Sony Employees Receive Email Threat From Hackers: 'Your Family Will Be In Danger 184
MojoKid writes: Things are going from bad to worse when it comes to the recent Sony Pictures Entertainment breach. Not only has sensitive financial information been released — including the salaries of high-ranking Sony executives — but more damaging personal information including 47,000 Social Security numbers of employees and actors have been leaked to the internet. We're now learning some even more disturbing details, unfortunately. Guardians of Peace (GOP), the hackers claiming responsibility for infiltrating Sony's computer network, are now threatening to harm the families of Sony employees. GOP reportedly sent Sony employees an email, which just so happened to be riddled with spelling and grammatical errors, that read in part, "your family will be in danger."
That Word (Score:4, Funny)
Guardians of Peace (GOP) [...] are now threatening to harm the families of Sony employees.
You keep using that word. I don't think it means what you think it means.
Re:That Word (Score:4, Insightful)
They keep it from breaking out.
Re:That Word (Score:4, Informative)
Guardians of Peace (GOP) [...] are now threatening to harm the families of Sony employees.
You keep using that word. I don't think it means what you think it means.
In the context of Islam, as in 'Islam is a religion of peace', the word 'peace' means 'not struggling against the will of Allah'.
So no, it probably doesn't mean what most people (native speakers of English) think it means.
Re:That Word (Score:4, Insightful)
Re: (Score:3)
Re:That Word (Score:5, Interesting)
Re: (Score:2)
Um, I don't if you're aware, but Islam didn't invent English. The word you're describing is "submission" or perhaps "conformity." "Peace" means, in English, what it means - Islam doesn't get to define that.
But it gets to use an English term in misleading way, which is good to point out. An English speaker familiar with the proper meaning of "peace" would likely misunderstand.
the English speaker isn't misunderstanding, they're being intentionally misled. That is a very big difference. They are perfectly understanding the intended message.
Is this an example of Orwellian language or Doublespeak [wikipedia.org] - saying the opposite of what you mean, to confuse your audience? If so, once you know it, you know the weak spot in their reasoning.
Re: (Score:1)
True, but just don't ever say "I could care less" or you'll have fifty people "correcting" you, no matter how sarcastic you meant it to be.
Re: (Score:1)
Guardians of Peace (GOP) [...] are now threatening to harm the families of Sony employees.
You keep using that word. I don't think it means what you think it means.
In the context of Islam, as in 'Islam is a religion of peace', the word 'peace' means 'not struggling against the will of Allah'.
So no, it probably doesn't mean what most people (native speakers of English) think it means.
hmmm what is the will of Allah?
Kill all that don't serve Allah
So fight them until there is no more infidels and all submit to the religion of Allah alone. Surah 8:39
O Prophet, urge the faithful to fight. If there are twenty among you with determination they will vanquish two hundred; if there are a hundred then they will slaughter a thousand unbelievers, for the infidels are a people devoid of understanding. Surah 8:65
Fight and kill the disbelievers wherever you find them, take them captive, harass them, lie in wait and ambush them using every stratagem of war. Surah 9:5
Kill All Dogs and Pigs
Angels do not enter a house witch has either a dog or a picture in it. Hadith 4:539
Allah declares that all dogs must die, they are despised in my sight as swine are Hadith 4:540
Sex slaves are allowed
Also women already married, except those whom your right hands possess.[right hand = sex slaves] Thus has Allah ordained for you. All others are lawful, provided you seek them from your property, desiring chastity, not fornication. So with those among them whom you have enjoyed, give them their required due, but if you agree mutually after the requirement (has been determined), there is no sin on you. Surely, Allah is Ever All-Knowing, All-Wise. Surah 4:24 ( http://www.wikiislam.net/wiki/... [wikiislam.net] ) According to Qur'an 23:6, Qur'an 33:50, Qur'an 33:52, and Qur'an 70:30 a Muslim man is considered "chaste" so long as he only has sex with his wives (of whom he may have up to four) and his right-hand possessions (female captives/slaves). An unmarried Muslim man who has sex with his slave girl is still considered to be "chaste" by Islamic standards
Re: (Score:2)
This is where modern etiquette seems to become so tricky. So when somebody uses that phrase I should correct them and say "Don't you mean Islam is a religion of slaves?".
