E-mail updates
Follow on Twitter
Subscribe to RSS
Rick Wilking / Reuters file
First Lt Michael Newman examines a server rack that is isolated from the Internet at the Air Force Space Command Network Operations & Security Center at Peterson Air Force Base in Colorado Springs, Colo., in July 2010.
The United States is locked in a tight race with China and Russia to build destructive cyberweapons capable of seriously damaging other nations’ critical infrastructure, according to a leading expert on hostilities waged via the Internet.
Scott Borg, CEO of the U.S. Cyber Consequences Unit, a nonprofit institute that advises the U.S. government and businesses on cybersecurity, said all three nations have built arsenals of sophisticated computer viruses, worms, Trojan horses and other tools that place them atop the rest of the world in the ability to inflict serious damage on one another, or lesser powers.
Ranked just below the Big Three, he said, are four U.S. allies: Great Britain, Germany, Israel and perhaps Taiwan.
But in testament to the uncertain risk/reward ratio in cyberwarfare, Iran has used attacks on its nuclear program to bolster its offensive capabilities and is now developing its own "cyberarmy," Borg said.
Borg offered his assessment of the current state of cyberwar capabilities Tuesday in the wake of a report by the American computer security company Mandiant linking hacking attacks and cyber espionage against the U.S. to a sophisticated Chinese group known as “Peoples Liberation Army Unit 61398.
According to a new White House report released today, cyber spying and other forms of economic espionage are a growing national security threat – especially from China, where hackers are able to quietly and discreetly acquire source code from U.S. companies. NBC's Andrea Mitchell reports.
In today’s brave new interconnected world, hackers who can defeat security defenses are capable of disrupting an array of critical services, including delivery of water, electricity and heat, or bringing transportation to a grinding halt. U.S. senators last year received a closed-door briefing at which experts demonstrated how a power company employee could take down the New York City electrical grid by clicking on a single email attachment, the New York Times reported.
U.S. officials rarely discuss offensive capability when discussing cyberwar, though several privately told NBC News recently that the U.S. could "shut down" the electrical grid of a smaller nation -- Iran, for example – if it chose to do so.
Borg echoed that assessment, saying the U.S. cyberwarriors, who work within the National Security Agency, are “very good across the board. … There is a formidable capability.”
“Stuxnet and Flame (malware used to disrupt and gather intelligence on Iran's nuclear program) are demonstrations of that,” he said. “… (The U.S.) could shut down most critical infrastructure in potential adversaries relatively quickly.”
China, Russia have different priorities
Borg said China and Russia have similar capacity to cause mayhem, but have different priorities and skill sets.
usccu.us
Scott Borg says the U.S. possesses a 'formidable capability' to wage cyberwar.
“Russia is best at military espionage and operations,” he said. “That's what they have focused on for a long time. China is looking for crucial business information and technology. China's main focus is stealing technology. These things quite separate. You use different tools on critical infrastructure than you use for military espionage and different tools again on stealing technology."
Borg said that each has its strong suit. "The Russians are technically advanced. The Chinese just have more people dedicated to the effort, by a wide margin,” he said. “They are not as innovative or creative as the U.S. and Russia. China has the greatest quantity, if not quality."
Borg said the group featured in Mandiant’s report, the People’s Liberation Army Unit 61398, may be one of the most important groups working in China, but not necessarily the most important.
"There are at least two dozen groups carrying out aggressive operations against the U.S.,” he said. “They get in each other’s way and trip over one another, but they are all operating with the tacit approval of the Chinese government.
"They're not cooperating with each other because they don’t share capabilities," he added. "One group has good programming, but is bad at access or targeting."
The Chinese hacking efforts are so broad, Borg said, that the highest-ranking Chinese officials “almost certainly do not know what all the groups are doing,” or the consequences. As a result, he added, they have been embarrassed by reports like the one in Tuesday’s New York Times, which first reported on the Mandiant assessment.
China is the most likely of the superpowers to leave a calling card, making their work the easiest to track. "China is very arrogant in its authorship of cyberweapons,” Borg said. “It does little to conceal its identity."
That’s in sharp contrast to the Russians, who he noted are not above writing code in Chinese to throw off investigators.
While the U.S. could respond to ongoing cyberattacks from China and Russia by shutting down the power grid of "any of its adversaries” and causing severe physical damage, Borg said it is encumbered by several factors.
