What's new

Global Cyber Arms Race Heating Up?

RiazHaq

SENIOR MEMBER
Joined
Oct 31, 2009
Messages
6,611
Reaction score
70
Country
Pakistan
Location
United States
http://www.riazhaq.com/2019/01/global-cyber-arms-race-heating-up.html

The United States has launched successful cyber attacks against Iran and North Korea in recent years, according to multiple credible reports. These cyber attacks have caused physical destruction of thousands of Iranian nuclear centrifuges and disrupted North Korean missiles on launchpads or shortly after takeoff. Some of the code and developer tools used in the attacks have leaked out. These leaks are enabling other nations to learn and develop their own offensive cyber weapons. The United States and the United Kingdom have accused Russia of using social media apps like Facebook and Twitter to exploit and deepen divisions during the US presidential elections and the UK's Brexit referendum in 2016. Similar warfare techniques, described by the US RAND Corporation as New Generation or Hybrid Warfare, are probably being deployed by other nations as well. It refers to the use of a broad range of subversive instruments, many of which are nonmilitary, to further a country's national interests. It wouldn't be far-fetched to think that India and Pakistan are learning from New Generation Warfare techniques developed and deployed by technologically advanced nations.


US-Israel Joint Stuxnet Against Iran:

A large number of Iranian centrifuges suddenly started to blow up around 2008-9 soon after President Barack Obama's inauguration. The mystery was finally resolved in the summer of 2010 when a computer worm later named Stuxnet escaped Iran’s Natanz plant and spread around the world on the Internet.

New York Times' David Sanger reported that the United States and Israel developed Stuxnet and then tested it by building replicas of the Iranian Natanz plant equipped with Pakistani P-1 centrifuge designed in 1980s. Americans obtained P-1 centrifuges from Libyan leader Moammar Ghadafi and dismantled them to learn how it worked. P-1 uses a Siemens controller S7-417. Stuxnet inserted malware in the Siemens controller to suddenly change the centrifuge speed which caused its destruction. It was designed to attack computers with specific configuration of Siemens S7-417 controller. Here's how New York Times' David Sanger described the test results:

"After several false starts, it worked. One day, toward the end of Mr. Bush’s term, the rubble of a centrifuge was spread out on the conference table in the Situation Room, proof of the potential power of a cyberweapon. The worm was declared ready to test against the real target: Iran’s underground enrichment plant."

US Left-of-Launch Attack Against North Korea:

A very high percentage of North Korean missile launches failed in the period from 2015 to 2017. The missiles either blew up on the launchpads or failed soon after launch. These failures are widely attributed to American cyber attacks.

American strategists see Left-of-Launch cyber weapons as a low-cost extension of their missile defense strategy. Gen. James Dickinson, the chief of Army Space and Missile Defense Command and Army Forces Strategic Command, explains it as follows:

“You’ve probably heard the conversation about how we’re on the wrong side of the cost curve for missile defense many times. We’re utilizing multi-million-dollar interceptors against very inexpensive missiles and those types of threats, So it’s a balance. It has to be a balance between the end game, if you will, where we’re relying on an interceptor to defeat the threat and other approaches."

Russia's Information Warfare in US, UK:

The United States and the United Kingdom have accused Russia of using social media apps like Facebook and Twitter to exploit and deepen divisions during the US presidential elections and the UK's Brexit referendum in 2016.

American and British intelligence officials believe Russia used all major social media platform to spread words, images and videos tailored to voters’ interests to help elect President Trump. Similar allegations have been made by the British government about Russian interference to influence the outcome of the Brexit vote in the U.K.

Facebook, Google and Twitter acknowledged in 2017 that they had identified Russian interference on their sites. The companies have responded to the threat — Facebook, in particular, created a “war room” in 2018 to fight interference around elections — but none has revealed interference around US midterm elections in 2017 on the same scale as in 2016.

Cyber Weapons Code and Tools Leaks:

Stuxnet worm and recently leaked NSA's hacking tools by Shadow Brokers have revealed the extent of US intelligence agencies' cyber spying and hacking operations. Symantec's Liam O'Murchu who was among the first to unravel Stuxnet says it is "by far the most complex piece of code that we've looked at — in a completely different league from anything we’d ever seen before." It is almost certain that the code is being reverse-engineered and repurposed as their weapon by cyber warriors in many countries around the world.

