Monday, June 24, 2013

The secret 'war' in cyberspace


Wired online magazine has a very interesting article about the National Security Agency and its shadowy world.  If the information it provides is correct, it looks as if the widely reported fears about Chinese cyber-espionage and cyber-offensive capability are matched, if not exceeded, by what this country's been doing for years.  Here's an excerpt.

(General Keith) Alexander runs the nation’s cyberwar efforts, an empire he has built over the past eight years by insisting that the US’s inherent vulnerability to digital attacks requires him to amass more and more authority over the data zipping around the globe. In his telling, the threat is so mind-bogglingly huge that the nation has little option but to eventually put the entire civilian Internet under his protection, requiring tweets and emails to pass through his filters, and putting the kill switch under the government’s forefinger. “What we see is an increasing level of activity on the networks,” he said at a recent security conference in Canada. “I am concerned that this is going to break a threshold where the private sector can no longer handle it and the government is going to have to step in.”

In its tightly controlled public relations, the NSA has focused attention on the threat of cyberattack against the US—the vulnerability of critical infrastructure like power plants and water systems, the susceptibility of the military’s command and control structure, the dependence of the economy on the Internet’s smooth functioning. Defense against these threats was the paramount mission trumpeted by NSA brass at congressional hearings and hashed over at security conferences.

But there is a flip side to this equation that is rarely mentioned: The military has for years been developing offensive capabilities, giving it the power not just to defend the US but to assail its foes. Using so-called cyber-kinetic attacks, Alexander and his forces now have the capability to physically destroy an adversary’s equipment and infrastructure, and potentially even to kill. Alexander—who declined to be interviewed for this article—has concluded that such cyberweapons are as crucial to 21st-century warfare as nuclear arms were in the 20th.

And he and his cyberwarriors have already launched their first attack. The cyberweapon that came to be known as Stuxnet was created and built by the NSA in partnership with the CIA and Israeli intelligence in the mid-2000s. The first known piece of malware designed to destroy physical equipment, Stuxnet was aimed at Iran’s nuclear facility in Natanz. By surreptitiously taking control of an industrial control link known as a Scada (Supervisory Control and Data Acquisition) system, the sophisticated worm was able to damage about a thousand centrifuges used to enrich nuclear material.

The success of this sabotage came to light only in June 2010, when the malware spread to outside computers. It was spotted by independent security researchers, who identified telltale signs that the worm was the work of thousands of hours of professional development. Despite headlines around the globe, officials in Washington have never openly acknowledged that the US was behind the attack. It wasn’t until 2012 that anonymous sources within the Obama administration took credit for it in interviews with The New York Times.

But Stuxnet is only the beginning. Alexander’s agency has recruited thousands of computer experts, hackers, and engineering PhDs to expand US offensive capabilities in the digital realm. The Pentagon has requested $4.7 billion for “cyberspace operations,” even as the budget of the CIA and other intelligence agencies could fall by $4.4 billion. It is pouring millions into cyberdefense contractors. And more attacks may be planned.

There's much more at the link.  Interesting and somewhat scary reading, because I don't trust the NSA - or any government, or any government agency - with that level of power.  I believe recent disclosures have proved me correct.  I'd shut the whole lot down tomorrow, if I could . . . but now that this particular cat is out of the bag, I suspect that's no longer possible, even if a new Administration were to order it.  Once forces such as these entrench themselves, they're almost impossible to dislodge.

I pray we may never find them ruling over us.  With their tentacles so deeply into every electronic aspect of our lives, that's far from impossible.

Peter

2 comments:

Rev. Paul said...

As to your final point, I don't see how it can be avoided unless/until God directly takes a hand.

Thanks for providing all this info, by the way. It's deeply appreciated.

trailbee said...

I have often wondered how deeply this program was embedded. I'm no longer skeptical but mighty uncomfortable. If the troll says al Qaeda is on the run, then what is the purpose of the program? BTW why have a 500-man riot control group available for Egypt and Morsi's use? Was it supposed to be used here?