US: Spies behind 2008 cyber attack
Friday 27 August 2010
A foreign spy agency led a 2008 cyber attack on US military computer systems, a top Pentagon official said, shedding light on what he called the most significant breach of American military cyber security.
Deputy Defense Secretary William Lynn said the attack took place after an infected flash-drive was inserted into a US military laptop at a base in the Middle East, uploading malicious computer code onto the Central Command network.
"That code spread undetected on both classified and unclassified systems, establishing what amounted to a digital beachhead from which data could be transferred to servers under foreign control," Lynn wrote in an article for Foreign Affairs magazine published on Wednesday.
"This previously classified incident was the most significant breach of U.S. military computers ever."
Lynn did not say which country's spy agency was behind the attack. But he said that more than 100 foreign intelligence organizations were trying to break into US networks.
"Some governments already have the capacity to disrupt elements of the US information infrastructure," he wrote.
Every year, he said, hackers steal enough data from U.S. government agencies, businesses and universities to fill the US Library of Congress many times over.
When it comes to attacks on the military, the difficulty identifying culprits behind attacks make them very hard to respond to and alluring for hostile governments, he said.
"Cyber attacks offer a means for potential adversaries to overcome overwhelming U.S. advantages in conventional military power and to do so in ways that are instantaneous and exceedingly hard to trace," he wrote.
Counterfeit hardware had already been detected in systems that had been procured by the Defense Department, Lynn said - a danger since computer chips can be written with remotely operated "kill switches" and hidden backdoors.
"The risk of compromise in the manufacturing process if very real and is perhaps the least understood cyber threat," Lynn wrote.
Rogue code, including so-called "logic bombs" that cause malfunctions, can also be inserted into software as its being developed, he said.
Lynn said the attack was a wake-up call for the Pentagon, which has since launched a Cyber Command and taken measures to bolster defenses.
Policymakers now need to consider whether Pentagon capabilities should be extended to shield civilian infrastructure from attack, Lynn said. He noted that U.S. defense contractors have already been targeted "and sensitive weapons systems have been compromised."
"The US government has only just begun to broach the larger question of whether it is necessary and appropriate to use national resources, such as defenses that now guard military networks, to protect civilian infrastructure," he said.
Life & Style blogs
Video shows how to turn your phone into a 3D hologram
The 'world's most beautiful vagina' has been debunked by science
Porn block in India: hundreds of sexual websites banned, internet outraged
What do the emojis on Snapchat mean?
Is Britain really full up? Are migrants taking our jobs? Leading academic answers the most common anti-immigration claims
Calais Migrant Crisis: Deputy Mayor of Calais labels Cameron's use of 'swarm' as 'racist' and 'ignorant'
Chris Leslie: Jeremy Corbyn's anti-austerity agenda will harm the poor, says Labour shadow Chancellor
Landlords renting properties to illegal immigrants to face up to five years in prison
While we fixate on Calais, the Home Office is quietly deporting dozens of migrants on 'ghost flights'
Calais crisis: The seven claims made about the migrants - and the reality
- 2 Dutch King Willem-Alexander declares the end of the welfare state
- 4 Giant Minion terrorises drivers in Ireland as 40ft inflatable blocks busy Dublin road
- 5 'Cool kids' can go on to become losers in later life, study finds
iJobs Gadgets & Tech
£20000 - £25000 per annum + OTE £45K: SThree: SThree Group have been well esta...
Up to £26k DOE: Guru Careers: A Junior / Mid-Level 3D Creative Designer is nee...
£55000 - £75000 per annum: Recruitment Genius: A Software House that produces ...
£10000 - £13000 per annum: Recruitment Genius: An exciting opportunity has ari...