Slashdot Mirror

← Back to Stories (view on slashdot.org)

NSA Hack of N. Korea Convinced Obama NK Was Behind Sony Hack

Posted by timothy on from the that's-how-clever-it-was dept.

Mike Lape links to a NYTimes piece which says "The evidence gathered by the 'early warning radar' of software painstakingly hidden to monitor North Korea's activities proved critical in persuading President Obama to accuse the government of Kim Jong-un of ordering the Sony attack, according to the officials and experts, who spoke on the condition of anonymity about the classified N.S.A. operation." From the linked article: For about a decade, the United States has implanted “beacons,” which can map a computer network, along with surveillance software and occasionally even destructive malware in the computer systems of foreign adversaries. The government spends billions of dollars on the technology, which was crucial to the American and Israeli attacks on Iran’s nuclear program, and documents previously disclosed by Edward J. Snowden, the former security agency contractor, demonstrated how widely they have been deployed against China. ... The extensive American penetration of the North Korean system also raises questions about why the United States was not able to alert Sony as the attacks took shape last fall, even though the North had warned, as early as June, that the release of the movie “The Interview,” a crude comedy about a C.I.A. plot to assassinate the North’s leader, would be “an act of war.”

28 of 181 comments (clear)

  1. Stands to reason by oheso · · Score: 5, Insightful

    So, the US says North Korea attacked Sony. And the US knows this because it attacked North Korea years ago ...

    1. Re:Stands to reason by SternisheFan · · Score: 5, Interesting
      According to John McAfee, N. Korea had nothing to do with the Sony hack.

      Anti-virus pioneer John McAfee claims to have been in contact with the group of hackers behind the devastating cyber-attack against Sony Pictures and guarantees they are not from North Korea.

      Speaking to IBTimes UK about his current roster of security startups under his Future Tense brand - including secure messaging app Chadder - McAfee spoke about working with the FBI previously but said that, in this case, the agency was "wrong".

      "I can guarantee they are wrong. It has to do with a group of hackers - I will not name them - who are civil libertarians and who hate the confinement the restrictions the music industry and the movie industry has placed on art and so they are behind it."

      http://www.ibtimes.co.uk/john-...

    2. Re:Stands to reason by 3.5+stripes · · Score: 3, Insightful

      You're an anonymous poster, we can't believe a thing you say..

      --


      He tried to kill me with a forklift!
    3. Re:Stands to reason by Anonymous Coward · · Score: 5, Insightful

      "You're an anonymous poster, we can't believe a thing you say.."

      Slashdot doesn't verify users nor restrict signups. Why do you think an account is any more trustworthy? It's not like people make puppet accounts all the time, nor long time users with low UIDs sell their account when they get bored.

      At least with an AC, the only thing you have to judge them by, is their words.
      When you see a +5 comment by an AC, it's normally of very high quality. It had to stand on its own merits with the small number of users that bother to read at 0 or less, and it had to make it to the top without the benefit of the +2.

      I'm seeing this a lot on Slashdot nowadays, and it really shows the difference between the current culture, and the culture when the site was new.
      Older members grew up with the X-Files, Sneakers and "Trust no one". It was a badge of pride to remain anonymous and be judged solely on the quality of your discourse. Now it's more common to see users looking down on anonymous comments, as if a few seconds long account creation process was difficult to game or some weird badge of pride. It's like these users completely miss the point of the hacker culture and have no imagination in how it can be used for social hacking.

    4. Re:Stands to reason by aitikin · · Score: 3, Insightful

      I think this is the most "Interesting" or "Insightful" comment I've seen yet in this (otherwise predictable) thread, yet it has gotten modded down to -1. By doing that, I think you're only proving his point.

      I'm burning my bad mod point, accidentally modded GP down (after it was already -1). That being said, his point about anonymity is kinda off base. We often were of the anonymity mindset, but thought we'd have some degree of credibility by have a pseudonym that we could go by ("Marginal Coward", "3.5 stripes", etc or 3557951, 578410, etc) and people would be able to go, I remember this guy's comments have always been insightful, I'm going to give him more credit, but could clearly have the freedom of anonymity through being an anonymous coward (hell, there's even a check box for me to post this anonymously).

      --
      "Don't meddle in the affairs of a patent dragon, for thou art tasty and good with ketchup." ~ohcrapitssteve
    5. Re:Stands to reason by houghi · · Score: 4, Insightful

      Question: Where did the hack came from?
      Answer: North Korea
      Q: How do you know?
      A: Uh, uhm, ah, we saw it pass our routers that were in North Korea.

