Ambiguity in cyberspace and the legality of hacking and manipulating sovereign nations; does it benefit the attacker, or the victim? We've all but survived the potential catastrophe of the 2016 election, and the Russian interference within it, but what does that mean for the future of cyber and psychological warfare throughout the world?
On November 25th, Sony Picture Entertainment was hacked by a group calling itself the Guardians of Peace, where millions of records of passwords, social security numbers, e-mails, salaries, and other extremely sensitive information was released to the public. The exact scope of the data extracted from Sony is hard to fully grasp but, so far, the following information has been released to the public:
- 47,426 Social Security Numbers
- 3,000 employee records with salaries, benefits, passports, and contact details
- 600+ plain text passwords, IP addresses, root certificates and other IT data
- Financial reports, acquisition strategies, and budgeting forecasts
- 19,944 e-mails.
- 4,013,780 anti-piracy take-down notices
And while this is a staggering amount of information to be lost, it's a relatively insignificant event for the vast majority of Americans; yet we find ourselves equating the event to 9/11 and promising swift and equitable retribution on some fairly shaky evidence.