Re: (Score:2)
To me, personally, that's kind of the same sense of peace that slaves have though, via abdicating (or being denied) their free will. And in most of the islamic cultures, becoming an apostate has extremely serious consequences, so "slave" is not, IMO, a particularly inflammatory exaggeration. Way too many rules and restrictions.
Re: (Score:1)
The truth about Islam is too painful to be public knowledge.
Yeah, I'm tired of this mythological make believe BS. Imagine if Christianity had crazy stuff life zombie coming back from the dead, or blood drinking cults or any of that nuttiness...
Yeah, exactly. Imagine if Christianity called itself the Religion of Tolerance. Or imagine if SJW's called themselves "The Group That Doesn't Use Logical Fallacies".
Re: (Score:2)
Until recently Christians didn't identify themselves as such. They identified themselves as Catholic, Protestant, Baptist, Lutheran, Calvinist, Episcopal, Armenian, etc.
It's probably safe to throw the tolerant label on a few of them.
Disclaimer: I don't identify to a religious belief and am probably best described as atheist.
Re:That Word (Score:5, Insightful)
Re: (Score:2)
Christians do kill, but not for the cause of Christianity. It is a subtle, but important difference.
Muslims kill people to force submission to Islam. We do not see that with modern Christianity.
Disclosure: I am an atheist, and I have no use for either religion.
Re: (Score:2)
Agenda? (Score:1)
Re:Agenda? (Score:5, Insightful)
Re:Agenda? (Score:5, Insightful)
Are those emails legit or fake? Well what better way to reverse this from a super embarrassment for Sony and corporate world to "them hackers are gonna kill us" and make the hackers look even worse and dangerous. Next we'll see the words Anti Corporate Terrorists used.
>GOP reportedly sent Sony employees an email, which just so happened to be riddled with spelling and grammatical errors, that read in part, "your family will be in danger."
Yah, those bad grammar homicidal hackers.
Re:Agenda? (Score:5, Insightful)
Are those emails legit or fake? Well what better way to reverse this from a super embarrassment for Sony and corporate world to "them hackers are gonna kill us" and make the hackers look even worse and dangerous. Next we'll see the words Anti Corporate Terrorists used.
Those are false flag emails, designed to elicit outrage in the real attackers so they might identify themselves.
Remember, almost everything we hear about the hackers comes via Sony, filtered through the media. It's all theater at this point. Pretty good stuff too. Enjoy.
Re:Agenda? (Score:5, Insightful)
Sony hired FireEye (where In-Q-Tel is a major investor) which since Dec 2013 owns Mandiant. The latter and it's operations features prominently in the HBGary emails from a couple of years ago. I wouldn't put it past any of them to carry out a false flag operation, at the expense of the Sony employees (compare to the "hit me, hit me hard" to lamely cover up letting a prisoner escape) to try and draw out the GOP.
GOP is also doing nobody a favour, if they did, by releasing a couple of pre-release movies. That makes Sony the legitimate victim. Releasing documents, on the other hand, that show dirty backstabbing, expose lies, and otherwise shed some light at the secretive goings-on of a major Copyright MAFIAA member makes Sony the perp.
Don't forget, the keyword of the 2010s is Victimship. The art of making yourself look like the victim. It's not really new, as burglars that were caught in the act and became good acquintances with the homeowner's baseball bat always did this.
Re: (Score:2)
Re:Agenda? (Score:5, Interesting)
Anyone can send an email. I'm not sure how they know for certain gop sent the email and not some random 13 year old with bad english skills.
It would certainly be a great way to discredit gop too. Just have someone send an over the line email claiming to be gop. The fbi, a private contractor, etc.
