Sony Pictures should go after North Korean hackers’ Chinese enablers
Since the weekend, several of you have e-mailed me about “suspicions” – and really, I don’t think they went further than that – that and leaked unreleased movies to file sharers to punish it for “The Interview.” Those rumors were covered by many outlets, but frankly, the open-source evidence for North Korea’s complicity was little more than speculation, at least until I read this today:
Hackers who knocked Sony Pictures Entertainment’s computer systems offline last week used tools very similar to those used last year to attack South Korean television stations and ATMs, people briefed on the investigation said.
The similarity would reinforce a hunch among some investigators, which include Sony, the Federal Bureau of Investigation and a team from Silicon Valley security company FireEye Inc., that North Korea played a role in the breach at the film and television studio, one of the largest in the U.S. South Korea publicly blamed the 2013 attacks on North Korea. [….]
Sony Pictures is set to release this month “The Interview,” a comedy in which U.S. spies enlist a television host played by James Franco and his producer, played by Seth Rogen, to assassinate North Korean leader Kim Jong Un. In June, a spokesman for the Pyongyang government said distribution of the movie would be “the most undisguised terrorism and a war action” and threatened a “strong and merciless countermeasure” if the U.S. government “patronizes the film.” [Wall Street Journal]
It’s hardly proof beyond a reasonable doubt, but it’s something. Interestingly, “The Interview” wasn’t one of the Sony films the hackers leaked – not yet, anyway. For now, Sony Pictures continues to deny that it has direct knowledge of North Korea’s involvement. As I noted here, Sony was previously reported to have made changes to the script to appease the North Koreans. So much for appeasing North Korea, although South Korea seems congenitally incapable of learning that:
“The Interview,” a North Korea-themed satire starring actors Seth Rogen and James Franco, won’t be released in South Korea, a Seoul-based official for Sony Pictures Entertainment said. [….]
South Korean media reports cite a Sony Pictures Korea official as saying the distributor never had plans to release the film due to concerns about inter-Korean relations. A Sony Pictures official declined to comment on the reasons behind the decision not to show the film in South Korea. [WSJ Korea Real Time, Jeyup S. Kwaak]
Cowards. Kwaak’s post notes that South Korean state censors prevented “Team America” from being screened in South Korea, but doesn’t link the suppression of “The Interview” to government censorship. One possibility is that the ROK government asked Sony very politely. Another is that Sony anticipated that the usual gang of pro-North Korean thugs and thought police would try to disrupt screenings.
And what recourse does Sony have against the hackers, assuming it can prove that North Korea was responsible? Hacking is a federal felony, and an attack on a U.S.-based computer system would arguably give the feds subject-matter jurisdiction. If the Justice Department prosecutes, it probably wouldn’t find any live bodies to stick in the dock, but because hacking is a predicate offense for money laundering, DOJ would still be able to forfeit assets of anyone the court convicted. Not that that would do Sony much good.
Sony might be able to sue North Korea by taking advantage of several exceptions to North Korea’s sovereign immunity under 28 U.S.C. 1605(a). Collecting the judgements, of course, would be another matter entirely. Just ask any of the lawyers who won these judgments.
More interesting, however, are suspicions that the hackers may have been operating out of China, which isn’t a novel theory. That almost certainly couldn’t happen without the knowledge of the Chinese government and other Chinese entities, perhaps including entities with assets that could be reached by U.S. courts.
This suggests that a more fruitful legal strategy may be for the feds to prosecute, and for parties like Sony to sue, the Chinese enablers. There are even indications that our government might have the political will do to that. The new Congress could also require the Director of National Intelligence to report on China’s sponsorship of North Korean hacking. Unclassified portions of that report might provide useful evidence for Sony’s case.
~ ~ ~
Update: One reason Sony Pictures might not go after the hackers’ Chinese enablers is that Hollywood has been too preoccupied welcoming its new Chinese overlords and sucking up to its new censors. I thought it was bad enough when Sony Pictures bent over for Japan’s censorship; wait till you see what stultifying delights the Chinese have in store for us.
And the unlikely hero of this alarming and underreported controversy? Oliver Stone, himself a suspected disseminator of KGB propaganda, naturally. So I guess the wounds from the Stalin-Mao rift are still raw in some quarters. Hat tip to a reader.
~ ~ ~
Update 2: According to this report by U.S. Army Major Steve Sin, a defector reported that as of 2004, members of a North Korean military hacker unit called Unit 121 conducted “some of its operations from a North Korean government-operated hotel called Chilbosan in Shenyang, China.” Business Insider sent a reporter there (Update: or, horked the pictures online; see comments) to see what the hotel looks like today.
“within” should be “without”.
A bit of a problem with that WSJ report on The Interview‘s prospects for a South Korean release is the assumption that it would be up to Sony Pictures Korea. That isn’t the case: Sony recently abandoned self-distribution in South Korea and its films are now handled there by Universal. The article should’ve clarified whether The Interview‘s non-release in Korea is down to Sony or Universal.
I can’t tell if Business Insider have sent anyone to Shenyang, but the hotel pictures they posted are just taken from Ctrip. There are more pictures in plenty other places. Adam Cathcart has actually been there.
Here’s a video of a room (fairly average for a Chinese hotel in that price range). Last March a certain event on the comfort women issue with North and South Korean participants was held at the Chilbosan ??? Qibaoshan ???, thanks to which we get some more pictures and videos.
Thanks Jichang — I indeed was at the Chilbosan in 2012, and again this year. I plan to go back and would recommend the place if you’re looking for a break from Shenyang’s tumult, as it has been upgraded significantly and you can mingle with North Koreans at the breakfast buffet. Anyway the elevator photo is rather mundane but represents an apparent quantum leap forward in (cue ominous music) what we know or don’t know about the fifth floor. http://sinonk.com/2014/05/02/public-private-partners-rethinking-north-korean-command-criminality/ I don’t recall if the WiFi at the hotel is rubbish (usually the case in the PRC) or super fast — I would presume the latter would be a requisite for any army of hackers resident in the hotel, our imaginations, or both.
Today, a spokesman for the National Defense Commission of North Korea said that the hack was a “righteous deed”, while placing the credit for the hack to “NK supporters and sympathizers”. Again NK denies responsibility for the hack, this time as false rumors (they were probably made up).
Joseph DeTrani says that North Korea’s statements about involvement in attacks have been truthful in the past, but he doesn’t know if they still are. Yan Kahyun and Jim Finkle report for Reuters.
I don’t think North Korea were behind it. Sony have been attacked before by random hacker groups, especially the Playstation Network. It wouldn’t surprise me if it was some random basement dwellers.