Operation Blockbuster began in December 2014, independent of any investigation conducted by law enforcement or Sony Pictures Entertainment (SPE). Our intent to not only identify and impact the malicious tools and infrastructure used by the Lazarus Group, but also to clarify details surrounding the November 2014 SPE attack, which was the subject of widespread confusion. While this particular attack occurred over a year ago, we are releasing this report now to detail our technical findings, clarify details surrounding the SPE hack, and profile the Lazarus Group, who has continued to develop tools and target victims since then. Here, in the supplemental resources, we’ve included key information, as well as four supplemental reports which go into far greater detail about the specifics of the Lazarus Group’s tools, techniques and processes. We’ve also included a brief, 2 page Executive Summary, for a quick synopsis of this ongoing operation.