The Tech section in Forbes magazine reported that the "criminals won" in the Sony pictures breach. An anonymous threat posted on obscure site warned that people who watch the to-be-released movie "The Interview" would be "doomed" to a "bitter fate" and recalled the tragic events of September 11. The threat said that the movie inappropriately made light of North Korean officials.
As a result of the threat, five large theater chains in the United States and Canada canceled plans to include film on their screens. Ultimately, Sony had no choice but to cancel the theater release of the film for reasons that are both economic and legal. The former was due to a lack of revenue given the small number of remaining theaters that might go ahead and run the film. The latter was driven by what would happen if an attack was carried out. A Steve Carell project tht featured North Korea was also canceled.
The Guardian reported that a group named the Guardians of Peace retaliated against Sony. They hacked into Sony's systems and stole over 100 terbytes of files, including unreleased movies social security numbers for thousands of Sony employees, and internal emails, some of which show embarrassing conversations between Sony employees. The hackers began distributing the files in various locations online, making them free for the taking.
The officials of that government denied any involvement in the hack but said that it might have been a "righteous deed" of those who the government.
North Korean officials demanded some changes to the movie, including taming down a death scene of its leader. Sony initially refused but then decided to go ahead and edit the scene. The movie eventually opened without incident on a limited basis in some cinemas on Christmas Day and them was made available via online rental.
According to the "Mirror" in the United Kingdom, neither the Department of Homeland Security not the FBI could find evidence that the violence was a credible threat, but the FBI believed North Korea was behind the hacking. In turn, North Korea claimed that the US government was responsible for creation of the movie.
PLEASE any the following discussion questions (if needed refer to any online information about this case):
1. Setting aside the political issues between North Korea and the United States, is there a reasonable way to respond to an anonymous threat found on the Internet somewhere? What elements would you require before canceling the film if you were CEO of Sony? If you were CEO of a chain of theaters?
2. What access and data protection controls would you recommend Sony use to provide better security for unreleased digital films and emails?
3. If you were a hacker, what approach would you have used to break into Sony's system? What do you think the most important SETA (security, education, training, awareness) elements would be to prevent future hacker attacks against Sony or other media firms?
Would appreciate your response ASAP.