Sony hack: sacked employees could be to blame, researchers claim - The Guardian

Network Front | The Guardian
Sony hack: sacked employees could be to blame, researchers claim
Today, December 30th 9:57am
· Jemima Kiss
·
sony pictures
sony
hacking
technology
the interview
kim jong-un
cyberwar
fbi
us news
internet
Shared by 1 person
Security experts investigating the devastating hack against Sony Pictures appear to be moving away from the theory that the attack was carried out by North Korea, focusing instead on disgruntled former employees of the firm.
Researchers at Norse cybersecurity claim that six former employees could have compromised the company’s networks, arguing that accessing and navigating selective information would take a detailed knowledge of Sony’s systems.
Norse is not part of the official FBI investigation, but did brief the government on Monday, the company said. Though noting that the findings are “hardly conclusive”, Norse senior vice president Kurt Stammberger told theSecurity Ledger that nine researchers had begun to explore the theory that an insider with motive against Sony would be best placed to execute a hack.
The team had started by examining a leaked database of employees made redundant during a a restructuring in May.
Of six people Norse claim had involvement with the hack, one was a former staffer made redundant in May after 10 years at the firm. She had a very technical background and had used social media to berate the company after losing her job, it is claimed.
Working with pro-piracy activists in the US, Asia and Europe, she may have used secretive discussion forums and IRC (chat) to coordinate the attack, researchers claim.
“We see evidence for those two groups of people getting together,” Stammberger said.
Meanwhile, FBI investigators are exploring whether hackers outside North Korea were hired for the attack, a source told Reuters on Monday. North Korea lacks some of the capability required to carry out the attack, the agency believes, so may have contracted out some of the work.
The development indicates that the FBI may be shifting from its previous official position, which stated that “the FBI now has enough information to conclude that the North Korean government is responsible for these actions”, while US president Barack Obama described it as “an act of cybervandalism”. North Korea has denied any involvement.
However, the FBI’s statement has been met with scepticism by the security community who have pointed to inconsistencies and conflicting evidence in the case against North Korea.
Marc Rogers, head of security for Defcon, said that the malware used in the hack would have required extensive knowledge of Sony’s systems. “While it’s plausible that an attacker could have built up this knowledge over time and then used it to make the malware, Occam’s razor suggests the simpler explanation of an insider, “ he wrote. “It also fits with the pure revenge tact that this started out as.”
Former Anonymous hacker Hector Monsegur, known as Sabu, also said he doubted North Korea was responsible. “They don’t have the infrastructure [ to download that volume of data]. They do have state sponsored hackers, but so does China, so does the USA,” He told CBS News that it is more likely a former employee downloaded and then sold the data from Sony.
“The FBI points to reused code from previous attacks associated with North Korea, as well as similarities in the networks used to launch the attacks,” said writer Bruce Schneier. “This sort of evidence is circumstantial at best. It’s easy to fake, and it’s even easier to interpret it wrong. In general, it’s a situation that rapidly devolves into storytelling, where analysts pick bits and pieces of the ‘evidence’ to suit the narrative they already have worked out in their heads.”
Schneier also said that diplomatically, it may suit the US government to be “overconfident in assigning blame for the attack” to try and discourage future attacks by nation states.
He also pointed to comments by Harvard law professor Jonathan Zittrain, who said Sony might be encouraged to present the hack as an act or terrorism to help fend of likely lawsuits from current and former employees damaged by leaked material.
“If Sony can characterize this as direct interference by or at the behest of a nation-state, might that somehow earn them the kind of immunity from liability that you might see other companies getting when there’s physical terrorism involved, sponsored by a state?” Zittrain told AP.

