<img height="1" width="1" style="display:none" src="https://www.facebook.com/tr?id=192888919167017&amp;ev=PageView&amp;noscript=1">
Monday, March 18, 2024
March 18, 2024

Linkedin Pinterest

U.S. weighs response to Sony hack, threats

No definitive proof North Korea behind cyberattacks

The Columbian
Published:
2 Photos
Cars enter Sony Pictures Entertainment headquarters in Culver City, Calif., early this month. Companies across the globe are on high alert to tighten up network security to avoid being the next company brought to its knees by hackers like those that executed the dramatic cyberattack against Sony Pictures Entertainment. The hack, which a U.S.
Cars enter Sony Pictures Entertainment headquarters in Culver City, Calif., early this month. Companies across the globe are on high alert to tighten up network security to avoid being the next company brought to its knees by hackers like those that executed the dramatic cyberattack against Sony Pictures Entertainment. The hack, which a U.S. official has said investigators believe is linked to North Korea, culminated in the cancellation of a Sony film, "The Interview," and ultimately could cost the movie studio hundreds of millions of dollars. Photo Gallery

WASHINGTON — The detective work blaming North Korea for the Sony hacker break-in appears so far to be largely circumstantial, The Associated Press has learned. The dramatic conclusion of a Korean role is based on subtle clues in the hacking tools left behind and the involvement of at least one computer in Bolivia previously traced to other attacks blamed on the North Koreans.

Experts cautioned that hackers notoriously employ disinformation to throw investigators off their tracks, using borrowed tools, tampering with logs and inserting false references to language or nationality.

The hackers are believed to have been conducting surveillance on the network at Sony Pictures Entertainment Inc. since at least the spring, based on computer forensic evidence and traffic analysis, a person with knowledge of the investigation told the AP.

If the hackers hadn’t made their presence known by making demands and destroying files, they probably would still be inside because there was no indication their presence was about to be detected, the person said. This person, who described the evidence as circumstantial, spoke only on condition of anonymity because he was not authorized to talk openly about the case.

Still, the evidence has been considered conclusive enough that a U.S. official told the AP that federal investigators have now connected the Sony hacking to North Korea.

In public, White House spokesman Josh Earnest on Thursday declined to blame North Korea, saying he didn’t want to get ahead of investigations by the Justice Department and the FBI. Earnest said evidence shows the hacking was carried out by a “sophisticated actor” with “malicious intent.”

All this has led to a dilemma for the Obama administration: How and whether to respond?

An earlier formal statement by the White House National Security Council also did not name North Korea but noted that “criminals and foreign countries regularly seek to gain access to government and private sector networks” and said “we are considering a range of options in weighing a potential response. ” The U.S. official who cited North Korea spoke on condition of anonymity because that official was not authorized to openly discuss an ongoing criminal case.

U.S. options against North Korea are limited. The U.S. already has a trade embargo in place, and there is no appetite for military action. Even if investigators could identify and prosecute the individual hackers believed responsible, there’s no guarantee that any who are overseas would ever see a U.S. courtroom. Hacking back at North Korean targets by U.S. government experts could encourage further attacks against American targets.

“We don’t sell them anything, we don’t buy anything from them and we don’t have diplomatic relations,” said William Reinsch, a former senior U.S. Commerce Department official who was responsible for enforcing international sanctions against North Korea and other countries. “There aren’t a lot of public options left.”

Sony abruptly canceled the Dec. 25 release of its comedy “The Interview,” which the hackers had demanded partly because it included a scene depicting the assassination of North Korea’s leader. Sony cited the hackers’ threats of violence at movie theaters that planned to show the movie, although the Homeland Security Department said there was no credible intelligence of active plots. The hackers had been releasing onto the Internet huge amounts of highly sensitive — and sometimes embarrassing — confidential files they stole from inside Sony’s computer network.

North Korea has publicly denied it was involved, though it has described the hack as a “righteous deed.”

The episode is sure to cost Sony many millions of dollars, though the eventual damage is still anyone’s guess. In addition to lost box-office revenue from the movie, the studio faces lawsuits by former employees angry over leaked Social Security numbers and other personal information. And there could be damage beyond the one company.

Sony’s decision to pull the film has raised concerns that capitulating to criminals will encourage more hacking.

Loading...