Close
  • Latest News
  • Big Data and Analytics
  • Cloud
  • Networking
  • Cybersecurity
  • Applications
  • IT Management
  • Storage
  • Sponsored
  • Mobile
  • Small Business
  • Development
  • Database
  • Servers
  • Android
  • Apple
  • Innovation
  • Blogs
  • PC Hardware
  • Reviews
  • Search Engines
  • Virtualization
Read Down
Sign in
Close
Welcome!Log into your account
Forgot your password?
Read Down
Password recovery
Recover your password
Close
Search
Logo
Logo
  • Latest News
  • Big Data and Analytics
  • Cloud
  • Networking
  • Cybersecurity
  • Applications
  • IT Management
  • Storage
  • Sponsored
  • Mobile
  • Small Business
  • Development
  • Database
  • Servers
  • Android
  • Apple
  • Innovation
  • Blogs
  • PC Hardware
  • Reviews
  • Search Engines
  • Virtualization
More
    Home Cybersecurity
    • Cybersecurity

    FBI Investigation Confirms North Korea Behind Sony Network Breach

    By
    Robert Lemos
    -
    December 19, 2014
    Share
    Facebook
    Twitter
    Linkedin
      Sony Mistake B

      The Federal Bureau of Investigation confirmed on Dec. 19 that the United States has concluded that the government of North Korea is the culprit behind the attack that has disrupted Sony Pictures Entertainment’s business.

      In a statement published on the law enforcement agency’s Website, the FBI and private-industry experts concluded that the attack showed similarities to previous North Korean operations in a number of technical ways, including coding similarities, the use of the same encryption algorithms, common data deletion methods, and the use of the same compromised networks observed in previous attacks. The attackers also used the same infrastructure as other attacks attributed to North Korea.

      While an unknown group calling itself the “Guardians of Peace” has claimed responsibility for the attack, the United States considers the attack to be a nation-state operation, the FBI stated.

      “As a result of our investigation, and in close collaboration with other U.S. government departments and agencies, the FBI now has enough information to conclude that the North Korean government is responsible for these actions,” the agency said.

      The attack on Sony Pictures is one of the most serious cyber-attacks yet documented. In late November, the company revealed that attackers had stolen tens of terabytes of information from Sony Pictures and then attempted to hide their tracks by deleting data on the company’s systems.

      On Dec. 17, the company canceled the release of the satirical movie, The Interview, after terrorist threats allegedly made by the “Guardians of Peace” attackers led four major theater chains to refuse to screen the movie.

      President Obama called the company’s capitulation to the demands “a mistake” on Dec. 19. “They caused a lot of damage and we will respond, we will respond proportionally and we will respond in a place and time we choose,” he said during a press briefing. “We cannot have a society in which some dictator someplace can start imposing censorship in the United States.”

      The attack is also a parable of the dangers of lax security. Administrators at Sony Pictures appear to have left passwords in a folder on one of the company’s systems. In addition, the company’s security team appears to mostly consist of management, which has led some to accuse the firm of having a “top-heavy” security team.

      The FBI praised Sony Pictures for coming forward so quickly and criticized the attackers for targeting a private company.

      “We are deeply concerned about the destructive nature of this attack on a private sector entity and the ordinary citizens who worked there,” the FBI stated. “Further, North Korea’s attack on SPE reaffirms that cyber-threats pose one of the gravest national security dangers to the United States.”

      While the evidence may point to North Korea, the technical evidence could be faked, Adam Kujawa, head of malware intelligence at endpoint security firm Malwarebytes, stressed in a statement to eWEEK. The actions of the hackers do not necessarily align with nation-state actors, he said.

      “What we know about [North Korea] is that they like to brag when they do something, yet they have announced, not only to the world but also to their own information-censored country that they didn’t do anything,” Kujawa said. “Until we know all the facts, and I seriously doubt we will ever know them all, making quick assumptions and jumping the gun is ill-advised.”

      Robert Lemos
      Robert Lemos is an award-winning freelance journalist who has covered information security, cybercrime and technology's impact on society for almost two decades. A former research engineer, he's written for Ars Technica, CNET, eWEEK, MIT Technology Review, Threatpost and ZDNet. He won the prestigious Sigma Delta Chi award from the Society of Professional Journalists in 2003 for his coverage of the Blaster worm and its impact, and the SANS Institute's Top Cybersecurity Journalists in 2010 and 2014.

      MOST POPULAR ARTICLES

      Big Data and Analytics

      Alteryx’s Suresh Vittal on the Democratization of...

      James Maguire - May 31, 2022 0
      I spoke with Suresh Vittal, Chief Product Officer at Alteryx, about the industry mega-shift toward making data analytics tools accessible to a company’s complete...
      Read more
      Cybersecurity

      Visa’s Michael Jabbara on Cybersecurity and Digital...

      James Maguire - May 17, 2022 0
      I spoke with Michael Jabbara, VP and Global Head of Fraud Services at Visa, about the cybersecurity technology used to ensure the safe transfer...
      Read more
      Cloud

      IGEL CEO Jed Ayres on Edge and...

      James Maguire - June 14, 2022 0
      I spoke with Jed Ayres, CEO of IGEL, about the endpoint sector, and an open source OS for the cloud; we also spoke about...
      Read more
      Applications

      Cisco’s Thimaya Subaiya on Customer Experience in...

      James Maguire - May 10, 2022 0
      I spoke with Thimaya Subaiya, SVP and GM of Global Customer Experience at Cisco, about the factors that create good customer experience – and...
      Read more
      Big Data and Analytics

      GoodData CEO Roman Stanek on Business Intelligence...

      James Maguire - May 4, 2022 0
      I spoke with Roman Stanek, CEO of GoodData, about business intelligence, data as a service, and the frustration that many executives have with data...
      Read more
      Logo

      eWeek has the latest technology news and analysis, buying guides, and product reviews for IT professionals and technology buyers. The site’s focus is on innovative solutions and covering in-depth technical content. eWeek stays on the cutting edge of technology news and IT trends through interviews and expert analysis. Gain insight from top innovators and thought leaders in the fields of IT, business, enterprise software, startups, and more.

      Facebook
      Linkedin
      RSS
      Twitter
      Youtube

      Advertisers

      Advertise with TechnologyAdvice on eWeek and our other IT-focused platforms.

      Advertise with Us

      Menu

      • About eWeek
      • Subscribe to our Newsletter
      • Latest News

      Our Brands

      • Privacy Policy
      • Terms
      • About
      • Contact
      • Advertise
      • Sitemap
      • California – Do Not Sell My Information

      Property of TechnologyAdvice.
      © 2022 TechnologyAdvice. All Rights Reserved

      Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.

      ×