In addition to the activation of the malware on November 24, the message included a warning for Sony to decide on their course of action by 11:00 p.m. This email message had been mostly ignored by executives, lost in the volume they had received or treated as spam email.
This followed a message that several Sony Pictures executives had received via email on the previous Friday, November 21 the message, coming from a group called "God'sApstls", demanded "monetary compensation" or otherwise, "Sony Pictures will be bombarded as a whole". Several Sony-related Twitter accounts were also taken over. Sony was made aware of the hack on Monday, November 24, 2014, as the malware previously installed rendered many Sony employees' computers inoperable by the software, with the warning by a group calling themselves the Guardians of Peace, along with a portion of the confidential data taken during the hack. The components clearly suggest an intent to gain repeated entry, extract information, and be destructive, as well as remove evidence of the attack. Components of the attack included a listening implant, backdoor, proxy tool, destructive hard drive tool, and destructive target cleaning tool. Although Sony was not specifically mentioned in its advisory, US-CERT said that attackers used a Server Message Block (SMB) Worm Tool to conduct attacks against a major entertainment company. The hackers involved claim to have taken more than 100 terabytes of data from Sony, but that claim has never been confirmed. A purported member of the Guardians of Peace (GOP) who has claimed to have performed the hack stated that they had access for at least a year prior to its discovery in November 2014, according to Wired.
investigators say the culprits spent at least two months copying critical files. The exact duration of the hack is yet unknown. 4.1 Doubts about accusations against North Korea.accusations and formal charges against North Korea
United States intelligence officials, after evaluating the software, techniques, and network sources used in the hack, alleged that the attack was sponsored by the government of North Korea, which has since denied all responsibility. theater chains opted not to screen The Interview in response to these threats, Sony chose to cancel the film's formal premiere and mainstream release, opting to skip directly to a downloadable digital release followed by a limited theatrical release the next day. ĭuring the hack, the group demanded that Sony withdraw its then-upcoming film The Interview, a comedy about a plot to assassinate North Korean leader Kim Jong-un, and threatened terrorist attacks at cinemas screening the film. The perpetrators then employed a variant of the Shamoon wiper malware to erase Sony's computer infrastructure. The data included personal information about Sony Pictures employees and their families, emails between employees, information about executive salaries at the company, copies of then-unreleased Sony films, plans for future Sony films, scripts for certain films, and other information. On November 24, 2014, a hacker group identifying itself as " Guardians of Peace" leaked a release of confidential data from the film studio Sony Pictures. The headquarters of Sony Pictures in Culver City, California, United States
0 kommentar(er)
