Cyber Exploitation
BY Herschel Smith15 years, 3 months ago
Today at The Captain’s Journal:
Take careful note. This is a visit from the Chinese Army, searching the terms “cyber exploitation and offensive operations.”
Now recall TCJ articles:
Today at The Captain’s Journal:
Take careful note. This is a visit from the Chinese Army, searching the terms “cyber exploitation and offensive operations.”
Now recall TCJ articles:
The recent Japanese elections have caused Japan to turn a corner, or so the current analysis goes.
Japanese voters swept the opposition to a historic victory in an election on Sunday, ousting the ruling conservative party and handing the untested Democrats the job of breathing life into a struggling economy.
The win by the Democratic Party of Japan (DPJ) ended a half-century of almost unbroken rule by the Liberal Democratic Party (LDP) and breaks a deadlock in parliament, ushering in a government that has promised to focus spending on consumers, cut wasteful budget outlays and reduce the power of bureaucrats …
“This is about the end of the post-war political system in Japan,” said Gerry Curtis, a Japanese expert at Columbia University. “It marks the end of one long era, and the beginning of another one about which there is a lot of uncertainty” …
The Democrats have pledged to refocus spending on households with child allowances and aid for farmers while taking control of policy from bureaucrats, who are often blamed for Japan’s failure to tackle problems such as a creaking pension system.
“The problem is how much the Democrats can truly deliver in the first 100 days. If they can come up with a cabinet line-up swiftly, that will ease market concerns over their ability to govern,” said Koichi Haji, chief economist at the NLI Research Institute in Tokyo.
“Because hopes for change are so big, the disappointment would be huge if the Democrats can’t deliver results.”
The Democrats want to forge a diplomatic stance more independent of the United States, raising concerns about possible friction in the alliance.
“The LDP is probably going to be missed more in Washington than in Japan,” said Michael Auslin at the American Enterprise Institute in Washington.
Yea, other nations have had that problem of huge disappointment at the broken promises too. It will be interesting to see how long it takes before reality sets in. As for forging a future more independent of the U.S., we should oblige them. Stability in the Pacific rim, particularly for South Korea and Japan, has been assured by the financially convenient arrangement to rely on the umbrella of protection afforded by U.S. military power.
China has been profoundly unwilling to help with the neurotic dictator in North Korea for the same reason that its Navy has been more aggressive in Pacific waters (mostly littoral waters) and cyberwar is being forced on the U.S. by China. There is no proximate threat to its security.
The best way to ensure that North Korea is reined in is to help South Korea to become independent of U.S. help and protection. Once this is effected, the silly “sunshine diplomacy” with the North will be history. Likewise, the easiest way for China to feel the effects of a militaristic neighbor on its coast and forget its preoccupation with the U.S. military is to let Japan become truly independent of U.S. military protection.
The Democrats in Japan probably aren’t thinking about U.S. protection when they say that they want a future more independent of the U.S. But a change to Article 9 the Japanese constitution should occur within short order if it is made clear that their umbrella has evaporated. It is believed that Japan is a de facto nuclear state anyway due to the fact that it could produce nuclear weapons in about a year.
There isn’t any reason that Japan should feel the freedom to forge closer ties with Asia while at the same time it relies on nuclear protection by the U.S. If Japan wants to grow up, we should let her. But growing up comes with new responsibilities – expensive ones. It’s doubtful that the Democrats planned for that.
SECDEF Gates plans for a new Cyber Command.
The Pentagon is planning to create a new military command to focus on cyberspace and protect its computer networks from cyber attacks, U.S. officials said Wednesday.
The move comes as the White House is poised to release a broader study on the nation’s cyber security. Officials in recent months have increasingly warned that the nation’s networks are at risk and repeatedly are being probed by foreign governments, criminals or other groups.
The Pentagon has been reviewing for at least a year just how it needs to reorganize military efforts on cyber issues, one official said on condition of anonymity because he was not authorized to speak on the record. Another official said that under the new plan, being finalized now, a sub-command could be set up under the U.S. Strategic Command.
Located at Offutt Air Force Base just south of Omaha, Neb., the command oversees space issues and is responsible for protecting and monitoring the military’s information grid, as well as coordinating any offensive cyber warfare on behalf of the country.
Defense Department networks are probed repeatedly every day and the number of intrusion attempts have more than doubled recently, officials have said. Military leaders said earlier this month that the Pentagon spent more than $100 million in the last six months responding to and repairing damage from cyber attacks and other computer network problems.
In the Pentagon’s budget request submitted last week, Defense Secretary Robert Gates said the Pentagon will increase the number of cyberexperts it can train each year from 80 to 250 by 2011.
It’s the right move. It may result in draconian new rules and regulations on IT practices and data fidelity and security, but the defense contractors should remember that their own sloppy IT practices in part led to this. It’s about time we fully engaged China in their Unrestricted Warfare against the U.S.
