美国联邦调查局说，朝鲜是上个月索尼遭受网络攻击的幕后黑手，这起攻击导致泄露被盗电子邮件和社会安全号码，并取消了采访。美国联邦调查局（FBI）在周三晚间接到美国官员匿名报告后，今天上午正式确认朝鲜**是黑客攻击的元凶。数周来，外界普遍怀疑朝鲜是这些袭击的幕后黑手。

“这种恐吓行为超出了国家行为可以接受的范围。”

“我们对这次攻击对一个私营部门实体和在那里工作的普通公民的破坏性深感关切，”该局写道，这次黑客攻击强调了为什么网络攻击是最大的****威胁之一朝鲜的行动意在对美国企业造成重大伤害，压制美国公民的表达权利。这种恐吓行为超出了国家行为可接受的范围。”

联邦调查局没有说明将采取什么行动来应对这次袭击。奥巴马总统预计将在今天下午发表讲话，届时他可能会解释美国将如何应对朝鲜。白宫昨天开始为他的回应设定预期，解释说回应必须“成比例”，因为袭击者可能希望引起某种反应。

该局说，用于攻击索尼的恶意软件与此前被朝鲜使用的恶意软件有关。”例如，在特定的代码行、加密算法、数据删除方法和受损网络方面都有相似之处，”该局写道。这次袭击中使用的基础设施与过去与朝鲜有关的袭击中使用的基础设施也有“明显重叠”。类似的工具也被使用。

在过去的几周里，媒体报道了许多类似之处，这使得这些结论基本上不足为奇。不过，美国联邦调查局也指出，它使用了“敏感来源和方法”来确定这次袭击的幕后主使，而这些来源和方法目前还没有被描述。

索尼第一次意识到这次攻击是在11月下旬，当时它的电脑系统在全球范围内被关闭。一个自称为“和平卫士”的组织对这次袭击负责，从上周起，该组织就开始在网上发布被盗的索尼文件。周二，黑客们还威胁要对电影《采访》的放映进行攻击，导致索尼取消发行。

据推测，朝鲜对采访内容持异议，采访内容涉及朝鲜领导人金正恩的暗杀企图，并生动地描绘了金正恩的死亡。这部喜剧由塞思·罗根和詹姆斯·佛朗哥主演，计划在圣诞节上映。这种情况不会再发生了。事实上，索尼影射说，它可能会选择根本不发布采访，包括在线、点播或DVD和蓝光。这对索尼来说将是一个巨大的损失：Wrap报告称，索尼在这部电影上已经花费了约9000万美元，索尼预计至少会获得2.1亿美元的回报。

FBI的完整声明转载如下：

Today, the FBI would like to provide an update on the status of our investigation into the cyber attack targeting Sony Pictures Entertainment (SPE). In late November, SPE confirmed that it was the victim of a cyber attack that destroyed systems and stole large quantities of personal and commercial data. A group calling itself the "Guardians of Peace" claimed resp***ibility for the attack and subsequently issued threats against SPE, its employees, and theaters that distribute its movies.

The FBI has determined that the intrusion into SPE’s network c***isted of the deployment of destructive malware and the theft of proprietary information as well as employees’ personally identifiable information and confidential communicati***. The attacks also rendered thousands of SPE’s computers inoperable, forced SPE to take its entire computer network offline, and significantly disrupted the company’s business operati***.

After discovering the intrusion into its network, SPE requested the FBI’s assistance. Since then, the FBI has been working closely with the company throughout the investigation. Sony has been a great partner in the investigation, and continues to work closely with the FBI. Sony reported this incident within hours, which is what the FBI hopes all companies will do when facing a cyber attack. Sony’s quick reporting facilitated the investigators’ ability to do their jobs, and ultimately to identify the source of these attacks.

As a result of our investigation, and in close collaboration with other U.S. government departments and agencies, the FBI now has enough information to conclude that the North Korean government is resp***ible for these acti***. While the need to protect sensitive sources and methods precludes us from sharing all of this information, our conclusion is based, in part, on the following:

• Technical ****ysis of the data deletion malware used in this attack revealed links to other malware that the FBI knows North Korean actors previously developed. For example, there were similarities in specific lines of code, encryption algorithms, data deletion methods, and compromised networks.
• The FBI also observed significant overlap between the infrastructure used in this attack and other malicious cyber activity the U.S. government has previously linked directly to North Korea. For example, the FBI discovered that several Internet protocol (IP) addresses associated with known North Korean infrastructure communicated with IP addresses that were hardcoded into the data deletion malware used in this attack.
• Separately, the tools used in the SPE attack have similarities to a cyber attack in March of last year against South Korean banks and media outlets, which was carried out by North Korea.

We are deeply concerned about the destructive nature of this attack on a private sector entity and the ordinary citizens who worked there. Further, North Korea’s attack on SPE reaffirms that cyber threats pose one of the gravest national security dangers to the United States. Though the FBI has seen a wide variety and increasing number of cyber intrusi***, the destructive nature of this attack, coupled with its coercive nature, sets it apart. North Korea’s acti*** were intended to inflict significant harm on a U.S. business and suppress the right of American citizens to express themselves. Such acts of intimidation fall outside the bounds of acceptable state behavior. The FBI takes seriously any attempt—whether through cyber-enabled means, threats of violence, or otherwise—to undermine the economic and social prosperity of our citizens.

The FBI stands ready to assist any U.S. company that is the victim of a destructive cyber attack or breach of confidential business information. Further, the FBI will continue to work closely with multiple departments and agencies as well as with domestic, foreign, and private sector partners who have played a critical role in our ability to trace this and other cyber threats to their source. Working together, the FBI will identify, pursue, and impose costs and c***equences on individuals, groups, or nation states who use cyber means to threaten the United States or U.S. interests.