Key players included SPE (then led by CEO Michael Lynton), the GOP hackers (U.S. government-attributed to North Korea), the FBI (which investigated starting December 1, 2014, and linked it to North Korea), and later North Korean regime-backed programmers charged by the U.S. Department of Justice for the attack alongside others like WannaCry.[1][2][5][7] The breach stemmed from poor cybersecurity, such as unencrypted emails stored for years and vulnerability to spearphishing (e.g., fake Apple ID links targeting employees like Lynton as early as September 2014).[3][5][6] Hackers demanded cancellation of SPE's film The Interview, a comedy depicting North Korean leader Kim Jong-un's assassination, and threatened violence, leading to leaks, film piracy, lawsuits, $15 million+ immediate costs, and reputational damage.[1][2][4]
**The timeline began with network compromise in September 2014 via phishing, escalated on November 24 with GOP's on-screen threats and data leaks, prompted FBI probe by December 1, and saw The Interview rescheduled for limited December 25 release amid threats.[1][3][5]
Newsworthy now due to a February 18, 2026, exclusive book excerpt from SPE's former CEO (likely Lynton) admitting his role in "unleashing" the attack—framed as a career mistake to "fit in with Hollywood’s cool kids"—reviving discussion of the landmark cyber incident that exposed entertainment industry vulnerabilities just days ago.