US: Spies behind 2008 cyber attack
Friday 27 August 2010
A foreign spy agency led a 2008 cyber attack on US military computer systems, a top Pentagon official said, shedding light on what he called the most significant breach of American military cyber security.
Deputy Defense Secretary William Lynn said the attack took place after an infected flash-drive was inserted into a US military laptop at a base in the Middle East, uploading malicious computer code onto the Central Command network.
"That code spread undetected on both classified and unclassified systems, establishing what amounted to a digital beachhead from which data could be transferred to servers under foreign control," Lynn wrote in an article for Foreign Affairs magazine published on Wednesday.
"This previously classified incident was the most significant breach of U.S. military computers ever."
Lynn did not say which country's spy agency was behind the attack. But he said that more than 100 foreign intelligence organizations were trying to break into US networks.
"Some governments already have the capacity to disrupt elements of the US information infrastructure," he wrote.
Every year, he said, hackers steal enough data from U.S. government agencies, businesses and universities to fill the US Library of Congress many times over.
When it comes to attacks on the military, the difficulty identifying culprits behind attacks make them very hard to respond to and alluring for hostile governments, he said.
"Cyber attacks offer a means for potential adversaries to overcome overwhelming U.S. advantages in conventional military power and to do so in ways that are instantaneous and exceedingly hard to trace," he wrote.
Counterfeit hardware had already been detected in systems that had been procured by the Defense Department, Lynn said - a danger since computer chips can be written with remotely operated "kill switches" and hidden backdoors.
"The risk of compromise in the manufacturing process if very real and is perhaps the least understood cyber threat," Lynn wrote.
Rogue code, including so-called "logic bombs" that cause malfunctions, can also be inserted into software as its being developed, he said.
Lynn said the attack was a wake-up call for the Pentagon, which has since launched a Cyber Command and taken measures to bolster defenses.
Policymakers now need to consider whether Pentagon capabilities should be extended to shield civilian infrastructure from attack, Lynn said. He noted that U.S. defense contractors have already been targeted "and sensitive weapons systems have been compromised."
"The US government has only just begun to broach the larger question of whether it is necessary and appropriate to use national resources, such as defenses that now guard military networks, to protect civilian infrastructure," he said.
Life & Style blogs
Alexander McQueen at auction: What makes a really great piece of fashion?
A bottle of wine a day is not bad for you and abstaining is worse than drinking, scientist claims
No female ejaculation, please, we’re British: a history of porn and censorship
Stressed nurses are 'forced to choose between health of patients and their own'
Pornhub: Kim Kardashian's sex tape is the most-watched porn video of all-time
Disgruntled RBS worker writes hilarious open letter to Russell Brand after anti-capitalist publicity stunt leaves him hungry
Nigel Farage defends Kerry Smith 'ch***y' comment: 'If you are going for a Chinese, what do you say you’re going for?'
Nigel Farage's approval rating hits 'record low' as popularity suffers in wake of Ukip sex scandal
Pakistan school attack live: Taliban kill at least 132 children in 'horrifying' massacre
Sony hack: Angelina Jolie branded 'seriously out of her mind' in further embarrassing leaked email saga
Panic Saturday: 13 million Britons spend £1.2bn – while 13 million others across the country live in poverty unable to afford food
- 2 Harry Potter fans can apply to the Hogwarts-inspired College of Wizardry
- 3 Jessica Chambers: 19-year-old woman 'doused with lighter fluid and burned alive' in the US
- 4 Russell Brand calls Nigel Farage 'poundshop Enoch Powell' in BBC Question Time debate
- 5 Orange Wednesdays are no more
iJobs Gadgets & Tech
£20000 - £30000 per annum + OTE £50k: SThree: SThree are a global FTSE 250 bus...
£20000 - £25000 per annum + OTE £40,000 + Car + Pension: SThree: SThree are a ...
£20000 - £25000 per annum + OTE £35K: SThree: We consistently strive to be the...
£20000 - £25000 per annum + OTE £35000: SThree: SThree are a global FTSE 250 b...