<p dir="ltr">What about the cost to Belgacom from the nsa regin hack? What if they need a bailout due to the loss of confidence after such a public breach one wonders. Or are they just collateral damage.</p>
<p dir="ltr">Some of the investigators point to malware written in Korean, but Monsegur said that doesn't necessarily mean the hackers are Korean.</p>
<p dir="ltr">"Well, it doesn't tell me much. I've seen Russian hackers pretending to be Indian. I've seen Ukrainian hackers pretending to be Peruvian.There's hackers that pretend they're little girls. They do this for misinformation, disinformation, covering their tracks," he said. "Do you really think a bunch of nerds from North Korea are going to fly to New York and start blowing up movie theaters? No. It's not realistic. It's not about 'The interview.' It's about money. It's a professional job."</p>
<p dir="ltr">Monsegur thinks it's also possible this was an inside job, that an employee or consultant downloaded all the information from Sony's servers and then sold it to someone else</p>
<p dir="ltr"><a href="http://www.cbsnews.com/news/sony-hack-former-anonymous-hacker-not-convinced-north-korea-is-responsible/?google_editors_picks=true">http://www.cbsnews.com/news/sony-hack-former-anonymous-hacker-not-convinced-north-korea-is-responsible/?google_editors_picks=true</a></p>
<div class="gmail_quote">On 18/12/2014 2:51 PM, "Dave Aitel" <<a href="mailto:dave@immunityinc.com">dave@immunityinc.com</a>> wrote:<br type="attribution"><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
<div bgcolor="#FFFFFF" text="#000000">
The Sony Hack is not just fun and games (if it was, The Interview
would have dropped as a .torrent long ago). It's not about a movie
or even Sony, at all. When you build a nuclear program, you have to
explode at least one warhead so that other countries see that you
can do it. The same is true with Cyber. <br>
<br>
Iran did this exact same near-mortal blow to Saudi Aramco, as a way
of demonstrating that they could and would. That's what just
happened to Sony, but they didn't see it in time, and didn't realize
they were going to have to fold. If you recognize the signature of
this kind of nation-state attack, it is not hard to see ahead of
time what is going to happen, and we at Immunity have gone <a href="http://www.aol.com/article/2014/12/05/sony-pictures-hack-included-celebrity-social-security-numbers/21003381/" target="_blank">on
the record</a> weeks ago saying that this was North Korea, and
Sony was going to have to pull the movie to survive.<br>
<br>
Kim Zetter wrote a <a href="http://www.wired.com/2014/12/evidence-of-north-korea-hack-is-thin/" target="_blank">Wired
article</a> in which she called out our <a href="http://www.businessinsider.com/sony-hack-should-be-considered-an-act-of-war-2014-12#comments" target="_blank">Business
Insider</a> piece as fantasy. She's since edited us out of the
article, but it is ironic that she calls on the "Cutting Sword of
Justice" as another hacker group, when in fact they are, like
#opisrael, directly Iranian state-based efforts (to be specific,
MOIS) - the very exact kind of operation people are failing to see
here. <br>
<br>
Clearly, not all hacking (even very impactful hacking) by random
hacker groups is war/terrorism, but when a nation state decides to
take out a business in another country, it's hard for our policy
team to find another word for it. You do not see the United States
using cyber efforts to do this to businesses in other countries, and
when Iran or North Korea, or even China, does it, that's stepping
over the line. The United State's initial message was that they'd
rather have the FBI handle it than the USAF or even JSOC...<br>
<br>
I guess what I'm saying is, you can learn more about cyber war at
the bar at <a href="http://infiltratecon.org" target="_blank">Infiltrate </a>than
in Wired so far. ;><br>
<br>
-dave<br>
<br>
</div>
<br>_______________________________________________<br>
Dailydave mailing list<br>
<a href="mailto:Dailydave@lists.immunityinc.com">Dailydave@lists.immunityinc.com</a><br>
<a href="https://lists.immunityinc.com/mailman/listinfo/dailydave" target="_blank">https://lists.immunityinc.com/mailman/listinfo/dailydave</a><br>
<br></blockquote></div>