Comments

Post a Comment

Popular posts from this blog

New questions arise about House Democratic caucus’s loyalty to Obama | » Democrats Stymie Obama on Trade 12/06/15 22:13 from WSJ.com: World News - World News Review

Image
New questions arise about House Democratic caucus’s loyalty to Obama Friday June 12 th , 2015  at  10:24 PM 1 Share President Obama, with House Minority Leader Nancy Pelosi at his side, leaves a meeting where he made a last-ditch appeal to House Democrats for his trade agenda on Friday in Washington. (Kevin Lamarque/Reuters) Cheers rang out Thursday evening when President Obama made a surprise visit to the annual congressional baseball game at National Park. Thousands of Democratic staffers began to chant: “O-ba-ma! O-ba-ma!” More unexpectedly, Republican lawmakers and staffers, who have been locked in battle with the president for more than six years, began a cheer of their own: “TPA, TPA!” they chanted, voicing approval for Obama’s trade promotion agenda. Obama flashed the GOP side a thumbs-up. Inside the Democratic dugout, according to several senior aides and lawmakers, the president’s usual allies were appalled by the scene: He was w
Read more

Немецкий историк: Запад был наивен, надеясь, что Россия станет партнёром - Военное обозрение

Image
Немецкий историк: Запад был наивен, надеясь, что Россия станет партнёром - Военное обозрение Визит военно-морской группой НАТО в Грузию взгляд из России - Рамблер Новости Петр Павел: Совет Россия-НАТО может обсудить координацию в Сирии и Ираке - Федеральный справочник Major NATO Exercise With Sweden Highlights Ability to Deter Russian Aggression - Daily Signal Turkey's plan to acquire Russia's S-400 air-defense system may never happen, analysts say - CNBC Боевые корабли НАТО вошли в грузинский порт Батуми - Федеральное агентство новостей No.1 Они проигрывают по всем фронтам: Клинцевич объяснил тревоги стран НАТО о кибербезопасности - Федеральное агентство новостей No.1 Addiction to video games isn't child's play - Lewiston Sun Journal Mandalay Bay shooting - Google News: Las Vegas gunman 'lost significant amount of wealth' ahead of shooting, motive still unknown - New York Daily News Massachusetts becomes first state to ban bump stocks after Vegas shoo
Read more

8:45 AM 11/9/2017 - Putin Is Hoping He And Trump Can Patch Things Up At Meeting In Vietnam

Image
Newsweek Putin  Is Hoping He And Trump Can Patch Things Up At Meeting In Vietnam Newsweek Russia's President Vladimir  Putin  talks to  U.S.  President Donald Trump during their bilateral meeting at the G20 summit in Hamburg. Carlos Barria/Reuters. Russia's annexation of Crimea in 2014 is not recognized by a majority of U.N. states and ... The  ... Prospects for  Putin -Trump Meeting at APEC Summit Unclear U.S. News & World Report Trump,  Putin  to meet amid campaign collusion investigation The Globe and Mail Russia's excitement for 'their man' Donald Trump has turned sour in just one year The Independent Interactive Investor  - Metro US all 85 news articles »
Read more

Review: ‘The Great War of Our Time’ by Michael Morell with Bill Harlow | FBI File Shows Whitney Houston Blackmailed Over Lesbian Affair | Schiff, King call on Obama to be aggressive in cyberwar, after purported China hacking | The Iraqi Army No Longer Exists | Hacking Linked to China Exposes Millions of U.S. Workers | Was China Behind the Latest Hack Attack? I Don’t Think So - U.S. National Security and Military News Review - Cyberwarfare, Cybercrimes and Cybersecurity - News Review

Image
FBI File Shows Whitney Houston Blackmailed Over Lesbian Affair  | Schiff, King call on Obama to be aggressive in cyberwar, after purported China hacking  | The Iraqi Army No Longer Exists  | Hacking Linked to China Exposes Millions of U.S. Workers  | Was China Behind the Latest Hack Attack? I Don’t Think So  | U.S. National Security and Military News Review Cyberwarfare, Cybercrimes and Cybersecurity - News Review Review: ‘The Great War of Our Time’ by Michael Morell with Bill Harlow Sunday June 7 th , 2015  at  9:02 PM Washington Free Beacon 1 Share This undated file image posted by the Raqqa Media Center shows fighters of the Islamic State wave the group's flag from a damaged display of a government fighter jet following the battle in Raqqa, Syria / AP BY:  Jack Caravelli Michael Morell’s insightful new book,  The Great War of Our Time: The CIA’s Fight Against Terrorism ,describes how the Central Int
Read more

