JammedUp News


Sony Hackers to News Organization : “YOUR NEXT”

December 31, 2014  |  Posted by: JammedUp
Sony Hackers to News Organization : “YOUR NEXT” Image courtesy of picturesdotnews.wordpress.com

Are you in a legal jam? Find a Lawyer, Bail Bondsman or Private Investigator on JammedUp.

The hackers who inflicted catastrophic damage to Sony Pictures Entertainment by hacking into their computer servers have issued a new warning, this time they are threatening to attack either one or multiple American news media organizations, according to an FBI bulletin obtained by The Intercept.

The threat made was pointed toward an unnamed news organization by the group known as the Guardians of Peace, the hacker group that has taken credit for the Sony attack.

The bulletin says the group “may extend to other such organizations in the near future,” according to a Joint Intelligence Bulletin of the FBI and the Department of Homeland Security.

The joint bulletin, which was dated  Dec 24th,  refers to Sony only as “USPER1”and the unnamed news organization as “USPER2,” and is stated for “For Official Use Only,” specifically states that the bulletin was issued in order, “to provide information on the late-November 2014 cyber intrusion targeting USPER1 and related threats concerning the planned release of the movie, ‘The Interview.’ Additionally, these threats have extended to USPER2 —a news media organization—and may extend to other such organizations in the near future.”

Titled as: “November 2014 Cyber Intrusion on USPER1 and Related Threats,” The Guardians of Peace warn of additional attacks on other targets on the day after the FBI announcement.

The bulletin reads:  “On 20 December, “the [Guardians of Peace] GOP posted Pastebin messages that specifically taunted the FBI and USPER2 for the ‘quality’ of their investigations and implied an additional threat. No specific consequence was mentioned in the posting.”

Pastebin is a Web tool that enables users to upload text anonymously for anyone to read, which is commonly used to share source code and is also used by hackers to post hacked content.

The Dec. 20 Pastebin message from Guardians of Peace links to a YouTube video featuring dancing cartoon figures repeatedly saying, “you’re an idiot.”

No specific news organization has been recognized as the target of the threat, however many are speculating that CNN could be the likely target.

“While it’s hard to tell how legitimate the threat is, if a news organization is attacked in the same manner Sony was, it could put countless sensitive sources in danger of being exposed—or worse,” Trevor Timm, executive director of the Freedom of the Press Foundation, told The Intercept.

Timm does make the valid point that the media are a constant target by state-sponsored hackers.“This FBI bulletin is just the latest example that digital security is now a critical press freedom issue, and why news organizations need to make ubiquitous encryption a high priority,” he said.

While the bulletin names neither Sony nor the news organization, it contains an overview that refers specifically to the Guardians of Peace, which shut down Sony’s servers in late November and stole an estimated 100 terabytes of information, including email exchanges among executives that disparaged many of Hollywood’s top stars, the salaries of the company’s 30,000 employees, medical records, and a 25-page list of employee workplace complaints.

On Dec. 16, the Guardians of Peace posted an online message threatening 9/11-style attacks on theaters that showed “The Interview,” a Sony comedy that depicts the fictional assassination of North Korean Supreme Leader Kim Jong-un.

Three days later, the FBI said it had concluded “that the North Korean government is responsible for these actions.” North Korea has repeatedly denied involvement, and several information security professionals have recently said they question North Korea’s involvement in the malware attack.

The Guardians of Peace’s attack on Sony “indicates the increasing willingness of malicious cyber actors to conduct offensive cyber operations against US entities based on perceived injustices or provocations,” the bulletin states. “Though we have seen a wide variety and increasing number of cyber intrusions, the destructive nature of this attack—coupled with its coercive nature—sets it apart.”

FBI spokesman Joshua S. Campbell, in an emailed reply to a request for comment, wrote that the FBI “routinely shares information with the private sector in order to help system administrators guard against cyber intrusions,” but he declined to comment on any details of the threats, or the organizations targeted.

“Unfortunately, we are unable to provide specifics as our intel bulletins are not for public dissemination…,” he wrote.

From the Intercept

Get the latest news from the world of crime