The Spirited Back Nine ...

PhotoDave219

PhotoDave219

Well-Known Member
flynnibus said:
He's not the only one. The problem is people generally don't comprehend just how much exposure there really could be. They think security isn't relevant to their industry.. or think they can hide behind security through obscurity. People take digital communications for granted now and have a hard time stepping back and grasping "imagine if everything you've ever said in private was out on a billboard..". Between the Snowden situation and now this one... it might start to get people to comprehend the various ways information leaks can be harmful to a person or business. It's not just about protecting your designs, or the latest project plan... it's also about not having every action, discussion, or comment being laid out naked for the world to see without context.

The sad thing is... it's not like there is a solid alternative that would make this not possible. There is no perfect security, and security is still way too overbearing for most people's tolerances. Add in the resources of Nation States and one can feel they are fighting a battle they could never win. In that case, many people would just prefer to stay 'out of the crosshairs' and in turn will be even MORE risk adverse and try to avoid confrontation.

Eventually you might see a pushback on using technology... but its very difficult to extract yourself from it or people taking what you do and digitizing it without your knowledge.

You might find a lot more people making phone calls instead of emails/txts :)
Click to expand...

So many problems exist with big mainframe databases/"The Cloud"... so many vulnerabilities.

Its almost as if the easiest solution is a straight up Intranet that never connects to the outside world.
 
flynnibus

flynnibus

Premium Member
PhotoDave219 said:
I get that... but I feel the other side is going to do bad stuff no matter what. Why cave to their demands?
Click to expand...

Again.. what does Sony gain for being the martyr? Who will stand up and give Sony a pass in all their scrutiny because they 'fought the good fight'. Ultimately the company has to fend for itself... no one is going to bail them out for being some poster child.

"Hi, I'm the CEO that stood up to the hackers and in turn... we lost the company" - No one wants that on their resume.

What incentive is there for businesses to be that patriot? They will start looking inward and start acting to save their own skins.
 
flynnibus

flynnibus

Premium Member
PhotoDave219 said:
Its almost as if the easiest solution is a straight up Intranet that never connects to the outside world.
Click to expand...

and with Nation-state level of resources... even that is not enough. Look at StuxNet and how the US took out the Iranian centerfuges across the 'air gap' - they were not internet connected for that very idea of defense. That too can be defeated.
 
lazyboy97o

lazyboy97o

Well-Known Member
flynnibus said:
Again.. what does Sony gain for being the martyr? Who will stand up and give Sony a pass in all their scrutiny because they 'fought the good fight'. Ultimately the company has to fend for itself... no one is going to bail them out for being some poster child.

"Hi, I'm the CEO that stood up to the hackers and in turn... we lost the company" - No one wants that on their resume.

What incentive is there for businesses to be that patriot? They will start looking inward and start acting to save their own skins.
Click to expand...
Being the film Pyongyang doesn't want you to see seems to have gained the film far more attention and interest than it had before. Sony Pictures and Sony as a whole, outside of the PlayStation, are in financial troubles well beyond this attack.
 
PhotoDave219

PhotoDave219

Well-Known Member
flynnibus said:
and with Nation-state level of resources... even that is not enough. Look at StuxNet and how the US took out the Iranian centerfuges across the 'air gap' - they were not internet connected for that very idea of defense. That too can be defeated.
Click to expand...

That was very sophisticated level of computer warfare. Impressive beyond believe just meant to wreck havok.

So whats the answer? Because I'm more inclined to believe the Wired article that suggests it was China who made it look like it was NK. And I still think in this case they were empty threats, but thats just me.

Honestly, I'm not horribly worried about some movie studio and their lack of corporate IT security. I'm more concerned with public utilities, electrical grids, water supplies, power plants, etc. Thats the scary stuff. How do you secure those facilities?
 
flynnibus

flynnibus

Premium Member
lazyboy97o said:
Being the film Pyongyang doesn't want you to see seems to have gained the film far more attention and interest than it had before. Sony Pictures and Sony as a whole, outside of the PlayStation, are in financial troubles well beyond this attack.
Click to expand...

The film is just a pawn in this... the real damage is in the internal discussions and more that is leaked. Hollywood is a industry defined by networking, whos who, and negotiation. And here you have the company just thrown naked out in the town square. If you can't get deals done in hollywood... you're done.
 
Hakunamatata

Hakunamatata

Le Meh
Premium Member
flynnibus said:
The film is just a pawn in this... the real damage is in the internal discussions and more that is leaked. Hollywood is a industry defined by networking, whos who, and negotiation. And here you have the company just thrown naked out in the town square. If you can't get deals done in hollywood... you're done.
Click to expand...
Oh and I bet there some candid emails out there involving people that are real friendly to Hollywood in DC that Sony really doesn't want released.
 
flynnibus

flynnibus

Premium Member
PhotoDave219 said:
That was very sophisticated level of computer warfare. Impressive beyond believe just meant to wreck havok.
Click to expand...