Visit msnbc.com for Breaking News, World News, and News about the Economy
Prior:
From the Wall Street Journal:
Computer spies have broken into the Pentagon’s $300 billion Joint Strike Fighter project — the Defense Department’s costliest weapons program ever — according to current and former government officials familiar with the attacks.
Similar incidents have also breached the Air Force’s air-traffic-control system in recent months, these people say. In the case of the fighter-jet program, the intruders were able to copy and siphon off several terabytes of data related to design and electronics systems, officials say, potentially making it easier to defend against the craft.
The latest intrusions provide new evidence that a battle is heating up between the U.S. and potential adversaries over the data networks that tie the world together. The revelations follow a recent Wall Street Journal report that computers used to control the U.S. electrical-distribution system, as well as other infrastructure, have also been infiltrated by spies abroad.
Attacks like these — or U.S. awareness of them — appear to have escalated in the past six months, said one former official briefed on the matter. “There’s never been anything like it,” this person said, adding that other military and civilian agencies as well as private companies are affected. “It’s everything that keeps this country going.”
Many details couldn’t be learned, including the specific identity of the attackers, and the scope of the damage to the U.S. defense program, either in financial or security terms. In addition, while the spies were able to download sizable amounts of data related to the jet-fighter, they weren’t able to access the most sensitive material, which is stored on computers not connected to the Internet.
Former U.S. officials say the attacks appear to have originated in China. However it can be extremely difficult to determine the true origin because it is easy to mask identities online.
A Pentagon report issued last month said that the Chinese military has made “steady progress” in developing online-warfare techniques. China hopes its computer skills can help it compensate for an underdeveloped military, the report said.
The Chinese Embassy said in a statement that China “opposes and forbids all forms of cyber crimes.” It called the Pentagon’s report “a product of the Cold War mentality” and said the allegations of cyber espionage are “intentionally fabricated to fan up China threat sensations.”
The U.S. has no single government or military office responsible for cyber security. The Obama administration is likely to soon propose creating a senior White House computer-security post to coordinate policy and a new military command that would take the lead in protecting key computer networks from intrusions, according to senior officials.
The Bush administration planned to spend about $17 billion over several years on a new online-security initiative and the Obama administration has indicated it could expand on that. Spending on this scale would represent a potential windfall for government agencies and private contractors at a time of falling budgets. While specialists broadly agree that the threat is growing, there is debate about how much to spend in defending against attacks.
The Joint Strike Fighter, also known as the F-35 Lightning II, is the costliest and most technically challenging weapons program the Pentagon has ever attempted. The plane, led by Lockheed Martin Corp., relies on 7.5 million lines of computer code, which the Government Accountability Office said is more than triple the amount used in the current top Air Force fighter.
Six current and former officials familiar with the matter confirmed that the fighter program had been repeatedly broken into. The Air Force has launched an investigation.
Pentagon officials declined to comment directly on the Joint Strike Fighter compromises. Pentagon systems “are probed daily,” said Air Force Lt. Col. Eric Butterbaugh, a Pentagon spokesman. “We aggressively monitor our networks for intrusions and have appropriate procedures to address these threats.” U.S. counterintelligence chief Joel Brenner, speaking earlier this month to a business audience in Austin, Texas, warned that fighter-jet programs have been compromised.
Foreign allies are helping develop the aircraft, which opens up other avenues of attack for spies online. At least one breach appears to have occurred in Turkey and another country that is a U.S. ally, according to people familiar with the matter.
Joint Strike Fighter test aircraft are already flying, and money to build the jet is included in the Pentagon’s budget for this year and next.
Computer systems involved with the program appear to have been infiltrated at least as far back as 2007, according to people familiar with the matter. Evidence of penetrations continued to be discovered at least into 2008. The intruders appear to have been interested in data about the design of the plane, its performance statistics and its electronic systems, former officials said.
The intruders compromised the system responsible for diagnosing a plane’s maintenance problems during flight, according to officials familiar with the matter. However, the plane’s most vital systems — such as flight controls and sensors — are physically isolated from the publicly accessible Internet, they said.
The intruders entered through vulnerabilities in the networks of two or three contractors helping to build the high-tech fighter jet, according to people who have been briefed on the matter. Lockheed Martin is the lead contractor on the program, and Northrop Grumman Corp. and BAE Systems PLC also play major roles in its development.
Lockheed Martin and BAE declined to comment. Northrop referred questions to Lockheed. Cyberspies have penetrated the U.S. electrical grid and left behind software programs that could be used to disrupt the system, according to current and former national-security officials.
The spies came from China, Russia and other countries, these officials said, and were believed to be on a mission to navigate the U.S. electrical system and its controls. The intruders haven’t sought to damage the power grid or other key infrastructure, but officials warned they could try during a crisis or war.
“The Chinese have attempted to map our infrastructure, such as the electrical grid,” said a senior intelligence official. “So have the Russians.”
