Stories
Slash Boxes
Comments
Search

News for nerds, stuff that matters

Slashdot Log In

Log In

Create Account  |  Retrieve Password

Government-Sponsored Cyberattacks on the Rise

Posted by Zonk on Fri Nov 30, 2007 01:23 PM
from the less-of-a-pr-disaster-too dept.
Security Government United States IT News Politics
jbrodkin writes "A new McAfee report finds that 120 countries, notably the United States and China, are regularly launching Web-based espionage campaigns. Government-sponsored cyber attacks against enemy countries are becoming more common, targeting critical systems including electricity, air traffic control, financial markets and government computer networks. This year, Russia allegedly attacked Estonian government news and bank servers, while China was accused of hacking into the Pentagon. A McAfee researcher says this trend will accelerate, noting 'it's easier to attack government X's database than it is to nuke their troops.'"
+ -
story

Related Stories

[+] Russia Accused of Cyber-War Against Estonia 373 comments
earthlingpink writes about the ongoing DDoSing of Estonia. The Guardian is reporting that Russia stands accused of engaging in a three-week-long series of cyber-attacks. Government, banking, and media websites have been targeted. It is unclear whether the attacks are sanctioned or initiated by the Russian Government, but Estonian authorities believe that to be the case. NATO has sent security experts to Tallinn to help beef up defenses. The Estonian defense minister said, "At present, NATO does not define cyber-attacks as a clear military action. This means that the provisions of... collective self-defense, will not automatically be extended to the attacked country... this matter needs to be resolved in the near future."
[+] Chinese Military Hacked Into Pentagon 405 comments
iFrated informs us of a successful penetration of US Defense Department computers by the Chinese military last June. From the article: "The Pentagon acknowledged shutting down part of a computer system serving the office of Robert Gates, defense secretary, but declined to say who it believed was behind the attack. Current and former officials have told the Financial Times an internal investigation has revealed that the incursion came from the [Chinese] People's Liberation Army. One senior US official said the Pentagon had pinpointed the exact origins of the attack. Another person familiar with the event said there was a 'very high level of confidence... trending towards total certainty' that the PLA was responsible." The PLA is also accused of breaking into German government computers, including a network in the office of the Chancellor.
Submission: Government-sponsored cyberattacks on the rise by jbrodkin (1054964)
This discussion has been archived. No new comments can be posted.
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.

Government-Sponsored Cyberattacks on the Rise 50 Comments More /

 Full
 Abbreviated
 Hidden
More
Loading... please wait.

  • Not just that... (Score:5, Funny)

    by AltGrendel (175092) <<ag-slashdot> <at> <exit0.us>> on Friday November 30 2007, @01:26PM (#21535527) Homepage

    ...noting 'it's easier to attack government X's database than it is to nuke their troops.'

    But it's easier on the environment, too!!

  • How ironic... (Score:3, Insightful)

    by feepness (543479) on Friday November 30 2007, @01:27PM (#21535545) Homepage
    That something designed to protect communication infrastructure in time of war has instead become "easier to attack" than the target itself.

  • Not exactly surprising! (Score:3, Insightful)

    by QuantumFTL (197300) <<justin.wick> <at> <gmail.com>> on Friday November 30 2007, @01:32PM (#21535637) Homepage
    Is anyone really surprised by this? As long as there is something to gain, and there are not suitable deterrents, governments tend to do these kinds of things. Indeed the United States would be foolish to sit back as others engage in cyberespionage.

    Yet another good reason to keep your computers secure!
    • I doubt even the majority of /.ers could keep a government hacker out of their systems.
      • I doubt even the majority of /.ers could keep a government hacker out of their systems.

        I could. It's called 'unplugging your computer from the internet'.
        • Touché.

        • Re: (Score:3, Insightful)

          by cumin (1141433)

          I think this is exactly the point I haven't seen anybody making, but that we're all feeling. If governments are actively engaging in hacking, assuming they find competent hackers, what is to stop somebody from using the tools to hit innocent civilians? Of course they could, of course they might, and maybe planting a little evidence? How would you prove it?

          It goes toward that mentality of finding evidence, then getting a warrant. If you think John Citizen might be doing something wrong, you simply use the o

        • That's where more traditional methods come into your place. IE agents pick the lock on your place, enter your house and place a keylogger in your keyboard.

          Or open your computer and copy your HD.

          They want it badly enough, they're going to get it.

