Enemies of the West - Neil Lines

On November 24, 2014, "Guardians of Peace" (GOP) released confidential data from the film studio Sony Pictures. North Korea were blamed, my talk will very briefly look at what happened, (the openings section, what happened will be very brief because it's quite common knowledge that they got hacked) the talk will then quickly move on into technically how it was achieved, this is not so commonly known, especially showing demos of how each stage could have been achieved. The demo and how it was achieved is what I personally found interesting during researching this. What concludes is how closely the attack mirrored a typical external social engineering / internal penetration test. The talk will not in any way disrespect any parties but it will remove the hype, revealing what in reality was a crude and simple attack that could have easily been performed by a single person and not what people would expect from a nation state attack. The talk will be backed up with stats, and examples from personal experiences from external/internal social engineering, infrastructure and application testing. It will include demos, showing how an attack achieved by the GOP would be simple to replicate due to commonly overlooked security hardening measures.