What a Cyber War Arsenal Looks Like

Uploaded on 2015-06-29 in NEWS-Cybersecurity News, GOVERNMENT-Defence, FREE TO VIEW

 

The Pentagon has made clear in recent weeks that cyber warfare is no longer just a futuristic threat it is now a real one.

US government agency and industry computer systems are already embroiled in a number of nasty cyber warfare campaigns against attackers based in China, North Korea, Russia and elsewhere. As a counterpoint, hackers with ties to Russia have been accused of stealing a number of Pres. Barack Obama’s e-mails, although the White House has not formally blamed placed any blame at the Kremlin’s doorstep. The Obama administration did, however, call out North Korea for ordering last year’s cyber attack on Sony Pictures Entertainment.

The battle has begun. “External actors probe and scan US Department of Defense (DoD) networks for vulnerabilities millions of times each day, and over 100 foreign intelligence agencies continually attempt to infiltrate DoD networks,” Eric Rosenbach, assistant secretary for homeland defense and global security, testified in April before the US Senate Committee on Armed Services, Subcommittee on Emerging Threats and Capabilities. “Unfortunately, some incursions, by both state and nonstate entities, have succeeded.”

After years of debate as to how the fog of war will extend to the Internet, Obama last month signed an executive order declaring cyber attacks launched from abroad against US targets a “national emergency” and levying sanctions against those responsible. Penalties include freezing the US assets of cyber attackers and those aiding them as well as preventing US residents from conducting financial transactions with those targeted by the executive order.
Deterrence of this type can only go so far, of course, which is why the DoD last month issued an updated version of its cyber strategy for engaging its adversaries online. The plan outlines Defense’s efforts to shore up government networks, systems and information as well as those run by US companies.

If cyber attacks continue to increase at the current rate, they could destabilize already tense world situations, says O. Sami Saydjari, a former Pentagon cyber expert who now runs a consultancy called the Cyber Defense Agency. “Nations must begin to create real consequences for malicious action in cyberspace because they are leading, in aggregate, to serious damage, and there is potential for much larger damage than we have seen so far,” he adds.

A major part of the DoD’s cyber strategy is to bolster the Pentagon’s “cyber mission force,” which the department began forming in 2013 to carry out its operations in cyberspace. Although the unit will not be fully operational before 2018 the unit is expected to have nearly 6,200 military, civilian and contractors—divided into 13 teams—working across various military departments and defense agencies to “hunt down online intruders,” Defense Secretary Ashton Carter said last month during a lecture delivered at Stanford University.

The strategy does not go into detail about which digital weapons the cyber mission force will deploy to fight its campaigns. That information can instead be gleaned from the malicious software—“malware”—already rampant on the Internet as well as military technologies designed to disrupt digital communications. The Stuxnet worm that sabotaged Iran’s Natanz uranium enrichment plant in November 2007 is an early example of cyber war weaponry. No one has officially claimed ownership of Stuxnet although much speculation points to the US and Israel as its authors. A related piece of strategic malware known as Flame is subtler, stealthily gathering information and transmitting it via Bluetooth while avoiding detection.

The components of cyber warfare are the very same components as warfare using guns and explosives, only much faster, Saydjari says. An attacker would seek to damage a critical infrastructure such as power, telecommunications or banking by damaging the computer systems that control those infrastructures. “The instrument of creating that damage is generally some form of malicious software that is inserted into such systems by a variety of means including hacking into the system by taking advantage of some known but as yet unpatched or as yet undiscovered vulnerability,” he adds.

China recently admitted that it has both military and civilian teams of programmers developing digital weapons, and documents disclosed by National Security Agency whistle-blower Edward Snowden indicate China has developed malware to attack US Defense Department computers and even steal sensitive information about the F-35 Lightning II fighter plane that Lockheed Martin is developing for the US Air Force. “All technically savvy countries are developing both offensive and defensive capabilities to prepare for the potential of cyber conflict both by itself and as one aspect of broader conflicts including kinetic warfare, which involves bombs and bullets,” Saydjari says. “The goal of many such countries is to be able to exercise complete dominance and control over any part of cyberspace, anywhere and anytime it serves their national interests.”