Re: (Score:1)
Welcome to the world of terrorism where attacking innocent civilians in order to influence the actions of others (usually for political causes) is the key to victory.
Yeah, that's right, I went ahead and said it. I'll also save the idiots the trouble and post one man's terrorist is another's freedom fighter and when you don't have to size and money to play fair, not playing fair becomes the fairest option.
There we go. Got it all out of the way.
Re: (Score:2, Insightful)
True, law enforcement has to take this seriously, but if I received such a threat I wouldn't worry too much about it. It's basic trollish behavior. Hey look at ME! Pay attention to MEEE!
These guys aren't terrorists, or even violent criminals. They aren't even hacktivists. They're script kiddies who want to see their name -- or at least their pseudonym -- in the media.
They're pathetic, but they'll get their fifteen minutes of pseudo-fame because of the almost equally pathetic obsession the media has with the
Re: (Score:2, Insightful)
They're script kiddies
No. Not by any definition of that term I've ever seen used.
You don't know who they are, or what they're prepared to do. We don't even know if the emails are from the same group that perpetrated the data breach.
That group though need to be taken seriously. They're not script kiddies, not even close.
Re: (Score:3)
They're not script kiddies, not even close.
So some people *say*, but I haven't seen any information that points to exotic skills. I'm not saying Destover itself doesn't contain some sophisticated techniques, but what it *does* is crude, drama queen stuff.
Re: (Score:2)
Hyperbole much?
Yes, a lawyer suing a fan project to protect a trademark may be shitty PR; but it hardly compares to the Nazis and Nuremberg.
Re: Agenda? (Score:1)
You must be Jewish, because the tactic of deflecting criticism by throwing in tangential facts is a proud Jewish tradition.
Re: (Score:2)
Wasn't the idea that Sony would release some Movie about the leadership or whatever in North Korea?
And these "Peace" guardians likely want to preserve the leadership of NK.
Re: (Score:1)
Sony produced a picture "The Interview" http://www.imdb.com/title/tt27... [imdb.com] where two tmz-like "journalists" score an interview with fan Kim Jong-un, but the CIA wants them to asassinate him instead. DPRK is supposedly way pissed, asked Sony to dump the picture, sony says hell no, and here we are.
Uh, so? (Score:1)
I'm really disappointed that this sensationalist crap is considered news. I would completely ignore these, as with most anonymous clowns who are trying to tie together the feeble threads of corporate responsibility to physical violence. It doesn't happen and there is no credible danger. Quit giving these nutjobs a platform.
This is asinine (Score:2, Informative)
Re: (Score:3)
Well you are very racist!
Methinks somebody is alluding to a certain movie [imdb.com] and a certain other movie about the country currently ruled by the son of the character who sung a certain song in that other movie [imdb.com].
Re: (Score:2)
The stupid thing about that song is that Koreans can say the "L" sound perfectly well. They confused Korea with Japan. A lot of people seem to think that Chinese people can't say L either.
Re: (Score:2)
I've found that you can safely replace the L or R sound when speaking Japanese, with a D sound and you'll be close enough.
Re: (Score:2)
Re: (Score:2)
Well, North Korea is known to display asinine behavior. Such as abducting Japanese and S. korean citizens and forcing them to work in N. Korea. And blowing up S. Korean airliners with bombs.
Lesson for Sony and anyone else: if a nation- state threatens you personally by name, take it seriously. Even if it's a poor backward nation like N. Korea. It's still a nation state with its own armed forces and intelligence agents.
Re: (Score:1)
Re: (Score:2)
Most likely behaviour here from the description is they are scattering information across to internet to script kiddies in order to create a flurry of activity which they can use to obscure the trail back to them for past and future actions.
Re: (Score:2)
Re: (Score:2)
How good are the cops? (Score:5, Insightful)
So now we get to see how powerful the FBI and Japanese equivalent are at actually tracking down cyber criminals.
Re: (Score:2)
It may take a while - that's a lot of basement-dwellers to sift through...
