[archgoon]

Playing devils advocate here:

<devils advocate>

The NSA is arguably having a credibility problem at home in the US. It needs to convince the tech industry that there are enemies abroad who threaten their security, and attacks by nation states (who aren't the US) is something that is real.

North Korea is a great scape goat. They can deny it all they want, and we don't care about the diplomatic costs, because it can't get any worse. People can't demand sanctions, can't demand recall of ambassadors, the only thing anyone could demand would be going to war with them, but for the most part, we don't care. They're the crazy uncle of the world stage. So basically, the only problem would be if the NSA got caught lying about it.

</ devils advocate>

However, getting caught would probably be the worst possible thing for the NSA (remember, there is likely still a leaker inside); as it would jeopardize the main benefit from doing this in the first place. So I don't think the risk versus reward pans out. That said if North Korea IS behind it, the above motivation for speaking out is still valid.

[xnull1guest]

I similarly don't see the risk (and collateral damage) v. reward pan out. Plus there are so many legitimate cyber attacks against the United States, it would seem like a waste of resources. And it doesn't seem to me like the NSA would so joyously release the Lynton/Bennett/State Department emails. If they wanted to paint NK in a bad light this would seem so counter to that goal.

[researcher88]

Schneier said there are three. The 2nd leaking the Merkel and X-KEYSCORE and the third connected to NCTC.

Also one was supposedly raided by the FBI at the end of October but that story was never updated.