By now you've heard that Sony has canceled (for the moment, anyway) the debut of a controversial "comedy" film concerning a plot to assassinate the current leader of North Korea. Given that North Korea indeed has an evil, vile government, Sony apparently thought that a vile, tasteless film was the appropriate response -- very 21st century Hollywood thinking, indeed.

Sony's suspension of "The Interview" -- ostensibly in response to the mass hacking of their corporate systems and associated threats -- has already become a new talking point among proponents of controversial legislation that would almost certainly ultimately give the government vast new abilities to monitor and control privately owned networks and computer systems -- "for those private firms' own good" of course.

Yeah. Of course. But who are we mere computer scientists and technologists to argue with the likes of world-renowned "cybersecurity expert" Newt Gingrich, who has already declared that the Sony hack and Sony's response means that the USA has "lost its first cyberwar." Wow, that sounds scary.

And hell, if Newt proclaims something, it must be true.

Or not.

The very nature of this situation suggests that we will never know the real truth of the matter.

But boys and girls, my gut feeling is that we're being seriously suckered.

First we're told that the Sony hack was incredibly sophisticated and brilliant, of the sort that (supposedly) only a well-funded nation-state could muster.

Then we start to hear from researchers who have looked at this in more detail, and we learn that the actual exploit was relatively simplistic and run-of-the-mill, rather sloppy in fact.

So how could such a crude exploit do so much damage to Sony?

Well, we've also now learned that -- reportedly -- Sony's computer security practices were well known within the company as being somewhere south of McMurdo Station -- that is, really abysmally sloppy and inept.

So you apparently didn't need a nation-state with vast cyberwar attack resources to pull this off. Perhaps a bored 18-year-old looking for "lulz" from his parents' basement would be more than adequate to the task.

Given all this, why are we seeing so much focus on North Korea? Why is the U.S. government saying that North Korea is "behind" the attacks -- or that at least some group "allied" with North Korea was responsible.

Or maybe just someone who has "heard" of North Korea?

Let's face it. Since this attack has been tied to a film that at the very least attempted to make sick "fun" of assassinating Kim Jong-un, one might say (if one was of a conspiratorial mindset about this) that it all almost seems "purpose built" as a mechanism to justify whatever new anti-North Korea sanctions have been simmering in the background.

And as I noted earlier, it also fits in very nicely with the "government needs to be in charge of private computer security" storyline as well.

However, we don't even need conspiracies to work this one out to a significant degree of confidence.

These kinds of cyberattacks are notoriously difficult to source. There are so many ways to confuse and obfuscate and false flag and misdirect -- that we're unlikely to ever know with certainty who was actually behind the Sony hack itself.

Yet we do know with certainty that there are commercial "cybersecurity" firms itching to leverage panic into sales, and government "cyberwar" divisions always on the prowl for excuses to further inflate their already obscenely bloated budgets.

So ... which is going to play more effectively into these narratives -- the 18-year-old in the basement lounge chair with a keyboard in their lap ... or a nightmarish cyberattack conveniently pinned on the megalomaniac leader of a pariah nation?

Yes, I could be wrong. Maybe we're actually getting the straight story on all this from our elected officials and their multitude of minions. Maybe this all really was a dastardly attack by North Korea on a mediocre Sony film.

Then again, there's a bridge over the East River connecting with New York City that you might want to buy as well.

Just sayin' ...

Be seeing you.

--Lauren--
I am a consultant to Google. I speak only for myself, not for them.