In 2013, a group known as "Shadow Brokers" leaked NSA's sophisticated cyberweapons that have exposed major vulnerabilities in Cisco routers, Microsoft Windows, and Linux mail servers. Soona after the Shadow Brokers leak, North Korea is believed to have developed and used WannaCry ransomware. It encrypts files on the target PC's hard drive, making them inaccessible, then demands a ransom payment in bitcoin to decrypt them.

Summary:

American agencies have launched successful cyber campaigns against adversaries like Iran and North Korea in recent years, according to multiple credible reports. These cyber attacks have caused physical destruction of thousands of Iranian nuclear centrifuges and disrupted North Korean missiles on launchpads or shortly after takeoff. Some of the code and developer tools used in the attacks have leaked out. These leaks are enabling other nations to learn and develop their own offensive cyber weapons. The United States and the United Kingdom have accused Russia of using social media apps like Facebook and Twitter to cause and deepen divisions during the US presidential elections and the UK's Brexit referendum in 2016. Similar warfare techniques, described by the US RAND Corporation as New Generation or Hybrid Warfare, are probably being deployed by other nations as well. It refers to the use of a broad range of subversive instruments, many of which are nonmilitary, to further a country's national interests. It wouldn't be far-fetched to think that India and Pakistan are learning from New Generation Warfare techniques developed and deployed by technologically advanced nations.


Related Links:

Haq's Musings

South Asia Investor Review

Cyber Hacking Tools in Pakistan

Pakistan Operation Arachnophobia

Social Media Tribalism

Revolution in Military Affairs: Cyberweapons and Robots

Cyber Warfare

Pakistani-American Founder of Fireeye Cyber Firm

Pakistan Boosts Surveillance to Fight Terror

Pakistan's Biometric Registration Database

Operation Zarb e Azb Launch

Ex Indian Spy Documents RAW's Successes in Pakistan

Intelligence Failures in Preventing Daily Carnage in Pakistan

What If Musharraf Had Said NO to US After 911?

Pakistani Computer Scientist Fights Terror

Pakistani Killer Drones to Support Anti-Terror Campaign

3G 4G Rollout Spurs Data Services Boom in Pakistan

Fiber Optic Connectivity in Pakistan


http://www.riazhaq.com/2019/01/global-cyber-arms-race-heating-up.html
 
.
One thing I don't understand how stuxnet entered centrifuge system did some mole implanted it manually or were they linked with internet ????
 
.
One thing I don't understand how stuxnet entered centrifuge system did some mole implanted it manually or were they linked with internet ????

It was probably downloaded on a laptop which was later connected to the internal network at Iran's Natanz plant.
 
.
It was probably downloaded on a laptop which was later connected to the internal network at Iran's Natanz plant.
So a mole
why would anyone connect a net connected laptop to a centrifuge system without a malice
 
. . .
Hybrid warfare
Munir Akram December 09, 2018 Facebook Count


https://www.dawn.com/news/1450346

THE 2018 IDEAS Expo in Karachi featured a high-level seminar on hybrid warfare. This was a timely recognition that threats to national security can and do assume complex forms.

For over 60 years, nuclear weapons have deterred a major conflict between nuclear-armed states, and, because of the global revulsion against the use of nuclear weapons, the nuclear powers have been also unable to realise offensive objectives through nuclear coercion, even against non-nuclear weapon states. Thus, most conflicts are in the form of conventional military interventions against smaller or weaker states, sub-conventional (guerrilla or irregular) conflicts or ‘hybrid warfare’.

Western analysts have termed the comprehensive approach employed by Russia in Ukraine (encompassing narrative control, cyberattacks, use of anonymous militias and irregular forces, clandestine supplies and diplomatic support) as “hybrid warfare”. The Russians refer to it as the ‘Gerasimov Doctrine’ (after the Russian military chief). This form of warfare is also called: asymmetrical, non-conventional, gray zone conflict, ‘new generation warfare’, ‘whole of government’ approach and so on. It is emerging as the preferred modality in today’s contests between the great powers.

Often, hybrid war may not be a war at all. The objective may not be to secure an adversary’s immediate defeat, but to erode its morale; isolate it; ‘soften’ it up before a conflict; deflect it from pursuing unacceptable military or political objectives; disrupt its communications, command and control and/or important infrastructure; impose economic pain to secure adherence to political demands; delegitimise an adversary’s government; compromise its leaders.

The objective may not be to secure an adversary’s immediate defeat, but to erode its morale.