          I'm just surprised to see this now, I mean, it's been months since the news that the USAF is forming a command to conduct cyberwarfare.
    • http://slashdot.org/comments.pl?sid=374805&cid=21522989 [slashdot.org]

      Yes, foolish to let other governments have all the totalitarian fun. I'm reasonably certain that the current administration has been using their toys to spy on us all.
      • Can you blame a governing institution for taking what their constituents give them?! We live in a democracy, and our voters have proven they are willing to do little or nothing to prevent the loss of their natural rights.
    • to quote Lynval Golding. What did your mother teach you about everyone jumping off a bridge, anyway?

      Indeed the United States would be foolish to sit back as others engage in cyberespionage.

      I think the activity is more at punking than espionage, in any case.

      • What did your mother teach you about everyone jumping off a bridge, anyway?

        This isn't like jumping off of a bridge. There's a breal, tangible benefit here, and if the situation is assymetric, our country would be best off if it were asymmetric in our favor.

        Part of our "evil" plan to control the entire world involves us performing acts of espionage against just about every other country.

        Every country does it, because that's how a country survives. If there was no such thing as war and terrorism (whatever the cause) maybe that would not be the case. But as long as other countries threaten our position, our livelihood, and even our very existence (and in the nuclear age, yes they do) we're gonna have to collect information through just about every available means. It may not be "nice" but it is a smart move.

        • +1, Funny (Score:3, Interesting)

          by rodentia (102779)
          Part of our "evil" plan to control the entire world involves us performing acts of espionage against just about every other country.

          Nothing *evil* about our plans or anyone elses.

          because that's how a country survives.

          I consider rather that countries survive by learning how to evade history, the hysterical story of global capitalism. See another of my replies to TFA.

          Your primary mistake is not to overstate the risk, but to misplace it. *Nations* do not function as discrete moral units in soci
          • How is the USA a "national accident"? According to my history lessons, documentaries I've watched, and books and articles I've read, there was nothing accidental about the formation of the USA. It is my understanding that the colonial rebels laid out political boundaries and fought off the UK. Subsequent states with set political boundaries agreed to join the union through a democratic process.

            Germany, France, and Italy, just to name a few examples, are nations where political boundaries are more or less ge
  • . . . we'll all soon recognize the degree to which these *nations* are practically indistinguishable from criminal cartels, but with priviledged access to hysteria, er, history.

      • Theoretical physics has that luxury, dealing in pure abstraction. All reality may be ineffable, indeed, but human communication is diachronic, as is human attention.

        We are dealing in the interactions of collections of particles called beings; rather, collections of those collections.

        Your comment floored me, but on second glance it is at once right as rain and false as a wooden nickel.

  • which is better? (Score:5, Insightful)

    by pak9rabid (1011935) on Friday November 30 2007, @01:36PM (#21535721)
    What do people here think is better...a physical attack (with guns, bombs, etc) where live are being lost, or cyber attacks where lives are not being lost (to the best of my knowledge..please correct me if I'm overlooking something).
    • It depends. Are any of the cyberattacks going to shut down power grids? If so, are there any hospitals on those power grids? Cyberattacks can kill too.

    • Re: (Score:3, Interesting)

      by l4m3z0r (799504)

      Completely not joking, a physical attack is better and heres why. Physical destruction of lives and things pisses off the populace. People will get up in arms about ending the war and making peace. If its "just" some cyber attacks people will be apt to let it go on a long time or indefinitely being a constant strain on the economy. The economy as you know is what feeds us. If cyberwar destroys the economy to the point where unemployment is riding high thats much worse off than a few thousand killed bef

      • Re: (Score:3, Interesting)

        by aztektum (170569)
        Yes I'd much rather have hundreds/thousands of people killed, hundreds/thousands/millions maimed, and hundreds/thousands/millions of survivors grieving and scarred for life than face up to the fact that "Oh shit, the economy is swirling the drain. My money is now worthless and I can't buy that $SHINY_GIZMO."

        Economies are far more easily rebuilt. Placing an economic system above lives is utterly naive and shows a complete lack of self-sufficiency, IMO.

        If the concern over economic collapse through hack attack

  • Huh? (Score:3, Interesting)

    by Otter (3800) on Friday November 30 2007, @01:38PM (#21535753) Journal
    "Cyber assaults have become more sophisticated in their nature, designed to specifically slip under the radar of government cyber defenses," McAfee states. "Attacks have progressed from initial curiosity probes to well-funded and well-organized operations for political, military, economic and technical espionage."