That's what I mean.. when we involve Nation State level of resources... things we only thought were pure science fiction are happening. The notion that we even KNOW what is out there has been destroyed. The level of harm and destruction that are within people's ambitions are completely different. We have gone from a level of concern where we worry about getting into a fist fight.. to being worried about someone killing every person we ever have known. The scale of damage and the kind of motivations are completely different leagues than what it was when it was a hacker in a basement motivated only for personal gain.

The hackers for organized crime were just the tip of the iceberg... we are talking real cyber warfare which the general public have no comprehension of what is really possible. If they knew, they'd krap their pants.

PhotoDave219 said:
So whats the answer? Because I'm more inclined to believe the Wired article that suggests it was China who made it look like it was NK. And I still think in this case they were empty threats, but thats just me.

Honestly, I'm not horribly worried about some movie studio and their lack of corporate IT security. I'm more concerned with public utilities, electrical grids, water supplies, power plants, etc. Thats the scary stuff. How do you secure those facilities?
Click to expand...

I wish I knew the answer... in my position I know enough about the challenges that I'm just numb to trying to find a solution. I live in the world of 'just hope it doesn't happen to you' because truely securing your digital world is such a burden these days no one can really do it. And even systems held to the highest requirements are not truly safe.

Ultimately the answer may be simply 'dumbing down' things in the near term. Go back to physical access, offline updates, etc. Will we give up convenience and speed for security/integrity?? I think when it comes to infrastructure we have to... the risks are just too great.

Imagine if a foreign country blacked out Detroit for a week in the middle of winter? It would be pure pandemonium. Now imagine if they did that in 5-6 cities at once.. or more? It's stuff that people have only seen in movies... and our society is not conditioned to survive without these services and networks anymore.
 
GoofGoof

GoofGoof

Premium Member
PhotoDave219 said:
That was very sophisticated level of computer warfare. Impressive beyond believe just meant to wreck havok.

So whats the answer? Because I'm more inclined to believe the Wired article that suggests it was China who made it look like it was NK. And I still think in this case they were empty threats, but thats just me.

Honestly, I'm not horribly worried about some movie studio and their lack of corporate IT security. I'm more concerned with public utilities, electrical grids, water supplies, power plants, etc. Thats the scary stuff. How do you secure those facilities?
Click to expand...
Yep. This is really scary stuff. Considering a large portion of the electric grid is dispatched from a small number of places it would be relatively easy to "attack" a few and cause a massive blackout.
 
flynnibus

flynnibus

Premium Member
the.dreamfinder said:
And set a precedent.
Click to expand...

When you have no retort... some have no alternative. I mean.. fighting to the death is noble.. but when they can mow you down and everyone around you with impunity... what did the noble action gain you again?

I mean.. this is like the US when they had the atom bomb and no one else did. The amount of leverage you have is infinite and uncontested.
 
lazyboy97o

lazyboy97o

Well-Known Member
flynnibus said:
The film is just a pawn in this... the real damage is in the internal discussions and more that is leaked. Hollywood is a industry defined by networking, whos who, and negotiation. And here you have the company just thrown naked out in the town square. If you can't get deals done in hollywood... you're done.
Click to expand...
That stuff is out and there is no incentive to permanently withhold anything.
 
the.dreamfinder

the.dreamfinder

Well-Known Member
I'm curious as to what our cyberwarfare capabilities are and how they compare with DPRK's and China's. An argument could be made that DPRK's capabilities aren't as strong as the U.S. and China, but I don't buy that. Cyberwarfare can offer DPRK what their nuclear program really couldn't fully deliver on, a strong negotiating position via leverage, for significantly less money. However, it's a moot point because no nation will likely reveal its cyber arsenal in the way they display physical weapons and vehicles.
 
lazyboy97o

lazyboy97o

Well-Known Member
the.dreamfinder said:
I'm curious as to what our cyberwarfare capabilities are and how they compare with DPRK's and China's. An argument could be made that DPRK's capabilities aren't as strong as the U.S. and China, but I don't buy that. Cyberwarfare can offer DPRK what their nuclear program really couldn't fully deliver on, a strong negotiating position via leverage, for significantly less money. However, it's a moot point because no nation will likely reveal its cyber arsenal in the way they display physical weapons and vehicles.
Click to expand...
It doesn't need to be displayed. We've seen it in action and they know we're too terrified to stay standing. It'll be the same vague threats but now we have a strong association of an action we fear and, more importantly, see as plausible.
 

Register on WDWMAGIC. This sidebar will go away, and you'll see fewer ads.

Back
Top Bottom