> if it's the global intelligence community saying so
Tho it's really not, the only "official" attributions are WaPos unnamed government source and US agencies saying "Russian linked".
But there is no real evidence for that except those Kaspersky heuristics about the malware having been used before, which is really not that much of a "smoking gun".
There's also the fact that for pretty much everybody involved it would be much more convenient to have this framed as a "state actor attack": The amount of companies breached and their nature just makes this horribly embarrassing for most people responsible and involved.
Even letting on the possibility that some kind of non-state actor is responsible for this would add even more insult to the already existing injury.
Tho it's really not, the only "official" attributions are WaPos unnamed government source and US agencies saying "Russian linked".
But there is no real evidence for that except those Kaspersky heuristics about the malware having been used before, which is really not that much of a "smoking gun".
There's also the fact that for pretty much everybody involved it would be much more convenient to have this framed as a "state actor attack": The amount of companies breached and their nature just makes this horribly embarrassing for most people responsible and involved.
Even letting on the possibility that some kind of non-state actor is responsible for this would add even more insult to the already existing injury.