Cybersecurity

Top House Oversight Dem asks Sony for hack info

The top Democrat on the House Oversight and Government Reform Committee is asking Sony Pictures for more information on the recent cyberattack that has damaged the company and pushed it to cancel its comedy, “The Interview.”

“Sony’s knowledge, information and experience will be helpful as Congress examines federal cybersecurity laws and any necessary improvements to protect sensitive consumer and government financial information,” said Rep. Elijah Cummings (D-Md.), in his letter.

{mosads}The film studio has been in the spotlight since hackers infiltrated the company’s network in late November, stealing and destroying internal data. The hit was apparently retribution for “The Interview,” a comedy about a plot to assassinate North Korean leader Kim Jong Un.

Demanding the film studio pull the movie, the assailants leaked employee data and juicy emails from top Hollywood brass, before threatening Sept. 11-style attacks on any theater showing the film.

Sony eventually axed the movie’s Christmas Day release.

The FBI has accused Pyongyang of sponsoring the attack and the White House has vowed a proportional response.

Congress has gotten involved as well.

Incoming Senate Armed Services Committee Chairman John McCain (R-Ariz.) said he will hold a hearing on the incident within the first two weeks of the next Congress. Other lawmakers have pushed for Congress or the White House to hold screenings of the canceled film.

“The increasing number and sophistication of cyberattacks on both public and private entities post a clear and present danger to our national security and highlight the urgent need for greater collaboration to improve data security,” Cummings told Sony.

The Maryland Democrat requested Sony provide a description of all data breaches the studio has experienced over the last year, including the data exposed and the malware used in the attack. He also asked for details on any security improvements Sony has undertaken over the last year.

Sony has been criticized for its weak security measures ahead of the attack.

The letter sets a Jan 23 deadline for a response.