Business & Tech

Leaked e-mail shows HBO negotiating with hackers

BOSTON — Hackers released an e-mail from HBO in which the company expressed willingness to pay them $250,000 as part of a negotiation over electronic data swiped from HBO’s servers.

The July 27 e-mail was sent by John Beyler, an HBO executive who thanked the hackers for ‘‘making us aware’’ of previously unknown security vulnerabilities. The executive asked for a 1-week delay and said HBO was willing to make a ‘‘good faith’’ payment of $250,000, calling it a ‘‘bug bounty’’ reward for IT professionals rather than a ransom.

HBO declined to comment. A person close to the investigation confirmed the authenticity of the e-mail, but said it was an attempt to buy time and assess the situation.

Advertisement

The same hackers have subsequently released two dumps of HBO material and demanded a multimillion-dollar ransom.

Get Talking Points in your inbox:
An afternoon recap of the day’s most important business news, delivered weekdays.
Thank you for signing up! Sign up for more newsletters here

Whether or not HBO ever intended to follow through with its $250,000 offer, the e-mail raised questions Friday among security professionals about the importance of the data as well as how it will affect future attacks.

‘‘It’s interesting that they’re spinning it as a bug bounty program,’’ said Pablo Garcia, CEO of FFRI North America, based in Aliso Viejo, Calif. ‘‘They’re being extorted. If it was a bug bounty, it’d be on the up and up.’’

Beyler’s e-mail to the hackers said the company was working ‘‘very hard’’ to review all the material they provided, and also trying to figure out a way to make a large transaction in bitcoin, the hackers’ preferred payment method.

‘‘You have the advantage of having surprised us,’’ Beyler wrote. ‘‘In the spirit of professional cooperation, we are asking you to extend your deadline for one week.’’