Lights, camera, hack-tion. What happens when Hollywood-giant Sony Pictures falls prey to cybercriminals?Ā HereāsĀ theĀ wholeĀ nail-bitingĀ narrative.Ā Ā
InĀ lateĀ November of 2014, a hacker group going by the name Guardians of Peace leaked an incredibly large amount of sensitive information straight from the computers of Sony Pictures to the media. According to reporting from Vox, The dataĀ exposedĀ included private employeeĀ information,Ā personalĀ staffĀ communications,Ā and even full, unreleased movies from Sonyās servers.Ā Ā
In total, the hackers would stealĀ terabytesĀ of Sony data,Ā duplicatingĀ their files and thenĀ deletingĀ the original copiesĀ from the server. To the public’s knowledge, no one at Sony was aware of the attack until the morning of Monday, November 24thĀ whenĀ employees came into work toĀ findĀ aĀ rather threateningĀ image (seen below, from Reddit) upon their screens.Ā
Alleged Sony data breach hacker image. Posted to Reddit.
Ominous,Ā isnātĀ it?Ā
In the weeks following the cyber-attack, Sony executives were practically held hostage by the hackers, who systematically released films, salary information, and more to various news sites and file-sharing platforms. According to reporting by The Next Web, among the movies stolen were the new āAnnieā film, āFuryā starring Brad Pitt, āMr. Turner,ā āStill Alice,ā and āTo Write Love on Her Arms.ā Ā
All five have now been illegally downloaded thousands of times.Ā Ā
The hackers also revealed relevant information about Sony itself in the attack. Leaks uncovered by Vox allegedly showed that, at the time of the hack, men were paid significantly more than others at the top levels of the company. Whatās more, rude commentary about big-name stars amongst corporate executives was made public, they can be seen now on WikiLeaks. Ā
But it wasnāt until December ā nearly two weeks after the initial attack ā that the Guardians of Peace would reveal their true intentions to Sony execs.Ā
Enter: “The Interview”
You see,Ā amidst the chaos, Sony Pictures wasĀ alsoĀ producing āThe Interviewā ā a highly controversial film produced by and starring Seth Rogen. Set in North Korea, theĀ movieĀ centers around two Hollywood journalistsĀ whoĀ attemptĀ to assassinateĀ North Korean leader Kim Jong Un.Ā The originalĀ version of the film culminates inĀ aĀ fairly graphicĀ scene depicting Kim Jong Unās death.Ā Ā
Objections to the subject matter of āThe Interviewā rolled in early from international Sony execs who feared for movie-goers safety according to reporting from Gawker and, of course, North Korean officials themselves who saw the film as a personal affront. However, it wasnāt until the Sony data breach that these threats were taken seriously.Ā
On December 16th, 2014, the Guardians of Peace contacted Sony Pictures threatening real violence against any theaters that showed āThe Interview.” While no credible threat was ever detected or carried out, the invocation of terrorism alone was enough for Sony to pull the picture altogether on December 17th.Ā Ā
Some foreign policy experts maligned this decision, arguing among other things that Sony was setting a precedent for controversial content. In fact, in a press conference on December 19th, President Barack Obama is cited by Deadline as suggesting that Sony “made a mistake.”Ā On December 23rd, therefore, Sony reversed their original decision, agreeing to let theaters who wished to show the film and while simultaneously release it on streaming platforms. However, at the time many of the large theater chains categorically refused to show films that we released both in theater and online, basically ensuring that āThe Interviewā would be a sales flop.Ā
While no charges have been brought forward, the FBIĀ andĀ the NSA both claim to confirm that North Korea itself was behind the attack. And while in the end no one was actually hurt, at the momentĀ the threats caused byĀ thisĀ data breachĀ didnātĀ just feel real ā they felt visceral.Ā Ā
All this to say ā cybersecurityĀ isnātĀ just a business issue,Ā itāsĀ a safety issue. And if youĀ arenātĀ doing everything in your power to protect yourĀ private informationĀ thenĀ youĀ arenātĀ doingĀ nearly enough.Ā Ā
EMPIST Can HelpĀ
Luckily,Ā weāveĀ got the skills to help you get started.
To learn more about EMPIST cybersecurity services, contact us online today!Ā Ā
(Sources: Re/code, Slate, The Hollywood Reporter, The Next Web, Vanity Fair, Vox,Ā Deadline)