Search This Blog

Friday, December 19, 2014

U.S. pledges ‘proportional’ response for N. Korea hack


Workers remove a poster-banner for "The Interview" from a billboard in Hollywood. (Robyn Beck/AFP/Getty Images)

ELLEN NAKASHIMA 
2:13 PM

Federal investigators on Friday accused North Korea of carrying out a computer attackagainst Sony Pictures Entertainment, blaming the Stalinist government for an intrusion that exposed corporate e-mails, wiped out computer data and underlined the cyber capabilities of one of the United States’ top adversaries.

American officials had privately said that they believe North Korea was behind the hacking incident. But the new claim marks a significant escalation — the first time that the United States has openly laid blame on a foreign government for a destructive cyberattack against an American corporation.

“The FBI now has enough information to conclude that the North Korean government is responsible for these actions,” the bureau said in a statement, adding that the conclusion was based in part on a “technical analysis” of the malware used in the attack, which “revealed links to other malware that the FBI knows North Korean actors previously developed.”

VIDEO
View Video: Addressing North Korea's hack of Sony at his end-of-year news conference, President Obama said the movie studio erred in canceling the film. “We cannot have a society in which some dictator someplace can start imposing censorship here in the United States,” he said. ( / AP)

The attack came in apparent retaliation for Sony’s planned Christmas Day release of “The Interview,” a comedy built around the assassination of North Korean leader Kim Jong Un. The company decided earlier this week to cancel the movie’s release in the face of hackers’ threats.

President Obama, during an end-of-year news conference Friday, criticized Sony for that decision, saying he believed it was a “mistake.”

“We cannot have a society in which some dictator someplace can start imposing censorship here in the United States,” Obama said. “Because if somebody is able to intimidate folks out of releasing a satirical movie, imagine what they start doing when they see a documentary that they don’t like or news reports that they don’t like.

Obama said he wished Sony had “spoken to me first,” adding: “I would have told them, ‘Do not get into a pattern where you get intimidated by these criminal attacks.’ ”

The Sony attack marked the first known intrusion by North Korea into private U.S. computer networks and was improbably effective: Not only were the hackers able to penetrate Sony’s system and expose internal e-mails, but they cowed one of Hollywood’s biggest entertainment firms into pulling the movie.

Intelligence officials “know very specifically who the attackers are,” said one individual familiar with the investigation, who like others spoke on condition of anonymity because the case is ongoing. 

North Korea has publicly denied involvement. On Friday, the group that has claimed credit for the attack, calling itself the Guardians of Peace, was said to have sent Sony executives a new message praising them for canceling the release of “The Interview” but warning them to “never” let the movie be “released, distributed or leaked,” according to CNN.

U.S. officials said the administration is weighing a “proportional” response to the attack, but has not specified the options it is considering. 

“We will respond proportionally,” Obama said, “and we will respond at a place and time that we choose.”

U.S. officials have made clear for several years that they have a range of diplomatic, economic, legal and military options at their disposal in response to cyberattacks. Those steps might include indicting individuals believed to be behind the attack, asking like-minded states to join in condemning the intrusion, and if North Korea persists, undertaking a covert action to dismantle the computer systems used in the operation.

Sen. Robert Menendez (D-N.J.), the outgoing chairman of the Foreign Relations Committee, sent Secretary of State John F. Kerry a letter urging him to consider re-designating North Korea as a state sponsor of terrorism in the wake of the cyberattack.

Although officials said the attack against Sony was of a “destructive” nature, it did not meet the traditional definition of a “destructive attack” under international law, which involves death, injury or damage or destruction of physical objects, such as computers. 

At the same time, experts said, the intrusion appears to have violated U.S. sovereignty.

“International law permits all sorts of responses” in such a case, said Michael Schmitt, director of the Stockton Center at the U.S. Naval War College.

“Could we hack back at another state? Strike back at them in cyberspace, shutting down their command and control? Absolutely,” he said. “It could be actions that otherwise violate international law in order to force the other state to resume compliance with international law.”

The hack against Sony has thrown into relief North Korea’s burgeoning cyberwarfare capabilities and its increased willingness to use a tool that can be wielded to disproportionate effect against countries with much larger and more powerful militaries and economies.

North Korea had fledgling computer attack capabilities in the late 1980s but did not begin to develop those capabilities until the late 1990s, when Kim Jong Il’s oldest son, Kim Jong Nam, was given the responsibility of developing a computer center in Pyongyang. Experts say North Korea sees cyberattacks as a way to help close the gap in military capability with countries such as the United States and its ally South Korea.

North Korea has nearly doubled its number of elite hackers over the past two years and has set up bases in outside countries, mainly China, in an effort to boost its capacity to conduct cyberattacks, South Korea’s Yonhap News Agency reported recently, citing military sources.

No comments:

Post a Comment