Slashdot Mirror
US Links North Korea To Sony Hacking
schwit1 writes Speaking off the record, senior intelligence officials have told the New York Times, CNN, and other news agencies that North Korea was "centrally involved" in the hack of Sony Pictures Entertainment. It is not known how the US government has determined that North Korea is the culprit, though it is known that the NSA has in the past penetrated North Korean computer systems. Previous analysis of the malware that brought down Sony Pictures' network showed that there were marked similarities to the tools used in last year's cyber-attack on South Korean media companies and the 2012 "Shamoon" attack on Saudi Aramco. While there was speculation that the "DarkSeoul" attack in South Korea was somehow connected to the North Korean regime, a firm link was never published.
Yes, it sucks for Sony. But it is Sony's responsibility to protect its data, not the US Government. Hell, Sony isn't really even an American company. Personally, I think it's pretty creative of DPRK to do this and funny. And I hope Sony, and all other Big Companies (tm), learn a lesson. It's not as expensive to spend the money to properly maintain your security than it is to have it massively breached and all your data stolen. Didn't they learn anything from the PSN breach?
The official line so far is "The DPRK is responsible, but the attack originated from somewhere else".
"Responsible" most likely means hired someone to do it. Knowing the DPRK they probably paid those someones in reasonably good quality counterfeit US currency. Though that is pure speculation on my part bast on past news events.
The fact they won't tell us form where else means "China" again pure speculation on my part but common its not like DPRK has exactly normal relations with anywhere else. They would tell us if it was some other pariah regime some place, so I assume it has to be China as its the only place I can think of that DPRK would have access and would be to politically sensitive to name.
Keep in mind, I can't recall if it was 2k11 or 2k12 but the Obama admin did not exactly dispute the pentagons view that "cyber" attacks could/should be viewed as an act of war. The "terror" threats against theaters have escalated things from a criminal matter, attack on a corporation, to a state matter attack on the public and order; therefore some kind of "response" is required. I am sure 0bama is trying to find a way to "do something" or appear to be without pissing off the Chinese.
Which to now purely editorialize, I think pissing off the Chinese and souring trade relations would/could be the best possible outcome here for our nation but that is a different discussion.
Repeal the 17th Amendment TODAY! Also Please Read http://www.gnu.org/philosophy/right-to-read.html
I don't know what to believe. On one hand, we have Sony. On the other, North Korea. Finally, the FBI.
Shit, they're probably all lying their asses off.
You are welcome on my lawn.
> It is not known how the US government has determined that North Korea is the culprit
Of course it's known. The same way they established that Iraq had chemical weapons. The method is known as "because we say so".
Are you joking? I thought it was well established that there were chemical weapons in Iraq we just only found weapons designed by us, built by Europeans in factories in Iraq. And therefore the US didn't trumpet their achievements. In the case of Iraqi chemical weapons, the US established that Iraq had chemical weapons not because they said so but because Western countries had all the receipts.
My work here is dung.
The official line so far is "The DPRK is responsible, but the attack originated from somewhere else".
"Responsible" most likely means hired someone to do it. Knowing the DPRK they probably paid those someones in reasonably good quality counterfeit US currency. Though that is pure speculation on my part bast on past news events.
The fact they won't tell us form where else means "China" again pure speculation on my part but common its not like DPRK has exactly normal relations with anywhere else. They would tell us if it was some other pariah regime some place, so I assume it has to be China as its the only place I can think of that DPRK would have access and would be to politically sensitive to name.