One is its vulnerability to cyberwarfare as the world’s most networked nation, he said.
And from a geopolitical standpoint, Borg said, the U.S. would not want to badly damage the economy of either China or Russia. In fact, he said, the U.S. would almost certainly have to incorporate protections for critical systems like the power grid in any cyberattack.
Also, detecting the source of hostilities is not always easy, Borg said, as cybertracks are not as easy to follow as missile tracks. That means “mutually assured destruction,” the main strategic tenet of the Cold War, is problematic at best when talking about cyberwar, he said.
"It might be difficult to determine proportionate response,” he said. “It might not be simple to attack the attacker.”
For example, policymakers may think an attack has been carried out by the Chinese, when it was actually the work of the Russians or a rising power in the cyber world, like Iran. That is why intelligence -- getting insight into these operations -- is more important in a crisis than cyberforensics, which can take longer and not be as certain.
"There is no MAD in the Cold War sense," he said, "You can’t be 'assured' of attribution. The attack can be anonymous. It can be spoofed," or disguised as coming from another source.
Iran developing 'serious capability'
The U.S. first began to develop its own offensive capabilities 20 years ago when several strategic thinkers, particularly at the Naval Post-Graduate School, began to see the possibilities. It was not so much a strategic priority, but more "people familiar with electronics and hackers exercising their imagination." (Borg says one of those thinkers, Winn Schwartau, used fiction to discuss the threat and the possibilities, in a 1991 book, "Terminal Compromise.")
While the U.S. has the means to respond and to defend itself, Borg notes that some countries have no recourse. He cited the Russian invasion of the Republic of Georgia in August 2008, when the Georgian government and media infrastructure was quickly compromised.
What was particularly interesting, Borg said, was that the Russian military and intelligence services weren’t directly involved.
"The first wave was carried by organized crime," he noted. "The second wave was carried out by a (hacker) group organized though social media.” He said Russian hackers could download the attack software from a variety of popular sites, including dating and gun-collecting websites.
In both cases, Borg concluded, the organizers apparently were tipped off early about the timing of Russian military operations, he said.
The attack on Georgia also illustrated another aspect of cyberwarfare, Borg said, noting that Georgia, Estonia and Lithuania afterward formed a cyberalliance, leaving them in a better position to deal with future assaults.
That also appears to be the case with Iran, which recently announced that it decided to establish cyber army and claimed to have 4,000 to 5,000 military personnel involved in defensive and offensive operations. That isn’t all bluster, Borg said, noting that when the U.S. leveled new sanctions on Iranian banks last year, U.S. banks suddenly came under attack.
"Iran is developing a serious capability," said Borg. “It's exaggerating the present capabilities, but it’s working toward the future."
That’s especially troubling because the risk of smaller nations waging cyberwar against one other may be higher than with the online superpowers, he said.
He cited reports indicating that Iran may have been behind what he called one of the more serious cyberattacks to date -- an assault last August on the Saudi Aramco computer network that disabled more than 30,000 computers used to control the flow of Saudi oil. The Saudi Interior Ministry blamed "foreign countries" for the attack.
Borg said he believes the attack was an "Iranian fundamentalist attack ... at some point loosely the under auspices of Iran, and blessed by Iran. The fundamentalist group made a claim of responsibility. ... “Based on technical analysis, the claim has credibility."
For that reason, Borg says he is less worried about the possibility of China or Russia launching a catastrophic attack against the U.S. than he is about the emerging cyberpowers.
“What I’m really concerned about isn’t Russia or China, but attacks from Iran or terrorist groups working with state actors,” he said.
More from Open Channel:
Lights, cameras, reaction: Resistance builds to red-light cameras
Suburban Chicago cops allowed to work 'half drunk,' investigation shows
GAO: Climate change poses big financial risk to federal government
Follow Open Channel from NBCNews.com on Twitter and Facebook
Leave a Comment:
Government employees and the Military in charge of cyber wars? Great, we'll all sleep better at night. I sure hope they are consulting with the geeks at MIT and private industry. Probably not.
They are.
Gee, all the more reason for Republicans to continue obstructing and sabotaging, hence, crippling our economy and national security. The GOP-Tea Party-Right Wing Cartel is - and has been - committing high treason against the United States of America!