      Could have easily been the NSA themselves. The only thing we do not know for sure is at what moment they started lying about what they know. So it could be 100% true or 100% false.

      As such it is useless information.

      --
      Don't fight for your country, if your country does not fight for you.
    6. Re:Stands to reason by Rakarra · · Score: 2

      I think this is the most "Interesting" or "Insightful" comment I've seen yet in this (otherwise predictable) thread, yet it has gotten modded down to -1. By doing that, I think you're only proving his point.

      It had been less than an hour since he posted it. Never ever complain about moderation until at least half a day has gone by. :-)

  2. Freedom fighting made easy by Anonymous Coward · · Score: 5, Insightful

    Thank god people know now that the threat is North Korea hacking a movie company. This way, they can be freedom fighters just by watching a mildly funny movie with Mr. Rogen and Mr. Franco, which is both fun and easy.
    Otherwise, they would have to assume that the threat to their freedom is more like a court approving a single warrant on the telecomm data of more than a million people. Or the CIA spying on the institution that is supposed to supervise them. Fighting these would be much less fun and easy, maybe even dangerous.

  3. Well... by Anonymous Coward · · Score: 5, Insightful

    1. This is another "45 minute" claim of the sort that provided pretext for the Iraq war, isn't it? It might be true, or it might be misleading but have an element of truth, or it might be utter fiction. An intelligence agency is an agency of state security, and "state security" means working on behalf of state interests, and state interests tend not to coincide with the people's interests.

    2. It might then be in the interests of the state to let the attack happen, so it can be used as an excuse to further state interests.

    3. I don't know why people are getting their panties twisted about NK's typically sabre-rattling reaction, which we all know is 1 part "I'm a maniacal dictator" and 1 part "goad the Americans into reacting so we can use their reaction as internal propaganda proving them to be an on-going threat that necessitates our regime". How would the West feel about the release of a popular film in which the assassination of a living head of state is planned? How would your government behave toward you if YOU wrote a book / published a film / performed a play about this?

    1. Re:Well... by DrXym · · Score: 5, Insightful

      How would the West feel about the release of a popular film in which the assassination of a living head of state is planned?

      You mean like if a villain plotted to kill the queen at a baseball game with hypnotised assassins with all kinds of hilarious pratfalls along the way?

      I suspect the reason it doesn't happen more often is due to legal issues, audience reception (and therefore box office) and the fear of repercussions of pissing off the people whose good graces they want to be in. It doesn't stop one book, movie and TV show after another putting fictional heads of state in perilous situations and occasionally bumping them off.

      And if North Korea did some movie about whacking Obama, it's likely it might generate some media noise but I doubt it would do much else.

    2. Re:Well... by Kiwikwi · · Score: 3, Informative

      How would the West feel about the release of a popular film in which the assassination of a living head of state is planned? How would your government behave toward you if YOU wrote a book / published a film / performed a play about this?

      In 2006, Death of a President portrayed the assasination of George W. Bush. I don't remember hearing about it at the time, and even searching the website of Fox News doesn't turn up much controversy.

      In 2008, AFR came out, in which Anders Fogh Rasmussen, the then-Prime Minister of Denmark (and later Secretary-General of NATO) was murdered (and also, incidentally, portrayed as a closeted homosexual, in line with long-standing rumours). It genereted minor controversy, was well-received by critics, and a failure at the box office. I found it forgettable (I literally don't remember any of it).

      Of course, both films were small, independent films, and both can legitimately claim to use the controversial plot for a higher purpose. The Interview... not so much.

  4. Re:Doesn't Matter by Anonymous Coward · · Score: 5, Insightful

    > There's nothing they could do or say that would convince the Slashdot crowd [...]

    Not talking for "the Slashdot crowd" (whatever that might be [1]), but look: the NSA isn't an impartial party here -- and they're whoring for sympathy at the moment. Given its track record, *I* prefer to not trust anything it says.

    --- ---
    [1] To me it looks like a big honkin' strawman, but hey.

  5. And why are you telling us? by gnasher719 · · Score: 5, Interesting

    So they have a secret capability to spy on North Korea, and they tell us because Sony got hacked? So now North Korea knows about it and probably will do something about it? That sounds an incredibly stupid action to me.

    In WWII, when the Brits cracked German encryption, the went to incredible lengths to create believable stories how they found secret German operations that they discovered through decrypted Enigma messages.