Re:How good are the cops? (Score:5, Funny)
If Anime is any indication, the Japanese equivalent of the FBI should be at least three or four decades ahead in terms of technology... and have much sexier female agents as well as powerful mechas that almost act like household pets but with cute voices.
Re: (Score:1)
SONY Corp are criminally asymptotic.
Re: (Score:2)
In a plot twist, they are both one and the same.
Re: (Score:1)
So now we get to see how powerful the FBI and Japanese equivalent are at actually tracking down cyber criminals.
The group pretty much already identified itself. There's no real investigation needed to figure it out.
Re: (Score:2)
How do fucking morons get mod-points?
http://variety.com/2014/film/n... [variety.com]
Is there any question who did this at all?
Re: (Score:2)
Re: (Score:2)
I don't think that was a statement about wanting to see hackers caught. It was a statement that now that something big and powerful who finally has the influence that everybody else seems to lack is hurt, we might see the real abilities of some agencies.
Its as if sarcasm was being deployed to suggest that they have not been trying when the rest of us peons suffer the fate of hackers.
Comment removed (Score:5, Interesting)
Re: (Score:2)
The problem is that the SSN wasn't designed to be an identification number. Some cards even say "Not for identification." Example [elvispresleymusic.com.au]
Re: (Score:2)
Why have the number at all? What's wrong with when you need to be identified to provide identification documents of value?
In Australia you have a points system. You need to generate a certain number of points to be identified like when you apply for a bank loan or something similar. Government issued photo IDs like drivers license or passport are worth the highest number of points, and two of these documents are usually sufficient. Lesser things like bank statements with mailing address, IDs without a photo
Re: (Score:2)
Without the number, who, exactly, are you being identified as? You can't uniquely ID by name--which of the 42 "John Smith"s in your city are you? In order to be identified, you need some representation of identity that is uniquely yours, and no one else's. The easiest way to do that is to give you a unique ID number.
Re: (Score:2)
My point is that you're trying to simply the complete identity into one document that can ultimately be easily forged.
What do you want to know about me?
My name and age? My passport and drivers licence show that.
My residential address? My drivers licence and council statements show that.
That I'm a valid owner of a property in that council? Any photo ID such as University ID card + council statement shows that.
My medicare status? That's a separate card and then any photo ID will verify that further.
Why distil
Laugh (Score:1)
Hackers using Google translate?
It's Sony's fault, they chose to store things the way they did in this day and age, fuck em.
Something is dodgy here. (Score:5, Insightful)
GoP are good. They have to be. The level of pwnage achieved is simply far beyond anything script kiddies could pull of. Not just the scale of the breach in total data, but in variety. Email, employee records, media from production - data from several divisions, and they even leaked it out through computers that host Playstation infrastructure, a completly different part of the organisation. Whoever GoP are, they have a very high level of skill.
This group then sends some idiotic threats, badly written at that, to low-level employees? I believe I detect the faint smell of fish. It just seems out of character.
I wouldn't be surprised if someone at Sony were responsible for sending this email as a false-flag operation. This would achieve two things they must be much desiring of right now. First, it casts GoP in a bad light - makes sure they are seen by the rest of the world as violent thugs and criminals, rather than being venerated as grassroots hackers who defeated a loathed mega-corporation. Secondly, a threat of physical harm brings a lot more attention from law enforcement - the FBI will devote more resources to aiding in the investigation, as will the corresponding law enforcement agencies in other countries.
Re: (Score:3)
I wouldn't be surprised if someone at Sony were responsible for sending this email as a false-flag operation.
False-flag operation or not, that's a crime. If someone within Sony (or hired by Sony--e.g. their cybersecurity contractor) sent such an e-mail, that person is doing the equivalent of "screaming 'fire' in a crowded theater, when there is no fire". Not protected by free-speech and that person should be criminally charged with a felony.
Re: (Score:2)
Then either they don't expect to get caught, or someone has been assigned as 'designated scapegoat.' It might be just one person, acting alone and in desperation - and even if it isn't, it can be made to look that way.