The Air Force Research Laboratory is soliciting projects that could furnish cyber deception capabilities for use by commanders to “provide false information, confuse, delay or otherwise impede cyber attackers to the benefit of friendly forces.” Another aspect of cyber warfare could be the use of cyber electromagnetic activities to “seize, retain and exploit an advantage over adversaries and enemies in both cyberspace and the electromagnetic spectrum,” according to a US Army report on the subject. Electromagnetic attacks have already struck in South Korea where more than 500 aircraft flying in and out of that country’s Incheon and Gimpo airports reported GPS failures in 2010, IEEE Spectrum reported in 2014. The source of the electromagnetic fields was traced to the North Korean city of Kaesong, about 50 kilometers north of Incheon.

Cyber war itself may be difficult to define but cyber treaties pose an even bigger challenge. “In some sense it is a bit like asking bank robbers in the old Wild West to negotiate a non–bank-robbing treaty,” Saydjari says. “Many countries are benefiting from the lack of rules. Many countries are exploring this new arena of warfare and do not quite understand it well enough to agree to stop exploring it.”

Even more importantly, he adds, it is very difficult to attribute responsibility to actions within cyberspace because of its complexity, “so imposing consequences to treaty violation would be problematic.”


Ein News

 

« China Security Bill Calls for ‘Cyber Sovereignty’
Who’s Afraid Of Superhumanity? »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

Perimeter 81 / How to Select the Right ZTNA Solution

Perimeter 81 / How to Select the Right ZTNA Solution

Gartner insights into How to Select the Right ZTNA offering. Download this FREE report for a limited time only.

Hyve

Hyve

Hyve provide a wide range of managed web hosting services including private, hybrid and public VMware cloud hosting.

Cyberbit

Cyberbit

Cyberbit empowers cybersecurity teams to be fully prepared with a product portfolio ready to detect and respond effectively across both IT and OT networks.

Rewertz

Rewertz

Rewterz is a cyber security company based out of Dubai, serving customers in UAE, Oman, Qatar, Bahrain, Saudi Arabia, and Pakistan.

Shift Technology

Shift Technology

Shift Technology provides insurance companies with an innovative SaaS solution to improve and scale fraud detection.

Bl4ckswan

Bl4ckswan

Bl4ckswan is a Management Consulting firm specialized in the delivery of information security and compliance services.

Expel

Expel

Expel provide transparent managed security services, 24x7 detection, response and resilience.

Concentric

Concentric

Concentric Data Risk Monitoring and Protection. Deep Learning to discover, monitor and remediate risks to sensitive data on-premises and in the cloud.

TekSek Cyber Security

TekSek Cyber Security

Preparing you for tomorrow's security threats.

OwnBackup

OwnBackup

OwnBackup proactively prevents you from losing mission-critical data and metadata with automated backups and rapid, stress-free recovery.

Tactic Labs

Tactic Labs

Tactic Labs (part of the Avnon Group) delivers a holistic Cyber-Security Management Platform which provides military-grade protection, safeguarding critical infrastructures and mission-critical data.

Sec-Ops

Sec-Ops

Sec-Ops is a forward thinking cyber security company, formed by a group of security enthusiasts with years of experience and backgrounds in the technology and the government industries.

Infuse Technology

Infuse Technology

Infuse Technology provide the highest level of cybersecurity support, implementing practical solutions to protect against cyber-attacks, from simple phishing scams to complex data security breaches.

Association of Azerbaijani Cyber Security Organizations (AKTA)

Association of Azerbaijani Cyber Security Organizations (AKTA)

The Association of Azerbaijani Cyber Security Organizations (AKTA) is a non-commercial organization aimed at strengthening the country's cybersecurity system.

Espria

Espria

Espria is a leading independent managed service provider with expertise in Cloud, IT, Communications and Document Solutions.

Acumenis

Acumenis

At Acumenis, we help organisations of all sizes to manage information security effectively. Our key services are penetration testing, ISO 27001 implementations, and security

SecureAck

SecureAck

From our A-Op SaaS automation platform to Managed Automation-as-a-Service (MAaaS), SecureAck offer powerful security automation the way that best suits your organisation's needs.