The espionage appeared pervasive across the U.S. and doesn’t target a particular company or region, said a former Department of Homeland Security official. “There are intrusions, and they are growing,” the former official said, referring to electrical systems. “There were a lot last year.”
Shame on Northrop Grumman and Lockheed for their lack of control over their IT systems, and the Pentagon response is lousy as well. Sure the Pentagon systems are probed daily. That’s not the point. China is currently in unrestricted warfare against the U.S.. and this aggresive pattern requires a robust response. How long will we continue to make technology available to China, either through system vulnerabilities or intentional commercial technology transfer?
Prior:
We have previously noted how the Chinese hackers and cyberspies are not merely snooping; they are engaged in what China considers to be Unrestricted Warfare against the U.S. Now comes an even more disturbing account of the extent of their activities.
The Chinese cyber spies have penetrated so deep into the US system — ranging from its secure defence network, banking system, electricity grid to putting spy chips into its defence planes — that it can cause serious damage to the US any time, a top US official on counter-intelligence has said.
“Chinese penetrations of unclassified DoD networks have also been widely reported. Those are more sophisticated, though hardly state of the art,” said National Counterintelligence Executive, Joel Brenner, at the Austin University Texas last week, according to a transcript made available on Wednesday.
Listing out some of the examples of Chinese cyber spy penetration, he said: “We’re also seeing counterfeit routers and chips, and some of those chips have made their way into US military fighter aircraft.. You don’t sneak counterfeit chips into another nation’s aircraft to steal data. When it’s done intentionally, it’s done to degrade systems, or to have the ability to do so at a time of one’s choosing.”
Referring to the Chinese networks penetrating the cyber grids, he said: “Do I worry about those grids, and about air traffic control systems, water supply systems, and so on? You bet I do. America’s networks are being mapped. There has also been experience of both Chinese and criminal network operations in the networks of some of the banks”.
Note the malicious intent – counterfeit routers and chips found in U.S. military aircraft. No longer restricted to just water supply systems, electrical grids and banking networks, as if that isn’t enough, we are now finding intentional electronic attacks against U.S. military hardware.
There is a Sino-American war going on, even if America is not yet engaged.
Just nosy snooping, or something larger?
Cyberspies have penetrated the U.S. electrical grid and left behind software programs that could be used to disrupt the system, according to current and former national-security officials.
The spies came from China, Russia and other countries, these officials said, and were believed to be on a mission to navigate the U.S. electrical system and its controls. The intruders haven’t sought to damage the power grid or other key infrastructure, but officials warned they could try during a crisis or war.
“The Chinese have attempted to map our infrastructure, such as the electrical grid,” said a senior intelligence official. “So have the Russians.”
The espionage appeared pervasive across the U.S. and doesn’t target a particular company or region, said a former Department of Homeland Security official. “There are intrusions, and they are growing,” the former official said, referring to electrical systems. “There were a lot last year.”
Many of the intrusions were detected not by the companies in charge of the infrastructure but by U.S. intelligence agencies, officials said. Intelligence officials worry about cyber attackers taking control of electrical facilities, a nuclear power plant or financial networks via the Internet.
Authorities investigating the intrusions have found software tools left behind that could be used to destroy infrastructure components, the senior intelligence official said. He added, “If we go to war with them, they will try to turn them on.”
Officials said water, sewage and other infrastructure systems also were at risk.
“Over the past several years, we have seen cyberattacks against critical infrastructures abroad, and many of our own infrastructures are as vulnerable as their foreign counterparts,” Director of National Intelligence Dennis Blair recently told lawmakers. “A number of nations, including Russia and China, can disrupt elements of the U.S. information infrastructure.”
The concerns about nuclear reactors being controlled from software is an overreach, since the plant operators and control systems are the only ones who have direct control over plant components. However, the balance of the concerns are salient.
This is much more than nosy snooping, although there is no need to exonerate nosy snooping either. In 1999 two Colonels in the Chinese Army, Qiao Liang and Wang Xiangsui, authored a study entitled Unrestricted Warfare. In it, they argued that while conventional warfare had become too costly in terms of its financial and political ramifications, rather than relying on direct military confrontation alone, other means must be employed to defeat the U.S. These include lawfare and political pressure, network warfare and terrorism, among other means. The entire study is worth reading.
What is being witnessed is network warfare. It’s more than just stealing proprietary information and technological secrets (although they have indeed managed to obtain some very important technology in miniturization of nuclear weapons). This goes to actual warfare, although not of the kind the public typically thinks of when considering war.
But it is no less dangerous, hostile and intended for harm. If you doubt this, consider a nation without electricity, water, banking, refrigeration, and traffic signals. Now consider the fact that China is pursuing an aircraft carrier, is flexing its muscle in its littorals, and is designing UAVs for the purpose of “military aerial inspection and detection, electronic warfare and other missions.”