Re: (Score:1)
Re: (Score:2)
GoP are good. They have to be. The level of pwnage achieved is simply far beyond anything script kiddies could pull of. Not just the scale of the breach in total data, but in variety. Email, employee records, media from production - data from several divisions, and they even leaked it out through computers that host Playstation infrastructure, a completly different part of the organisation. Whoever GoP are, they have a very high level of skill.
This group then sends some idiotic threats, badly written at that, to low-level employees? I believe I detect the faint smell of fish. It just seems out of character.
I wouldn't be surprised if someone at Sony were responsible for sending this email as a false-flag operation. This would achieve two things they must be much desiring of right now. First, it casts GoP in a bad light - makes sure they are seen by the rest of the world as violent thugs and criminals, rather than being venerated as grassroots hackers who defeated a loathed mega-corporation. Secondly, a threat of physical harm brings a lot more attention from law enforcement - the FBI will devote more resources to aiding in the investigation, as will the corresponding law enforcement agencies in other countries.
I don't know whether GoP are good or bad, but the level of pwnage here is nothing special, Sony was a very very soft target it seems and it could easily be anyone from script kiddies to an organized group with how bad the security (or complete lack of it) was.
Re: (Score:2)
Whoever wrote it, it a pretty convincing imitation of bad English. I'm not sure an English speaker could come up with that. People, when using a foreign language, tend to use certain words and phrases in imitation of their own native syntax and idioms. I think we all know that hacking or coding skills do not automatically equal grammar skills, let alone foreign language skills. But is it Russians, Koreans, Chinese...?
Re: (Score:2)
Anyone with slightly more than passing experience using a translation tool could bounce between English and Korean to get appropriately flavored Engrish.
I'm leaning towards false flag on the emails. However if this is a Korean attack on Sony, then the goal is to utterly destroy their business. Flinging their data to the four winds as has clearly been done is going to cause a lot of knock-on effects that will result in Sony suffering a huge amount of pain over the coming months and possibly years.
Re: (Score:2)
The SPE_01 dump has some interesting things. Contact details for lots of network executives, both within Sony Pictures and in those companies they had contact with. It also shows that, like every business, people were in the habbit of keeping a handy list of passwords for every service someone might need to log in to. There are a few interesting revlations (One of the vice presidents is working in the US on a green card, Family Feud is doing dismally in the ratings, the studio practically gave away The Dr O
Re: (Score:3)
Script kiddies with a little luck can compromise a server here and there. But compromising many servers throughout an organization, in different divisions and under different administrators? Not so easy.
Re: (Score:2)
I was going to ask what sort of idiot keeps all their passwords listed in one place.
Then I saw SPE_02... which is exactly that. Files containing tons of passwords, clearly produced by Sony. Idiots.
A small point in their defense: Some of these lists are in the form of encrypted Excel files. So at least the put a password on them. I've no idea if MS Office encryption is any good or not. I'll take that point away for considering 'interview1' an acceptable password.
NB: GOP != Tea Party (Score:1)
Of Sony staff's family are at risk (Score:1)
It could be fake... (Score:1)
Could we put it past Sony to fake such a letter so as to, say, prompt some additional action on the part of law enforcement or even to try and preempt war on someone or something?
(Not saying this is the case, merely speculating at the possibility of the injured party disseminating, for lack of a better word - "propaganda" - to try and garner sympathy from regular people because OH NO H4CK3R5 R BAAAAAAAAAD).
Re: (Score:2)
Re: (Score:2)
Yes, because corporate-funded (cyber-)terrorism against a soveriegn nation has *no* potential down sides, right? ( :
It absolutely has downsides; the problem is a game-theory one, not a turn-the-other-cheek one. Mutual phased reduction in hostilities is the goal. The net benefit of escalation for the aggressor at any time must be outweighed by the net cost, so a threat is necessary.
