Since the weekend, several of you have e-mailed me about “suspicions” — and really, I don’t think they went further than that — that North Korea may have hacked Sony Pictures and leaked unreleased movies to file sharers to punish it for “The Interview.” Those rumors were covered by many outlets, but frankly, the open-source evidence for North Korea’s complicity was little more than speculation, at least until I read this today:
Hackers who knocked Sony Pictures Entertainment’s computer systems offline last week used tools very similar to those used last year to attack South Korean television stations and ATMs, people briefed on the investigation said.
The similarity would reinforce a hunch among some investigators, which include Sony, the Federal Bureau of Investigation and a team from Silicon Valley security company FireEye Inc., that North Korea played a role in the breach at the film and television studio, one of the largest in the U.S. South Korea publicly blamed the 2013 attacks on North Korea. [….]
Sony Pictures is set to release this month “The Interview,” a comedy in which U.S. spies enlist a television host played by James Franco and his producer, played by Seth Rogen, to assassinate North Korean leader Kim Jong Un. In June, a spokesman for the Pyongyang government said distribution of the movie would be “the most undisguised terrorism and a war action” and threatened a “strong and merciless countermeasure” if the U.S. government “patronizes the film.” [Wall Street Journal]
It’s hardly proof beyond a reasonable doubt, but it’s something. Interestingly, “The Interview” wasn’t one of the Sony films the hackers leaked — not yet, anyway. For now, Sony Pictures continues to deny that it has direct knowledge of North Korea’s involvement. As I noted here, Sony was previously reported to have made changes to the script to appease the North Koreans. So much for appeasing North Korea, although South Korea seems congenitally incapable of learning that:
“The Interview,” a North Korea-themed satire starring actors Seth Rogen and James Franco, won’t be released in South Korea, a Seoul-based official for Sony Pictures Entertainment said. [….]
South Korean media reports cite a Sony Pictures Korea official as saying the distributor never had plans to release the film due to concerns about inter-Korean relations. A Sony Pictures official declined to comment on the reasons behind the decision not to show the film in South Korea. [WSJ Korea Real Time, Jeyup S. Kwaak]
Cowards. Kwaak’s post notes that South Korean state censors prevented “Team America” from being screened in South Korea, but doesn’t link the suppression of “The Interview” to government censorship. One possibility is that the ROK government asked Sony very politely. Another is that Sony anticipated that the usual gang of pro-North Korean thugs and thought police would try to disrupt screenings.
And what recourse does Sony have against the hackers, assuming it can prove that North Korea was responsible? Hacking is a federal felony, and an attack on a U.S.-based computer system would arguably give the feds subject-matter jurisdiction. If the Justice Department prosecutes, it probably wouldn’t find any live bodies to stick in the dock, but because hacking is a predicate offense for money laundering, DOJ would still be able to forfeit assets of anyone the court convicted. Not that that would do Sony much good.
Sony might be able to sue North Korea by taking advantage of several exceptions to North Korea’s sovereign immunity under 28 U.S.C. 1605(a). Collecting the judgements, of course, would be another matter entirely. Just ask any of the lawyers who won these judgments.
More interesting, however, are suspicions that the hackers may have been operating out of China, which isn’t a novel theory. That almost certainly couldn’t happen without the knowledge of the Chinese government and other Chinese entities, perhaps including entities with assets that could be reached by U.S. courts.
This suggests that a more fruitful legal strategy may be for the feds to prosecute, and for parties like Sony to sue, the Chinese enablers. There are even indications that our government might have the political will do to that. The new Congress could also require the Director of National Intelligence to report on China’s sponsorship of North Korean hacking. Unclassified portions of that report might provide useful evidence for Sony’s case.
~ ~ ~
Update: One reason Sony Pictures might not go after the hackers’ Chinese enablers is that Hollywood has been too preoccupied welcoming its new Chinese overlords and sucking up to its new censors. I thought it was bad enough when Sony Pictures bent over for Japan’s censorship; wait till you see what stultifying delights the Chinese have in store for us.
And the unlikely hero of this alarming and underreported controversy? Oliver Stone, himself a suspected disseminator of KGB propaganda, naturally. So I guess the wounds from the Stalin-Mao rift are still raw in some quarters. Hat tip to a reader.
~ ~ ~
Update 2: According to this report by U.S. Army Major Steve Sin, a defector reported that as of 2004, members of a North Korean military hacker unit called Unit 121 conducted “some of its operations from a North Korean government-operated hotel called Chilbosan in Shenyang, China.” Business Insider sent a reporter there (Update: or, horked the pictures online; see comments) to see what the hotel looks like today.