FBI says North Korea responsible for Sony hack
WASHINGTON (CNN) — North Korea is officially responsible for the cyberattack on Sony Pictures, the FBI announced Friday.
An FBI investigation linked the malware, infrastructure and techniques a group of hackers called “Guardians of Peace” used in the Sony attack to previous North Korean cyberattacks. The North Korean-backed hackers broke into Sony’s servers, published private emails and information and threatened to attack movie theaters screening “The Interview,” a comedy film about an assassination plot on North Korean leader Kim Jong Un.
U.S. officials also tell CNN the hackers routed the attack through servers in countries from Asia, Europe and Latin America, even some in the U.S.
The hackers used common DNS masking techniques to make it look like it was coming from those places, but the National Security Agency and FBI were able to track it back to North Korea.
North Korean internet traffic is routed through China, which is one way they are able to hide their activity, but the FBI was still able to trace it back to the origin, sources tell CNN.
The FBI called North Korea’s actions “outside the bounds of acceptable state behavior” in a statement released Friday and called cyberthreats “one of the gravest national security dangers.”
“North Korea’s actions were intended to inflict significant harm on a U.S. business and suppress the right of American citizens to express themselves,” the FBI said in the release. “We are deeply concerned about the destructive nature of this attack on a private sector entity and the ordinary citizens who worked there.”
Sony backed off its plans to release the movie this week after the hacking group threatened to attack movie theaters. It has no further plans to release the film.
The investigation linked the “tools” of the Sony hack to North Korean cyberattacks in March 2013 against South Korean banks and media outlets.
U.S. officials have said the government will retaliate for the attacks and White House Press Secretary Josh Earnest said the response would be “proportional.”
“Working together, the FBI will identify, pursue, and impose costs and consequences on individuals, groups, or nation states who use cyber means to threaten the United States or U.S. interests,” the FBI said in the release.
Assistant Attorney General for National Security John Carlin applauded Sony’s cooperation with investigators and said the government will continue to “address this and other threats” with partners like Sony.
“We follow the facts and evidence wherever they lead, to identify the fingers at the keyboards that threaten our people, our companies, and our national security,” Carlin said. “Identifying those responsible for these attacks is only the first step, and we will continue to do our part to protect and defend our nation from the asymmetric threats posed through cyberspace.”