Re:If I were SONY... (Score:4, Insightful)
Yes, because corporate-funded (cyber-)terrorism against a soveriegn nation has *no* potential down sides, right? ( :
Being a "sovereign nation" doesn't make you more powerful. Only power makes you powerful: manpower, materials, and moral strength. North Korea (if they're the aggressors here) has no meaningful way to project military power, and in a purely "cyber" war, a corporation with a larger budget than N Korea has an advantage. OTOH, Sony hasn't had it's shit together since the founder left, and likely can't act effectively in its own defense.
N Korea could be completely shut down here by simply isolating them from the internet, which really isn't that hard unless China decides to defend them.
Re: (Score:2)
You'd have to shut down significant parts of south-eastern China and South Korea to be able to effectively cut off internet to North Korea.
China could give or deny N Korea access through China - but if China isn't backing them, then it's easy enough to cut off the rest.
From the non-China direction, you do realize the most heavily militarized border in the world, 4km across, separates N and S Korea right? This is one DMZ that's not a metaphor! A cantenna can only do so much, and N Korea just doesn't have much going for it, connection wise, that doesn't depend on China. The might have some loyal followers out-country, but it seems unlikely th
Re: (Score:1)
I would be seriously tempted to both lobby for and bankroll offensive cyber-operations against North Korea. (Lobby for ones on the public dime from every country where SONY has a sizeable presence; bankroll one from some country where it's legal.)
Whether through cyberoperations or plain old believable threats, SONY has to come up with a way to show North Korea (or perhaps independent actors in North Korea) that there's a penalty for this kind of behavior. So does the developed world generally--attacks like this cost a fortune in productivity and potentially lost jobs, and reputation. SONY is in a better position to recover than many businesses (notably in the financial or legal sectors, where the loss of trust could be fatal), but even so.
There are no independent actors in North Korea with access to the internet. Either you have internet in North Korea as part of your official duties, or you are so high (and it would have to be very high) in the government that you can get it anyhow. Although I haven't seen a lot of evidence to prove it was North Korea behind of all of this anyway.
If you had a grudge against Sony (and lots of computer-savvy people do), the imminent release of an anti-North Korea movie is a very convenient scapegoat.
Anoth
Re:If I were SONY... (Score:4, Interesting)
Another clue is the grammatical style used. I have to think that any official DPRK hacking group would have close ties to the government, and any press releases or emails would be written by someone with the official news/media services there.
Not necessarily. This isn't an official communique from the N. Korean government. Remember, they denied involvement. My gut feeling is that it was written by the head of cyber warfare unit.
I do think they're capable of it. Their cyber warfare unit has plenty of experience hacking S. Korean targets. They are not noob at all. They employ thousands and the competition to join is fierce. Cyber warfare unit members get top-notch treatment such as getting enough food to eat and your own apartment, which are rare luxuries there. Even though we tend to think of N.Korea as a dirt-poor stone age nation, they have their own nukes and missiles. They managed to put a satellite in orbit. They send their best and brightest to Russia and China for training.
About the threats to Sony: seems to me like it was written by a Korean with a poor book learning of English. Also seems like a dictionary translation. I've seen English written by such people, and this has the same flavor.
"It's your false if you think this crisis will be over after some time." - this definitely sounds like something a Korean would write while looking up words in a Korean-English dictionary. He's probably thinking of "shil-soo" which means a mistake, but if you look it up in a 1960's paperbound dictionary, "false" is one of the entries! "Some time" is also commonly used by dictionary Koreans because there's a specific noun in Korean that means "Short interval of time", but English has no such noun. A fluent English speaker would use an adjective or an adverb to express himself, but a dictionary Korean would look for an equivalent noun and use whatever he found in the dictionary.
Thus "It's your mistake if you think this crisis will be over shortly" becomes "It's your false if you think this crisis will be over after some time."
Re: (Score:1)
Re: (Score:2)
Plot twist... what if it was Microsoft or another one of their tech competitors?
Re: (Score:1)
Re: (Score:2)
Just make sure to leave Sinanju alone. Don't want to piss off Chiun.
