Skip to main content

No Network Too Secure For Hackers... Sony Included

The Department of Justice and the FBI released its findings in the Sony Pictures Entertainment hacking; says North Korea is to blame.  Ex-hacker, Hector Monsegur, doubts these findings.

"It could be. In my personal opinion, it's not," Monsegur said. "Look at the bandwidth going into North Korea. I mean, the pipelines, the pipes going in, handling data, they only have one major ISP across their entire nation. That kind of information flowing at one time would have shut down North Korean Internet completely."

**Update from the DOJ...**

Today, the FBI would like to provide an update on the status of our investigation into the cyber attack targeting Sony Pictures Entertainment (SPE).  In late November, SPE confirmed that it was the victim of a cyber attack that destroyed systems and stole large quantities of personal and commercial data.  A group calling itself the “Guardians of Peace” claimed responsibility for the attack and subsequently issued threats against SPE, its employees, and theaters that distribute its movies.

The FBI has determined that the intrusion into SPE’s network consisted of the deployment of destructive malware and the theft of proprietary information as well as employees’ personally identifiable information and confidential communications.  The attacks also rendered thousands of SPE’s computers inoperable, forced SPE to take its entire computer network offline, and significantly disrupted the company’s business operations.

More from Monsegur here.

After discovering the intrusion into its network, SPE requested the FBI’s assistance.  Since then, the FBI has been working closely with the company throughout the investigation.  Sony has been a great partner in the investigation, and continues to work closely with the FBI. Sony reported this incident within hours, which is what the FBI hopes all companies will do when facing a cyber attack.  Sony’s quick reporting facilitated the investigators’ ability to do their jobs, and ultimately to identify the source of these attacks.

As a result of our investigation, and in close collaboration with other U.S. Government departments and agencies, the FBI now has enough information to conclude that the North Korean government is responsible for these actions.  While the need to protect sensitive sources and methods precludes us from sharing all of this information, our conclusion is based, in part, on the following:

·         Technical analysis of the data deletion malware used in this attack revealed links to other malware that the FBI knows North Korean actors previously developed.  For example, there were similarities in specific lines of code, encryption algorithms, data deletion methods, and compromised networks.

·         The FBI also observed significant overlap between the infrastructure used in this attack and other malicious cyber activity the U.S. Government has previously linked directly to North Korea.  For example, the FBI discovered that several Internet protocol (IP) addresses associated with known North Korean infrastructure communicated with IP addresses that were hardcoded into the data deletion malware used in this attack. 

·         Separately, the tools used in the SPE attack have similarities to a cyber attack in March of last year against South Korean banks and media outlets, which was carried out by North Korea.


We are deeply concerned about the destructive nature of this attack on a private sector entity and the ordinary citizens who worked there.  Further, North Korea’s attack on SPE reaffirms that cyber threats pose one of the gravest national security dangers to the United States.  Though the FBI has seen a wide variety and increasing number of cyber intrusions, the destructive nature of this attack, coupled with its coercive nature, sets it apart.  North Korea’s actions were intended to inflict significant harm on a U.S. business and suppress the right of American citizens to express themselves.  Such acts of intimidation fall outside the bounds of acceptable state behavior.  The FBI takes seriously any attempt – whether through cyber-enabled means, threats of violence, or otherwise – to undermine the economic and social prosperity of our citizens.

The FBI stands ready to assist any U.S. company that is the victim of a destructive cyber attack or breach of confidential business information.  Further, the FBI will continue to work closely with multiple departments and agencies as well as with domestic, foreign, and private sector partners who have played a critical role in our ability to trace this and other cyber threats to their source.  Working together, the FBI will identify, pursue, and impose costs and consequences on individuals, groups, or nation states who use cyber means to threaten the United States or U.S. interests.



Labels:

Comments

Post a Comment

Popular posts from this blog

In wake of the Zika virus, travel, spring break still O.K.

Representatives from the CDC and the NIH were on hand at the White House during Monday's press briefing to update the public and address concerns over the Zika virus that has caused some babies to be born with deformities. Dr. Anne Schuchat from the Centers for Disease Control and Dr. Tony Fauci from the National Institutes of Health told reporters that a vaccine is in the making.   The pair also said they are particulary concerned about women who are pregnant, or plan to get pregnant, who have either traveled to or plan to travel to areas of South America and the Carribean known to have the Zika virus. Despite those bold statements, the doctors said there is no wide-spread concern and that Americans should continue to travel, including during upcoming college spring breaks --  when college students travel to warmer climate destinations to escape winter weather. "Travel to Zika-affected areas is very common among Americans, and we don’t think that needs to stop&quo
Post a Comment
Read more

President Biden's EV Agenda

  Electric Vehicles   President Biden’s Investing in America Agenda is Unleashing a Manufacturing and Clean Energy Boom and Accelerating the Production of Affordable Electric Vehicles   As part of President Biden’s goal of having 50 percent of all new vehicle sales be electric by 2030, the White House is announcing the first set of public and private commitments to support America's historic transition to electric vehicles (EV) under the EV Acceleration Challenge.   These commitments are part of President Biden's  Investing in America  agenda to spur domestic manufacturing, strengthen supply chains, boost U.S. competitiveness and create good-paying jobs. Because of President Biden’s leadership and historic investments, electric vehicle sales have tripled and the number of publicly available charging ports has grown by over 40 percent since he took office. There are now more than three million EVs on the road and over 135,000 public EV chargers across the country.     President
Post a Comment
Read more

President Biden discusses America's economy during July 4th address to military families.

"Our Economy is the strongest in the world."  " . ..  Our economy is growing, but not without pain.  Liberty is under assault -- assault both here and abroad.  In recent days, there's been reason to think that this country is moving backward, that  freedom  is being reduced, that rights we assumed were protected are no longer.  A reminder that we remain in an ongoing battle for the soul of America, as we have for over 200 years.  4th of July photo courtesy of - the Internet. I know it can be exhausting and unsettling.  But tonight, I want you to know we're going to get through all of this -- for all that we have faced, that we are going to get through this, and look how far we've come.    We're reclaiming our way of life in a pandemic.  Vaccines are nearly available to every American, restrictions lifted, the Fourth of July together again at the White House.    And for all the challenges, America has the strongest economy in the world.  More people are wo
Post a Comment
Read more