A couple of high-ranking GOPers have stated they wouldn't mind an attack of some kind or other under the current administration. Hence the feeding frenzy over Benghazi. They'd probably love it if NK or China lobbed a few missiles at the West Coast.
WOW Will you never give it a break its NOT about right or left here, its about China VS USA. when are you going to get your head out of your A$$ and enjoy the fresh air.
What kind of DIP$HIT are you. Never mind I have figured it out already. just another IGNORANT LIBERAL. When are they going to have Smart Liberals. These STUPID ones are getting BORING.
STUPID BIKER BITCH I see your just as stupid as Will is. To come up with stupid $HIT like that. I bet the DUMBORATS would love to see Iran get NUKES so they could lob one at USA to prove they are FRIENDLY. LIBERAL IGNORANCE as it best.
@will and Biker flunk! Funny, i witness Clinton doing nothing when the USS. Cole got bombed by Bin Laden, Now just think if your liberal Clinton of President did something to go after Bin Laden then... We might not of had a 9/11, we might not of invaded Iraq even, so I ask you again... What did the republicans do, at least BUSH did something besides sticking his head in the sand!
It's not stupid at all. It was widely reported. And I don't support Obama with his plans for drone attacks on US citizens, either. When will you people get it through your thick skulls that NEITHER party is worth a pile of horse manure?
WOW, North Korea has made numerous threats of attack, China has laready hacked our systems and we're STILL focusing on Iran. How stupid can Washington be??
Unfortunately, a whole lot stupider than they are right now...
Just elect more LIBERALS that will DUMB it down.
Obama don't care, he wants to ban guns!
Just leave the IDIOTS that have been there forever they seem to have everything FU CKED UP now. Time to get rid of the LIFERS in Washington DC.
How about we just go with the "Star Trek" scenario and fight all future wars using computer simulations? We can skip the part about reporting to the disintegration chambers, though!
Bonus points if you can name the episode without googling.
I definitely remember the episode, but can't remember it's title without googling it. I remember Capt. Kirk saying something about how they had taken the blood/guts/devastation out of it and made it 'sanitary' so that they no longer had a reason to want it to stop.
Must have been in TOS, since I missed many episodes. I watched TNG episodes many times, and I'm pretty sure I've seen them all. Not sounding familiar.
You are right, TFNJ, it was in TOS.
There is so presumed innocence until proven guilty in cyber space. Everyone is the bad guy!
Of course, that's only until Skynet becomes self-aware.
Don’t kid ourselves – the wars of the future will be fought with Drones and cyberwarfare. Ha maybe the future is here already. We as - a country have been disarming ourselves for the last 10 years – by that I mean we have actually offshored over a million IT software jobs from the US to china, India ,Russia over the last ten years. We are training these countries cyber armies by paying them to do our software and at the same time we are giving them access to our critical systems infrastructure by letting them write the software that controls this infrastructure. We are complete idiots to let this happen –but that IS what is happening.
The DC mafia and their corporate media bitches are out in full force now to create fear, sell you their latest invented emergency/crisis, and justify more endless war. The crisis du jour is now cyber attack, and rest assured the only solutions will be for the sheeple to give up their human liberties, lest horrible death/destruction will result. It may come in the form of CISPA, SOPA, or internet licensing; but the bottom line is that what little remains of the Bill of Rights will be shredded with the false promise of your safety and security. Truth and enlightenment are the greatest threats of tyranny, and that is why tyrants must make the internet a high privilege only to be granted only by government to those who bow.
be worried about everybody...foreign and domestic!
If they do, then give them an "old-fashioned" response!
Just think, if we had people running machines instead of computers running machines we wouldn't have to worry about this sort of cyber threat!
And yet we educate the enemy at our top institutions. Ef them
I will make this short & sweet. They win! Reasons? Our U.S.A.F "see photo page 1" just blew a Billion $ on AN ERP PROJECT "updating computer systems Air Force wide so we can bomb people first. No one is smart enough, to work it or fix it, SO: forget about it! The photo on page 1 is as low on the rank scale you can get in the Air Force. Hope he knows what he is doing? The people before him had not a clue! P.S. NOTHING WAS DONE OR WILL BE DONE TO ANYBODY, ANYWHERE, BOTH MILITARY & THE CONTRACTED COMPANY OR ANY ONE IN WASHINGTON D.C.! GET YOUR CHECK BOOKS READY AGAIN FOR NEXT YEARS TAX INCREASES.