Re: (Score:2)
It would be kind of pointless because there is nothing to "cyber-attack" in North Korea.
Re: (Score:2)
Is it actually being attacked by north korea? If i were to do this, i'd compromise somebody else's computer and attack from there. Jumping to conclusions is much more fun though.
True; all signs point to North Korea but it could be a false flag operation, or just someone they trained, for example. However, motive, opportunity, and skill fingerprint are pointing to them. While we are engineers trained to think in counterexamples and recognize the possibility that it was someone else, it seems highly unlikely.
That being said, I do think the "wait and see" from the UN Mission Rep from North Korea, despite seeming to implicate them, was more of an "I have no clue whether we did it or
Re: (Score:2)
Well there's one camp very actively pushing the speculation that North Koreans did this because they're butthurt about "The Interview." At the same time, several articles report there's evidence that the breach may have been ongoing for more than a year. These two things don't line up; "The Interview" hadn't been promoted or even publicly announced a year ago, so there would have been nothing for the North Koreans to be upset about.
I'm still waiting for the official announcement from Sony and Mandiant (wasn
Re: (Score:2)
Should just cut North Korea off the internet anyway, not like ordinary people there can access it so it would only harm the ruling elite. Preventing Fat Kim from watching lolcatz videos on YouTube would probably be a far more effective sanction than anything else anyway.
Re: (Score:2)
Yeah... and actually threatening people's lives is really such an effective way to accomplish that.
Or are you suggesting that computer piracy has much more in common with conventional piracy than most might think?
Re: (Score:3)
I'm wondering this as well... there's reference to requests or demands, but absolutely no indication of what they are.
I cannot for the life of me imagine what on earth an apparent terrorist organization would want from an entertainment company.
Re: (Score:2)
I'm wondering this as well... there's reference to requests or demands, but absolutely no indication of what they are.
I cannot for the life of me imagine what on earth an apparent terrorist organization would want from an entertainment company.
Apparently there is an unreleased M. Night Shyamalan movie in Sony's archive and the terrorists plan to publish it.
Re:What's the threat for? (Score:5, Informative)
Was there a demand? The abstract doesn't say.
Seriously, you don't know what this is about?
Sony made a movie called "The interview" who's plot is that Seth Rogan gets the chance to interview Kim Jung un (Dictator of North Korea) and the CIA enlists them to kill him.
North Korea took offence to that and demanded that Sony stop making the movie.
Sony refused.
The hacker group is suspect of being part of the North Korean military.
Re: (Score:2)
Re: (Score:2)
Where's the evidence, then? Besides someone's say-so.
The analysis of the malware suggested that it was compiled on a computer configured to use Korean language and the code itself contacted command & control servers and recycled previous methodology used in attacks attributed to North Korea. Could it be a false flag? Sure, but you'd think there would be better targets you could go after than hacking Sony and distributing unreleased movies and employees 401k contribution records. Sounds more like someone pissed off at Sony, maybe like someone who previou
Re: (Score:2)
That's bullshit.
Most analysts indicate that the hack had been ongoing for over a year. I.e., before that fetid corpse of a movie had even been announced.
Blaming it on the Norks is just more of the same old "hate the axis of evil" shite we've been getting a steady diet of for about a decade and a half now.
Which part is bullshit? I'd be interested to read your reverse engineering analysis of the malware that contradicts that written by other security professionals.
Re: (Score:2)
Oh, I don't know... the whole Take down the movie that threatens our beloved leader or we release all your data! threat kind of gave it away for me...
http://variety.com/2014/film/n... [variety.com]
Re: (Score:3)
What effect would that really have? http://www.northkoreatech.org/... [northkoreatech.org]
It would screw up the rulers, and possibly the military. However, seeing as most of the aircraft they "fly" are still using vacuum tubes, they're fairly well EMP hardened. It's probably safe to say that a lot of their military equipment is EMP hardened by virtue of using obsolete* technologies.
* I'm sure somebody will say that vacuum tubes aren't obsolete.