Private Firm Gives FBI Alternate Theory On Sony Hack: It Wasn’t North Korea

A banner for "The Interview"is posted outside Arclight Cinemas, Wednesday, Dec. 17, 2014, in the Hollywood section of Los Angeles. A U.S. official says North Korea perpetrated the unprecedented act of cyberwarfare ag... A banner for "The Interview"is posted outside Arclight Cinemas, Wednesday, Dec. 17, 2014, in the Hollywood section of Los Angeles. A U.S. official says North Korea perpetrated the unprecedented act of cyberwarfare against Sony Pictures that exposed tens of thousands of sensitive documents and escalated to threats of terrorist attacks that ultimately drove the studio to cancel all release plans for "The Interview." (AP Photo/Damian Dovarganes) MORE LESS
Start your day with TPM.
Sign up for the Morning Memo newsletter

FBI agents on Monday met with researchers at a private security firm that said the cyber attack on Sony Pictures was likely the work of a handful of individuals and not the North Korean government, according to Politico.

Norse, an IT security firm, contacted the FBI to discuss its findings that indicated the hackers were a combination of a disgruntled Sony employee working with a piracy group, Politico reported Monday.

“When the FBI made the announcement so soon after the initial hack was unveiled, everyone in the [cyber] intelligence community kind of raised their eyebrows at it, because it’s really hard to pin this on anyone within days of the attack,” Norse executive Kurt Stammberger told Politico on Monday.

“Whenever we see some indicators or leads that North Korea may be involved, when we follow those leads, they turn out to be dead ends,” he also said, adding that if the U.S. has incriminating evidence, it should share it with security firms looking to help.

The FBI released a statement on Dec. 19 accusing the North Korean government of the Nov. 24 attack, but several cybersecurity experts have expressed skepticism since the announcement.

On Monday, the FBI told Politico it was standing by its statement.

FBI agents initially questioned Sony employees in early Decemeber before the Bureau began pointing the finger at North Korea.

As Politico noted, multiple firms and experts have questioned the FBI’s account: Robert Graham of Errata Security has persistently rejected the idea; DefCon official and security researcher Marc Rogers fact-checked the evidence in the Bureau’s statement.

Blogger and security expert Bruce Schneier likewise wrote that he was “deeply skeptical,” and linguists at Taia Global, Inc. wrote that their analysis pointed to Russian, not Korean, perpetrators.

Latest Livewire
20
Show Comments

Notable Replies

  1. Avatar for chammy chammy says:

    It sure is sounding more and more that that is probably the case. So what does this say about the FBI and their ability to investigate cyber attacks?

  2. Sorry, I’ve come to question everything Politico reports.

  3. Avatar for dnl dnl says:

    Awwwwww

    The Un will be disappointed.

  4. Multiple firms believe with great certainty that the FBI and all the other firms that believe with great certainty are wrong about the perpetrators.

  5. "upon hearing the news it could be a group of disgruntled employees working with pirates Arizona Senator John McCain said it was time to wage war on his personal arch nemesis - Blackbeard

    Senator McCain went onto note that we must stand with the freedom fighters of the Caribbean in their time of need"

    Seriously though - the FBI pinning the tail on North Korea on this was about as bad as their pin the tail on the anthrax scientist

Continue the discussion at forums.talkingpointsmemo.com

14 more replies

Participants

Avatar for system1 Avatar for ncsteve Avatar for chammy Avatar for dopper0189 Avatar for psyclone Avatar for chatterboxing Avatar for 538liberal Avatar for arbalest Avatar for dnl Avatar for jinmichigan Avatar for misterneutron Avatar for tsp Avatar for an_american

Continue Discussion
Masthead Masthead
Founder & Editor-in-Chief:
Executive Editor:
Managing Editor:
Deputy Editor:
Editor at Large:
General Counsel:
Publisher:
Head of Product:
Director of Technology:
Associate Publisher:
Front End Developer:
Senior Designer: