier
Chief, Communications Security Establishment