10:37 AM 11/2/2017 - RECENT POSTS: Russian propagandists sought to influence LGBT voters with a "Buff Bernie" ad

Image
Russian propagandists sought to influence LGBT voters with a "Buff Bernie" ad. The World News and Times M.N.: Donald, you should really check your IQ. It is very easy to kill that p.o.s., the task is to find out who is behind him.  4:45 PM 10/31/2017 4:45 PM 10/31/2017 3:32 PM 10/31/2017 ALL POSTS ON G+ 9:09 AM 10/30/2017 Video: Manafort walks to the FBI field office 8:21 AM 10/30/2017 Paul Manafort, Who Once Ran Trump Campaign, Told to Surrender New York Times-6 minutes ago 8:16 AM 10/30/2017 Russian-Backed Facebook Accounts Organized Events on All Sides of Polarizing Issues 5:31 PM 10/29/2017 Sharing fake news should be punishable as libel 2:45 PM 10/29/2017 Russian propagandists allegedly targeted blacks with free self-defense classes 8:32 AM 10/29/2017 Gates: In a close election or legislative battle, they can spell the difference. Foreign Interference Has Bedeviled D.C. For Decades, With No Easy Reponse How social media helped weaponize Donald Trumps elect
Read more

3:49 AM 11/7/2017 - Recent Posts

Image
Trump Investigations Report Current News | Reviews of media reports | Selected reading lists | Video and Audio News | News Topics RSS Feeds | News, Reviews, Analysis, Opinions Posts on G+ from mikenova (2 sites) Public RSS-Feed of Mike Nova. Created with the PIXELMECHANICS 'GPlusRSS-Webtool' at http://gplusrss.com: 3:40 PM 11/6/2017 With Manafort, It Really Is About Russia, Not Ukraine New York Times 3:40 PM 11/6/2017 With Manafort, It Really Is About Russia, Not Ukraine New York Times Saved Stories Saved Stories - None VOA Newscasts - November 06, 2017 Paradise Papers: Tax haven secrets of ultra-rich exposed - BBC News At least nine people in Trump's orbit had contact with Russians ... - Washington Post US commerce secretary invests in firm linked to Putin family and allies, reports say - Washington Post Russia launched social media support for Trump almost immediately after he announced his campaign - Raw Story Texas gunman k... Public RSS-Feed of Mike
Read more

» Suddenly, Russia Is Confident No Longer - NPR 20/12/14 11:55 from Mike Nova's Shared Newslinks | Russia invites North Korean leader to Moscow for May visit - Reuters | Belarus Refuses to Trade With Russia in Roubles - Newsweek | F.B.I. Evidence Is Often Mishandled, an Internal Inquiry Finds - NYT | Ukraine crisis: Russia defies fresh Western sanctions - BBC News | Website Critical Of Uzbek Government Ceases Operation | North Korea calls for joint inquiry into Sony Pictures hacking case | Turkey's Erdogan 'closely following' legal case against rival cleric | Dozens arrested in Milwaukee police violence protest

Image
POLITICS F.B.I. Evidence Is Often Mishandled, an Internal Inquiry Finds By  MATT APUZZO  and  MICHAEL S. SCHMIDT DEC. 19, 2014 Photo The J. Edgar Hoover F.B.I. building in Washington. Auditors have found many problems with how the bureau handles evidence.   Credit Brendan Hoffman for The New York Times Continue reading the main story Continue reading the main story Share This Page Email Share Tweet Save More Continue reading the main story F.B.I.  agents in every region of the country have mishandled, mislabeled and lost evidence, according to a highly critical internal investigation that discovered errors with nearly half the pieces of evidence it reviewed. The evidence collection and retention system is the backbone of the  F.B.I. ’s investigative process, and the report said it is beset by problems. It also found that the F.B.I. was storing more weapons, less money and valuables, and two tons more drugs than its records had indicated. The report’
Read more