Cyber Warfare - Alleged Failures Of North Korean Missile Launches

Uploaded on 2017-05-03 in NEWS-Cybersecurity News, INTELLIGENCE--International, GOVERNMENT-National, GOVERNMENT-Defence, FREE TO VIEW

“In war, the truth is so precious that is has to be surrounded by a bodyguard of lies" -- Winston Churchill speaking at the end of WWII.

There has been a lot of speculation over the true cause of the many failures of North Korea’s missile tests. Some people are suggesting the Trump Administration is behind the failures by somehow introducing a virus into the missile systems to make them fail.

Such freelance analysis on the Internet is unhelpful in the least. It sets hares running. It makes potential enemies more aware of their vulnerabilities, and often closes off avenues that might otherwise have been helpful.

In an era where nothing seems to be a secret anymore, a frenzy of on-line speculation over the range and potential of American cyber-attack capabilities really does not help.

Even if such so-called analysis is intended to create false news stories to bury the original secret is a mountain of lies, it still remains dangerous. People who do this are messing with the very foundations of the security of the United States.

It also invites people to retaliate as the potential enemy develops an increasing sense of grievance that they have been publicly humiliated. That often does not go well. Remember what happened to Sony Corporation when they sanctioned the making of the movie, “The Interview?”

North Korea is a state that does not like its leaders to be the subject of mirth and comedy. The leadership in Pyongyang have shown they grasp the idea that revenge is a dish that is best served cold. Their use of cyberspace to attack South Korean banks and other systems illustrates that point rather well.

Stuxnet and its implications for the Iranian nuclear program are clearly at the heart of such on-line guesswork. Just because it is alleged, and has never been publicly confirmed, that America and Israel were behind efforts to delay the Iranian nuclear program using a virus to attack the centrifuges, so-called experts seem to think they can draw parallels with other kinds of failures.

At the heart of Gulf War One when Scud missile started to reign down on Israel, they broke up as they re-entered the atmosphere. Iraqi welders, it appears, are not as good as those from North Korea. In the many attacks mounted by the Houthi rebels using Scud missile systems against Saudi Arabia, many have hit their designated targets.

Similarly, Yemeni Scuds, sourced from North Korea, appear to work despite being maintained by people who have little expertise in such missile systems. Like the V2 missiles that were its progenitor at the end of WWII, the Scud is relatively easy to maintain and launch, as North Korea has demonstrated on many occasions. Scuds do not have that many ways of failing. The guidance systems are not that complicated.

Given this, the question is begged: is someone seriously suggesting that a piece of malware could sit in a North Korea missile system and only become active in a missile that is launched in the direction of Japan?

The question of how such a piece of software might arrive in a North Korean missile is one which those speculating need to seriously consider.

In the case of the Stuxnet virus, the attack vectors – the means by which the software was introduced into the Iranian nuclear program, are gradually becoming clear. Those behind the attack, and this is not a confirmation that it was the Americans and Israelis, developed a number of ways of introducing the virus into Iran’s nuclear facilities.

One of the enduring lessons to emerge from that incident, whoever was behind it, is that once a virus exploiting a number of so-called zero-day vulnerabilities, and Stuxnet exploited four, it cannot be put back in the box. Such things are one time weapons. Once used, they are no longer a secret. They therefore need to be conserved and only used at a time and place when the situation demands. They also require a high-degree of risk analysis concerning the ways in which the virus is delivered into the target system.

Having someone walk in the gate and load up the software and walk away may sound nice in Hollywood movie scripts, but the reality is clearly much riskier. Given the North Korean’s leaders much quoted propensity for giving any opposition to his leadership a nasty ending -- remember what happened to his Aunt and Uncle, few would take the risk to plug in software that might be detected. If a virus was to be introduced into the Scud or the telemetry systems that observed its launch, surely Pyongyang would have become aware that such a threat had manifested itself inside one of their systems.

Another example is worth discussing. When North Korea started to supply Syria a nuclear plant which started to be built in the Dier Ez Zour area of Syria, an area incidentally now held by ISIS – Israel mounted an attack to neutralize the plant. It was called Operation Orchard. As Israeli aircraft flew into Syrian airspace, a remarkable thing happened. Not one missile from the Russia-built S-300 system delivered to Syria fired. Something had paralysed Syria’s command and control system.

While at the time there was speculation Israeli had somehow pulled off a stunning cyber-attack against the S-300 system, rumors also started to circulate over the presence in the package of attack aircraft of an Israeli electronics warfare escort aircraft.

Perhaps it was this aircraft which managed to neutralise the Syrian air defence systems and give the Israeli aircraft an unopposed ingress and egress from Syrian airspace.

But that story is now lost in the sands of time, masked by all sorts of varying accounts, some true and some false, over how the Israeli’s manage to neutralize the entire Syrian Air Defence system. It certainly caused the Syrians angst. The shock waves of the attack were also felt in Tehran.