Simply taking information off-line will not prevent cyber attacks. It would make things more difficult. But viruses like Stuxnet can be loaded with a thumb drive. Some viruses being developed, and probably already in use, are airborne and can be loaded in any number of ways.
For those of you calling foul on the picture of computer racks. I guarantee those racks do nothing more than support minor video surveillance. There are no security risks there.
OMIGOSH!!! It's a new GODZILLA- like problem attacking the US!
Where's CAPTAIN AMERICA when you need him!?
Another epic plague in electronic form is coming to a theater near you! An expert says so!! Don your tinfoil hats and run kiddies!! It's the end of the world as we know it!! AAHHHHHHHHHHHH!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
And once this 'new' headline-of-the-week passes and disappears mysteriously from the news (like the panic over H1N1, the big flu of 2013 and other dramaticized events) it will be replaced with the next distraction!
Don’t kid ourselves – the wars of the future will be fought with Drones and cyberwarfare. Ha maybe the future is here already. We as - a country have been disarming ourselves for the last 10 years – by that I mean we have actually offshored over a million IT software jobs from the US to china, India ,Russia over the last ten years. We are training these countries cyber armies by paying them to do our software and at the same time we are giving them access to our critical systems infrastructure by letting them write the software that controls this infrastructure. We are complete idiots to let this happen –but that IS what is happening.
as to why critical infrastructure is connected to the internet - well that is simple - because we have off shored the computer programming, the software release control, the tier 1/2/3 support and the trouble shooting to foreign companies. so of course to do this - they need internet access not only to domains in front of the firewalls, but behind the firewall as well.
We will lose any Cyber War with Communist China, what ever hardware we need we will have to buy from them as we gave our electronics industry to them years ago. On the bright side maybe we can fight the next war in virtual reality and not have to use the real stuff! Oh, by the way! One good electro magnetic pulse wipes out all the computers so when push comes to shove we will always have a solution.
Reminds me of the Terminator, War against the Machines!
You have a good point about one good EMP.
If we get hit, nuke them all and let God sort it out.
Hey here is a great idea. Lets interconnect the entire world the good and bad. Then lets use the same platform to remotely control our entire intrastructure...economic and life sustaining systems. And why? Because we are to lazy and in a hurry.....
Wherever possible the military needs to be low tech. Switches and buttons need not be automated and everything military related should be operated from a closed loop intranet with no access to the internet. And start killing spies again...we can start with the Wiki-leaks kid.
The movie War Games comes to mind.
This is old news. Cyber warfare has been quietly developing for years.
Anybody else think its ironic that the guy who was interviewed for the article on cyber warefare has the last name "Borg"
Hahahaha--yes!
This is nothing new, there are several countries that have 'cyber' soldiers, and just another area we have fallen behind because of our arrogance...it's time to stop assuming that the rest of the world is too weak or too stupid to do harm to this county, heck even the cave dwelling rock farmers of Afghanistan have 'cyber' soldiers...wake up America, we're under attack and have been for some time, both externally and internally...
This article is riddled with gramatical errors and spelling mistakes. Poor showing from a senior producer. I hope NBC executives know what kind of half-baked coverage their endorsing. Yet just as always, I am sure no one will notice or care when they do.
This is a Progressive website, so incompetence and stupidity from the staff is to be expected as its encouraged.
Mr. and Mrs. Grammar Police -
The only reason you are in here ranting about it is because you have an axe to grind with the political tone of it and have nothing of substance to offer...just plain old partisan bitchery and cynicism.
If you think your internet gospel for the news of the day (that being FAUX News for Dumb Fux) is somehow impervious to spelling/grammar errors then you are a perfect audience for them given the stinking raunch they try and sell to the masses as true and unbiased journalism.
...half-baked coverage THEY'RE endorsing, not their ; )
I don't worry about this too much, When it takes 10 minutes to finally log into a lobby in Black Ops II when there are litterally 1000s of games going on... China, Russia, and the US will see similar issues if pit against each other in a cyber war. They will get sick of watching the stinking bar go across the screen and they will say screw it... just send in an F22 - it will get there faster....