    1. Re:And why are you telling us? by The+Grim+Reefer · · Score: 5, Interesting

      I didn't RTFA, but it would be funny (or smart) if it was all BS and the US didn't have this capability. How many man hours will be wasted trying to find and fix it on North Korea's part. They may even execute some of their top people for not finding a non-existent security hole. Not that I personally find that a good thing, but I'm sure the NSA would.

    2. Re:And why are you telling us? by mentil · · Score: 3, Interesting

      However, this wouldn't fool the NK government, if they're not actually responsible for the hack, because they're totalitarian enough to KNOW they weren't responsible. In which case, who is this 'leak' intended to fool? Rhetorical question, it's the American public.

      Alternate option: NK was responsible but the confidential sources are proud enough of their jobs to want to toot the NSA's horn, and don't think NK can actually do anything to stop the hacking, even if they broadly know how they were hacked. Evidence of the Sony hack was found in a counter-hacking performed after the Sony hack, probably using already-existing implants, or was only examined after the Sony hack. The unusual degree of interest that Obama had in the Sony hack suggests that the NSA might've been given an unusual degree of interest in the matter as well, so it's plausible they would've found something beyond what the legal authorities would've.

      --
      Corruption is convincing someone that the selfless ideal is the same as their selfish ideal.
    3. Re:And why are you telling us? by AchilleTalon · · Score: 3, Interesting

      Another alternate opinion, since we are at this. NK was responsible, the NSA actually as planted beacons and by spreading the information they expect the NK to take action to secure its systems and upgrade the old technology beacons doing so. Wiping the old OS and technology and replace it with newer systems and pieces of software already contaminated by the NSA. NSA is then forcing an upgrade to its own beacons.

      --
      Achille Talon
      Hop!
    4. Re:And why are you telling us? by davydagger · · Score: 2

      from personal experiance(US Army), the US goverment's technical capabilities generally lag far behind their ability to bullshit, which of course is their greatest asset.

      The US Government most likely has third rate hackers, and it can catch in sting operations or pressure to work for it. Few if any of the real talent gives a damn, as many of them are in one of the social groups the government has more or less made enemies of state and society for the last 4 decades. The ones that aren't get caught up in the mix, as the government, and affiliated corporations tend to go after the entire computer scene for the actions of a few, building resentment. Many of the ones that nominally support the system also have deeply held convictions, that if they found out the true nature of the system would not hesitate to jump ship. Even the few which are die hard pro-government and its member corporations are viewed with enough hostile suspicion, that they wouldn't be trusted on anything sensentive.

      Whats left are political lackies, the government can dress these people up as "the best experts in the world", and we'll all believe it, but their actual skills lack.

    5. Re:And why are you telling us? by Maow · · Score: 2

      from personal experiance(US Army), the US goverment's technical capabilities generally lag far behind their ability to bullshit, which of course is their greatest asset.

      The US Government most likely has third rate hackers,

      Whats left are political lackies, the government can dress these people up as "the best experts in the world", and we'll all believe it, but their actual skills lack.

      If you believe that the US government, in the form of the NSA, is composed of 3rd-rate hackers, you haven't been paying attention at all to the Snowden revelations.

  6. Red Herring by Iamthecheese · · Score: 5, Insightful

    This isn't even about convincing the American public to support the NSA. It's about giving politicians talking points to justify the support they intend to continue to give.

    --
    If video games influenced behavior the Pac Man generation would be eating pills and running away from their problems.
  7. Snowden leaks from yesterday by Anonymous Coward · · Score: 2, Interesting

    Surely the most obvious answer is that this is an NSA hack, and they threw the blame at North Korea, because a) Snowden leak yesterday reveals NSA does these false flag ops. b) NSA is defending its mass surveillance charges so it needs a scapegoat right now. c) Sony is a TV company and thus good for marketing to have them on your side.

    http://boingboing.net/2015/01/18/ecstatic-nsa-spooks-delight-in.html

    "... they routinely seek to cover their tracks or to lay fake ones instead. In technical terms, the ROC lays false tracks as follows: After third-party computers are infiltrated, the process of exfiltration can begin -- the act of exporting the data that has been gleaned. But the loot isn't delivered directly to ROC's IP address. Rather, it is routed to a so-called Scapegoat Target. That means that stolen information could end up on someone else's servers, making it look as though they were the perpetrators. "

  8. Show me the Evidence please. by abridgedslashdotuser · · Score: 5, Insightful

    I will never believe anything a US government ever says, because they showed in the past that they can not be trusted and that this does not change with whatever party is in charge right now. It is just lies that come out of every official PR persons mouth. Without hard facts to back it up everything they say must be considered not true.