Russia also fits the bill, although I'm not surprised that you didn't know that. Russia still has reasonably friendly relations with North Korea and shares a small border with it where North Korean "guest workers" (really slave labor) do logging and perhaps some other manual work on the Russian side for little pay and without any choice in the matter. Putin just recently said he was looking to improve relations between the two countries. North Korea spent years playing its patrons the Soviet Union and China off each other. The USSR and China had strained relations for many years and North Korea leaned towards whichever side at the time it could get more money out of. The Soviet Union gave them their first nuclear reactor and the training necessary that put them, if unintentionally, on the path to getting nuclear weapons. Boris Yeltsin had the good sense a long time ago to stop all payments to North Korea, basically saying "Too bad. So sad." They've never been resumed. So he left China holding the bag for being 100% responsible for financially propping up the regime. Kim Jong-Un's father was actually born in Russia, although official reports in North Korea deny this. And his grandfather was a Russian military officer during the 2nd World War and became the eventual dictator of North Korea because Russia's first choice for the job turned it down and grandpa Kim seemed loyal enough to the Soviet Union to be a really good back up choice. So while Russian-North Korean ties don't get much press, Russia gets all of the benefits, whatever they are, of being "friends" with North Korea without any of the costs that China got stuck with.
Honestly, Marc Rogers' analysis is fucking awful. It's entirely speculation - it's no different to your average Slashdot post where someone is just stating their opinion and passing it off as fact. Examples:
"1. The broken English looks deliberately bad and doesnâ(TM)t exhibit any of the classic comprehension mistakes you actually expect to see in âoeKonglishâ. i.e it reads to me like an English speaker pretending to be bad at writing English."
Really? Please expand on that. Please give examples. To me it looks like just about every other piece of broken English I've seen online. Simply declare it not such without explaining why is not an argument.
"2. The fact that the code was written on a PC with Korean locale & language actually makes it less likely to be North Korea. Not least because they donâ(TM)t speak traditional âoeKoreanâ in North Korea, they speak their own dialect and traditional Korean is forbidden."
Interesting, but hardly stone cold evidence. If it was a North Korean spy that's trained in South Korean because they were behind the past hacks on South Korea then they may find that this is the easiest configuration for them. Is the North Korean dialect even a configuration option? If not then what else could they use? English? I'd guess not given how broken their English is.
"3. Itâ(TM)s clear from the hard-coded paths and passwords in the malware that whoever wrote it had extensive knowledge of Sonyâ(TM)s internal architecture and access to key passwords. While itâ(TM)s plausible that an attacker could have built up this knowledge over time and then used it to make the malware, Occamâ(TM)s razor suggests the simpler explanation of an insider. It also fits with the pure revenge tact that this started out as."
Again, entirely just speculation, poor use of Occam's razor. Occam's razor doesn't suggest it was an insider out to get Sony any more than it suggests the attackers simply spent a bit of time surveilling their target before following through with the hack. This argument again adds nothing.
"4. Whoever did this is in it for revenge. The info and access they had could have easily been used to cash out, yet, instead, they are making every effort to burn Sony down."
Isn't this an argument FOR it being North Korea rather than against given that North Korea has vocally made it clear that they're unhappy with Sony over the film? If anything this is an argument in favour of it being North Korea.
"5. The attackers only latched onto âoeThe Interviewâ after the media did â" the film was never mentioned by GOP right at the start of their campaign."
Sure and North Korea spent a few days figuring out whether to admit responsibility or not rather than outright denying it. It's now becoming the defining point of their campaign which seemed to be something North Korea was keen on - if it was the internal employee theory then why has Rogers' now changed his mind about maximising damage? Simply making Sony cancel a $42million film is small fry damage - an inside job would focus on continuing to be far more damaging than that. But to follow on this same point:
"After all, if everyone believes itâ(TM)s a nation state, then the criminal investigation will likely die."
What? Why? The FBI will just give up if it's thought to be a nation state? No, on the contrary it'll be escalated to the CIA and NSA. This point doesn't even make sense.
"6. Whoever is doing this is VERY net and social media savvy. That, and the sophistication of the operation, do not match with the profile of DPRK up until now."
Um, you mean they can use Twitter? So can half the child population of this world. Unless there's a suggestion that North Koreans are inferior people with IQ's less than your average child and who couldn't possibly look at what's worked for other succesful hacker groups like anonymous then this point is monumentally stupid.
"7. Finally, blaming North Korea is the easy way