    I'm completely not understanding how the linked article is derived from this "McAfee's Virtual Criminology Report". The version I'm seeing has nothing to do with "government-sponsored cyberattacks" and doesn't contain this quote.

  • Wasn't the attack on Estonia actually conducted by the Storm botnet?
    • As far as I understand, the attack was instigated by various pro-Kremlin organizations like Nashi. While they're officially independent, they regularly get discreet support from high-level Kremlin politicians and bureaucrats. Considering the amount of thuggery and shady operations that are consistently tied to these organizations, it wouldn't surprise me that one or other botnet was used in the process. However, this in no way diminishes the support that this attack has had from the Kremlin. On the contrary

  • No (Score:5, Insightful)

    by Yvanhoe (564877) on Friday November 30 2007, @01:58PM (#21536089) Journal
    Sorry to be nitpicking, but it *IS* easier to drop a nuke than to attack a correctly set-up network.

    Hollywood managed to persuade everyone that with a few million dollars and a rock-star hacker it is possible to break into the most secure systems. The fact is that when sysadmins have been doing their jobs, it is easier to conduct a physical attack than a networked one. Do you think that electronic money could exist otherwise ?

    • Re:No (Score:4, Interesting)

      by Vanden (103995) on Friday November 30 2007, @02:09PM (#21536277) Homepage
      Given your assumptions of "correctly set-up network" and "sysadmins have been doing their jobs", I would agree.

      However, most of us know that many networks are vulnerable to attack because they're neither correctly set-up nor are their admins doing their jobs. In these cases, even a no-talent script kiddie could break in easier than a government could launch a nuclear attack.
    • It's easier to attack the network no matter what, for two reasons:
      1) If you fail, you don't die.
      2) Nobody notices when you succeed, and you're free to do whatever with the information you've got.

      If someone notices you've failed (or succeeded), you're likely to be prosecuted in your country of residence. Unless you're hacking for the government, in which case... exactly nothing happens.

      Wheras if you fail at dropping a nuke (i.e. the nuke somehow gets destroyed by a "missile defense system") you die. Quickly.

    • Sorry to be nitpicking, but it *IS* easier to drop a nuke than to attack a correctly set-up network.

      How many government networks do you suppose are correctly set up? Nevermind commercial networks, which don't even have the benefit of government standards on securing their systems.

  • RTFR! (Score:4, Informative)

    by cfulmer (3166) on Friday November 30 2007, @02:02PM (#21536149) Journal
    Argh. The report [mcafee.com] (possible sign-in required) DOES NOT say that the US is conduction cyber-espionage activities. (Note: the linked-to article in the parent points to the 2005 report) It does say that there are an "estimated 120 countries working on their cyberattack commands," which is quite different from actually being involved in espionage.

    (Note that I'm not asserting that the US is not conducting electronic espionage. I would hope that we are. Heck, we did electronic espionage long before the internet; why should we stop now?)

    • Re: (Score:2, Informative)

      by jbrodkin (1054964)
      I am the author of the story and I interviewed McAfee researchers who told me the United States is one of the 120.

  • Indeed, this is not new... (Score:4, Insightful)

    by rickb928 (945187) on Friday November 30 2007, @02:05PM (#21536215) Homepage
    And it's not even very much a secret now.

    Estonia got hammered, probably by Russia. That Russia contracted a stormbot net merely qualifies it as a mercenary attack. Think Bay of Pigs, with a lot more deniability.

    China-based machines have been spotted trying all sorts of hijinks against targets worldwide. Not that China-based machines are alone in this, but they seem to be pretty aggressive.

    When I was younger, I dreamt up interesting warfare. Why use Anthrax when a decent influenza mutant gave you deniability and a very debilitating attack. Use something like Salmonella, and give the population diarreah. A cleanup of fairly massive proportions. As part of the strategy, hit Atlanta with the Salmonella, and Phoenix, and watch the water problems escalate. Influenza would be best used in metropolitan areas, since it would be indistiguishable from a genuine pandemic.

    Cyberwar offers states deniability, subterfuge, and targeted attacks at economic and industrial resources. Wonderful way to cripple your opponent on their own soil, and then run circles around them snarfing up territory, influence, or just plain good press while the losers suffer in every other way.

    Once upon a time, you knew who your enemy was - they were slashing, shooting, or bombing you. then it got harder to figure out where they were. Then it got harder to figure out WHO they were.

    From now on, it will be harder to figure out if you're really under attack, until it's too late.