    1. Re:Show me the Evidence please. by Anonymous Coward · · Score: 5, Insightful

      So all they have to do is say the opposite of what they want you to feel, and you'll go along with it?

      Do you understand why aggreeing to the above is just another way of saying "I believe whatever I want to believe, especially if it suits my taste"? Not exactly the objective outlook on existence you seem to want.

    2. Re:Show me the Evidence please. by abridgedslashdotuser · · Score: 3

      Why should i believe the opposite, if i say i don't believe them? Is there only 0 and 1 in your world/world view? This also makes the rest of your claim sound out off place because what you like to think i would do is not the case so your speculations that go further that point went to waste, sorry about that your tried so hard. When i say i do not believe the US-Government that means just that i don't trust them, it does not implicate anywhere that i would just believe the opposite i think you just projected your way of thinking onto me nothing more.

  9. Double standard all the way by anti-pop-frustration · · Score: 4, Insightful

    Snowden warns us that we're being spied on and that the grip the NSA has on the whole Internet goes far beyond what even the most paranoid had imagined and the US government answer is: espionage prosecution, international warrant etc.

    Compare with: Unnamed NSA official, no doubt with the blessing of his bosses, anonymously reveals the same kind of information about NSA spying - but this time because it is convenient for the administration and it fits into their political agenda, there won't be any legal consequences, prosecutions etc., absolutely nothing will happen, we all know it - and even worse - we all passively accept it.

    Laws are being selectively enforced by the government; there are no actually classified documents. There are "things the government wants you to know", those can be leaked and released on demand by "unnamed officials" - screw the legality of it - and there are "things the government doesn't want you to know", and anyone revealing those things will be spied on, harassed and prosecuted (James Risen? Laura Poitras?), it doesn’t matter that the people writing about those are journalists who have no duty of any kind towards the US government, they’re just doing their job.

    If the administration has proof of North Korean involvement, they can present it to try to convince the American public... but wait, no they can’t. They can't do that because the evidence they have comes from the NSA exploiting and hacking systems all over the internet. "Yes, your honor, I saw it all, it was the North Koreans who painted that graffiti. How do I know? I was there that night, burying a few bodies in the empty lot next door".

    The NSA giving actual proof of NK involvement is equivalent to them coming forward and admitting what they are: a threat far more dangerous for the security of the Internet than anything North Korea will ever be capable of.

  10. So the US by future+assassin · · Score: 2

    admits to hacking NK first which they say can be considered an act of war just to let the world know NK commited a possible act of war? WTF?

    --
    by TheSpoom (715771) Uncaring Linux user here. I have nothing to add to this but please continue. *munches popcorn*
  11. Well if John McAfee said it, it must be true! by TiggertheMad · · Score: 2

    According to John McAfee, N. Korea had nothing to do with the Sony hack.

    John McAfee says a lot of things and does a lot of things that seem pretty 'remarkable'. Either he is having one hell of a interesting life, or he is a pathological liar. It seems pretty convenient that he cannot even give this mystery group a name.

    North Korea has a well established history of aggressive, belligerent behavior, and this sort of thing sounds right up their alley. John is going have to cough up a lot more evidence than his good word that an agency with thousands of people and billions of dollars in hardware devoted keeping an eye on a rouge nation is wrong.

    --

    HA! I just wasted some of your bandwidth with a frivolous sig!
  12. Stands to non-reason by mcswell · · Score: 2

    Spying on another country does not constitute an attack; bringing down its systems would be an attack. Like bringing down a company's computer systems would be an attack. (Spying on US companies by network infiltration has been going on for decades, including defense contractors; to my knowledge, while that spying was frowned on, it hasn't been labeled an attack.)

    It's also the case that North Korea is technically still at war with South Korea, which is an ally of ours. And it has attacked boats in international waters. And it has nukes, which it has threatened to use on other countries, including Japan (another US ally) and the US. And it has rockets capable of achieving orbit, which could in principle be used to deliver those nukes. I don't say that any of these are plausible imminent threats, but it would be foolish of the US not to use all means it can--short of attacks--to keep track of the reality behind the threats.

    Whereas Sony is an entertainment company.

  13. Re:Snowden made us safer by ogdenk · · Score: 2

    A.) He didn't bring anything down, just told us what we already knew. The only result is that the IT community looks a lot less like tinfoil hat wearing conspiracy theorists.

    B.) So, our allies' communications and infrastructure are now considered "behind enemy lines"?

    C.) I really do feel slightly safer now, you criminal organization apologist/sympathizer.