At the time, the Iranians had just signed a contract, which was initially embargoed, to purchase the same missile defence system. Imagine how that went down with the Mullah’s in Tehran. The S-300 was supposed to protect the Iranian nuclear program from just such an attack by Israel. As the sanctions regime against Iran has been relaxed, it has now been able to get hold of the S-300 system and put it into operation.

Fast forward to today and the problems created for NATO by the seriously capable S-400 variant, and the even newer S-500 missile system just been introduced into service around Moscow. These are systems that help Russia enforce a policy of creating what is known as an Anti-Access Area Denial (A2AD) approach to missile defense.

Suffice it to say that as far as aircraft are concerned, entering an area protected by one of these modern variants of the Russian surface-to-air missile system inventory is likely to be a life changing experience for the pilot. These are seriously capable missile systems that, according to open source reporting, can conduct 36 parallel engagements with a very high probability of killing any designated target.

If America, or its allies, are working on ways to bring down such a missile system using cyber-attacks, it is not helpful to publish something that is little better than guesswork in publicly available forums such as the Internet or by mainstream journalists.

If America or its allies also find ways of undermining North Korea’s program of building missiles, well, then, that is also something that should stay in the highly-classified domain of intelligence, and out of the public domain. Speculation as to what America just might be able to do is at the very least silly, and at its worst, harmful to national security. Those who speculate are not helping. They should desist immediately.

Churchill’s observations at the end of WWII remain axiomatic. Some things in the highly-classified box need to remain there, despite the efforts of some in the mainstream media to release it into the public domain.

In an increasingly wicked world, the very foundations of homeland security that one day may save America and allied lives needs to remain classified.

HomeLandSecurityToday:

You Might Also Read:

North Korea More Likely To Launch A Cyber Attack Than A Military Strike:

Cyber Attacks Against Korean Missile Launches:

Cyberwarfare: Borders Offer No Defense:

Stuxnet, Secrecy & The New Era of Cyber War:

 

« Terrorism Prevention & Border Protection – New Face Recognition Platform
Big Data Tech Alters Homeland Security »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Alvacomm

Alvacomm

Alvacomm offers holistic VIP cybersecurity services, providing comprehensive protection against cyber threats. Our solutions include risk assessment, threat detection, incident response.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

Directory of Cyber Security Suppliers

Directory of Cyber Security Suppliers

Our Supplier Directory lists 7,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

Latvian Information & Communications Technology Association (LIKTA)

Latvian Information & Communications Technology Association (LIKTA)

LIKTA brings together leading Latvian companies, organizations and professionals in the field of Information & Communications Technology

Roke Manor Research

Roke Manor Research

Roke is a world-class electronics engineering consultancy. Areas of expertise include cyber security, cyber assurance and cryptographic solutions.

ElcomSoft

ElcomSoft

ElcomSoft is a global leader in computer and mobile forensics, IT security and forensic data recovery.

Iceberg

Iceberg

Since 2016, Iceberg has redefined how businesses approach hiring in the Cybersecurity and eDiscovery space.

LATRO Services

LATRO Services

LATRO Services is a complete solution provider to discover, locate, and eliminate telecom fraud.

Keynetic Technologies

Keynetic Technologies

Keynetic focuses on developing cybersecurity solutions for Industry 4.0.

National Accreditation Agency of Ukraine (NAAU)

National Accreditation Agency of Ukraine (NAAU)

NAAU is the national accreditation body for Ukraine. The directory of members provides details of organisations offering certification services for ISO 27001.

Alias Robotics

Alias Robotics

Alias Robotics is a robot cyber security company. We deliver cyber security solutions for robots and robot components.

Accolite Digital

Accolite Digital

Accolite is an innovative, design thinking software company that guarantees seamless digital experiences with maximum results.

Curity

Curity

The Curity Identity Server brings identity and API security together, enabling highly scalable and secure user access to digital services.

Nigerian Communications Commission (NCC)

Nigerian Communications Commission (NCC)

NCC has established a CSIRT for the telecommunication industry to provide services and support for the prevention and management of potential cyber security related emergencies.

FortiGuard Labs

FortiGuard Labs

FortiGuard Labs is the threat intelligence and research organization at Fortinet. Its mission is to provide Fortinet customers with the industry’s best threat intelligence.

Josef Ressel Centre for Intelligent & Secure Industrial Automation

Josef Ressel Centre for Intelligent & Secure Industrial Automation

The Josef Ressel Centre for Intelligent and Secure Industrial Automation investigates the fundamentals of digital assistants for industrial machines that enable intelligent and secure operation.

Sentryc

Sentryc

Sentryc provides automated monitoring of brands on online marketplaces and social media making online brand protection processes faster, more clearly structured and more efficient.

Nothreat

Nothreat

Nothreat has revolutionized how businesses like yours protect themselves from damaging cyber attacks. Our tech learns and adapts in real time, protecting clients from even zero-day attacks.

Staris

Staris

Human based defense is dead. Staris is reinventing application security for an increasingly AI driven world.