HBO faces hacker threat: pay up, or suffer bigger data leak
HBO is facing a very modern-day kind of game: hackers are demanding a massive ransom, or else say they'll release more "Game of Thrones" scripts and other data.
A group of hackers posted a fresh cache of stolen HBO files online Monday, and demanded a multimillion-dollar ransom from the network to prevent the release of entire television series and other sensitive proprietary files.
HBO, which had previously acknowledged the theft of "proprietary information," said it's continuing to investigate and is working with police and cybersecurity experts. Hackers last month leaked written material from an upcoming "Game of Thrones" episode and upcoming episodes of HBO shows "Ballers" and "Room 104." HBO at the time confirmed that a breach took place but did not name specific shows or material that was compromised.
In the latest threat, hackers said they had obtained 1.5 terabytes of data from the cable network, including written material allegedly related to next week's fourth episode of "Game of Thrones." Episodes of the shows "Ballers" and "Room 104" have already appeared online, according to reports.
In a swaggering five-minute video from "Mr. Smith" to HBO CEO Richard Plepler included in the dump, the hackers used white text scrolling on a black background to deliver an ultimatum. In short: Pay up within three days or see the group, which claims to have stolen 1.5 terabytes of HBO shows and confidential corporate data, upload entire series and sensitive proprietary files.
Specifically, the hackers demanded "our 6-month salary in bitcoin," and claimed they earn $12 million to $15 million a year from blackmailing organizations whose networks they have penetrated. They said they would only deal directly with "Richard" and only send one "letter" detailing how to pay. The amount the hackers are demanding would be about $6 million, according to The New York Times.
The dump itself was just 3.4 gigabytes — mostly technical data that appears to provide a topography of HBO's network and to list network-administrator passwords. It includes what appear to be draft scripts from five "Game of Thrones" episodes, including one upcoming episode, and a month's worth of email apparently from the account of Leslie Cohen, HBO's vice president for film programming.
The network reiterated Monday that it doesn't believe that its email system as a whole has been compromised.
The video text was written in often flawed but fluent English peppered with misspellings and pop-culture references.
The hackers claimed it took them about 6 months to breach HBO's network. Their biggest threat appears to be dumping videos of future shows online with their logo "HBO Is Falling" superimposed.
Many of the more than 50 internal documents in the dump were labeled "confidential," including a spreadsheet of legal claims against the network, job offer letters to several top executives, slides discussing future technology plans and a list of 37,977 emails called "Richard's Contact list," an apparent reference to Plepler.
One screenshot labeled "Highly Confidential" by the hackers listed folders such as "Penguin Random House," ''Licensing & Retail," ''Legal," ''International" and "Budgets." Another document appears to contain the confidential cast list for "Game of Thrones," listing personal cellphone numbers and email addresses for actors such as Peter Dinklage, Lena Headey and Emilia Clark.
So far, however, the HBO leaks have been limited, falling well short of the chaos inflicted on Sony in 2014. In that attack, hackers possibly associated with North Korea unearthed thousands of embarrassing emails and released personal information, including salaries and social security numbers, of nearly 50,000 current and former Sony employees.
The video letter uploaded Monday claimed the hackers spend a half million dollars a year to purchase "zero-day" exploits that let them break into networks through holes not yet know to Microsoft and other software companies. It claims HBO is the hackers' 17th target and that only three of their past targets refused to pay.