    I suspect our military will be taking more and more systems off-Net, to completely prevent attacks. Then our adversaries will go after the softest parts of the military systems: Communications - satellites for instance. Logistics - civilian systems the military depends on. Political Systems - including the media, elections.

    We are close to fighting an invisble enemy, with uncertain targets, in a neverending low-grade conflict that saps our resources and diverts our attention from greater threats and opportunities.

    Time to start giving tax breaks to onshore manufacturers again. We cannot continue to import most of our critical technology from our avowed and hostile enemies.

    • Re:Indeed, this is not new... (Score:5, Insightful)

      by NeutronCowboy (896098) on Friday November 30 2007, @03:26PM (#21537395)
      I agree with pretty much your entire post, except for the last paragraph. If you do not even know who your enemy is and whether anyone is attacking you, the only way to ensure your safety is to tie everyone's well-being to yours. This requires deep economic and social ties between individuals and corporations in the different countries. If cutting into American GDP by releasing various pandemics on its soil backfires because people in your country don't have jobs anymore, you're gonna think twice about doing that.

      Low-grade, untraceable and deniable attacks are a fact of life with electronic communications. We can either make sure that everyone has a stake in the overall health of the world economy, or we can start a wonderful cycle of isolationism, paranoia and "us vs them" attitude. Personally, I know which way I tend.

  • Here's a thought (Score:3)

    by di0s (582680) <cabbot917.gmail@com> on Friday November 30 2007, @02:15PM (#21536399) Homepage Journal
    Don't connect critical infrastructure to public networks?? Seriously, what use could Pentagon users possibly have for the public internet? Granted if they *did* introduce a virus or trojan into Pentagon computers, at least it would be a little harder to get information back out.

    • Don't connect critical infrastructure to public networks?? Seriously, what use could Pentagon users possibly have for the public internet?

      You mean like the SIPRNet [wikipedia.org]? And just because you're working on military computers doesn't mean you aren't working with COTS software and hardware. There are far too many reasons to list why they'd need the public internet, but with government spending, it's easier to buy two of everything to keep one away from the public.

        • Re: (Score:3, Interesting)

          by bhmit1 (2270)

          Maybe they break into the home computer of Sam Gov Lacky who is fond of downloading iTunes and putting them on CD. Sam takes it to work, slips it in, his supervisor wouldn't care if they noticed, and now everything Sam's computer touches is trying to bundle information into an invisible location on the hard drive. Now all they have to do is bribe for or luck into the hard drive with the information they want and decrypt.

          Not that this is impossible, but it's a lot more difficult than that. Friends that wor

  • your tax dollars at work? (Score:3, Insightful)

    by keithjr (1091829) on Friday November 30 2007, @03:21PM (#21537323)
    This might generate an interesting new source of revenue for the Storm botnet. Lease out DDOS horsepower, as it currently being done, to the highest bidding government. Scary.
  • Surely any country that didn't investigate just how vulnerable it and other countries are to attacks from the internet would be pretty foolish. Even if your country is someplace like Iceland or New Zealand that has few enemies and is unlikely to be attacked, you'd probably like to know what Denmark or Fiji could do to your information infrastructure if they chose to .. and how you could retaliate if you chose to.

    Countries -- no names -- who think their national identity requires them to be the world's

  • Me: So, why is my internet out this time?

    Tech Support: Um, let me check. (spins the wheel of random technical failures) Looks like acid rain. Sorry.

    Me: That's what you told me last time! I think you're lying to me!

    Tech Support: Ok, let me check it again. (spins the wheel) Ok, it's actually a government sponsored cyber attack.

    Me: Gah.

    • Re: (Score:2, Insightful)

      by Bearhouse (1034238)
      Well, you got what you asked for!

      Silly, really, since many people here think that rootkitted non-win servers play a key role in controlling botnets.

      They are the 'Generals', whilst the windows boxes are he expendable 'troops'
    • These kind of attacks have been going on for years and years. Nothing new.

      SCADA attacks are as old as the hills.

    • Re: (Score:3, Insightful)

      by geekoid (135745)
      No, in fact a large part of the world is nice.Probably well over 90% of the people will leave you alone.

      Infiltrating other government networks is an act of war. So I don't expect them to actually attack them, any more then I expect a military exercise to actually attack 'enemy' targets.

      People like you are exactly the kind of people who are fucking up security.

All trademarks and copyrights on this page are owned by their respective owners. Comments are owned by the Poster. The Rest © 1997-2009 Geeknet, Inc.