The toolbox of instruments that can be used to wage such ‘hybrid’ warfare is rapidly expanding and becoming more sophisticated: eg autonomous weapons, advanced cyber programmes, social media, data mining, algorithms and artificial intelligence (AI), etc. By 2020, the ‘internet of things’ will reportedly connect 30 billion devices. Power will rest with the people who control these devices.

Technology is progressively blurring the distinction between hybrid and conventional warfare and increasing the incentives, opportunities and compulsions for the preemptive or ‘first-use’ of offensive action by adversaries eg to knock out an enemy’s command and control through a cyber strike. Given the complexities of defence and offence in such complex conflict, it will become increasingly difficult to prevent the escalation of hybrid wars to the conventional and even the nuclear level.

Pakistan was the target of hybrid or indirect ‘war’ in 1971. New Delhi’s hybrid strategy (promotion of Mujib’s six-point plan, the genocide and refugees narrative, training the Mukti Bahini, the Indo-Soviet ‘Friendship Treaty’) all laid the ground for the coup de grâce of Indian military intervention in East Pakistan.

Since then, Pakistan has been the target of multiple ‘hybrid’ campaigns. Exaggerated proliferation concerns and coercive diplomacy were utilised to hold back Pakistan’s nuclear and missile programmes. The legitimacy of the Kashmiri freedom struggle was eroded by its projection as terrorism including through false-flag operations, infiltration of militant Kashmiri groups and concerted propaganda. The onus for America’s colossal military and political failure in Afghanistan was ascribed to alleged Afghan Taliban ‘safe havens’ in Pakistan. The Pakistan Army and the ISI remain a special focus of propaganda and fake news.

Today, the hybrid war against Pakistan is focused on Balochistan, the former Fata region, Gilgit-Baltistan and the China-Pakistan Economic Corridor.

Pakistan has developed credible capabilities to deter nuclear and conventional aggression. However, it remains very vulnerable to hybrid warfare. Pakistan’s adversaries enjoy considerable prowess in IT, cyber, media projection and narrative construction, including ‘fake news’, subversion and sabotage, and sponsorship of terrorism, including ‘false-flag’ operations.

The main modality of this ‘indirect war’ against Pakistan is the media, including social media. Very few Indian media personalities enjoy the ‘freedom’ to be critical of their country or their current government. Meanwhile, Pakistan print and electronic media speaks with many voices. There is little space for pro-Pakistani narratives in the Western media. An army of Indian trolls has been recruited to malign Pakistan on the internet.

There are numerous other ‘agents of influence’ who are used to develop and project an anti-Pakistan narrative. Many foreign funded and directed non-governmental organisations have been ubiquitous in developing negative critiques about Pakistan within Pakistan. Some among our local elite are co-opted by these organisations through jobs, travel and other perks. No wonder there has been such a hue and cry about the long overdue diligence conducted recently by the government and the Foreign Office on these organisations.

The hybrid campaign incorporates some ethnic and religious groups. Foreign sponsorship of the Balochistan Liberation Army and the Tehreek-i-Taliban Pakistan is well established. Some others need to be subjected to close scrutiny.

Any foreign funding of any Pakistani organisation ought to be declared and officially approved. Receipt of undeclared foreign payments should be a crime. This is an international norm. (Surely, the Financial Action Task Force will approve.)

Pakistan’s agencies must be equipped with the most advanced surveillance and data collection techniques to detect future Jadhevs or Osamas and neutralise any ‘black ops’, ‘false-flag’ or infiltration operations planned by enemy agencies.

Pakistan must possess the cyber capability to defend its crucial command-and-control systems and its industrial and transport infrastructure against enemy attack. But to deter such attack, Pakistan must also have the capability for offensive cyber action.

The technologies for waging a “comprehensive” conflict and “new generation warfare” are being actively developed by every significant State. Pakistan cannot afford to be left behind. To acquire credible capacity to defend against and repel hybrid wars, Pakistan will need to make dedicated efforts, comparable to those deployed to develop its nuclear and missile programmes.

However, there are certain elements of such warfare (cyberattacks, autonomous weapons, false-flag operations) which pose the threat of systemic and global disruption, destabilisation and military escalation. Pakistan and other responsible nations should take an initiative in relevant international forums to secure a global ban or restrictions on such dangerous elements of hybrid warfare.

The writer is a former Pakistan ambassador to the UN.

Published in Dawn, December 9th, 2018
 
.
Back
Top Bottom