Pentagon official reveals "most significant" military breach
2010 08 27

By Brian Knowlton | NYTimes.com


A top Pentagon official has confirmed a previously classified incident that he describes as “the most significant breach of U.S. military computers ever,” a 2008 episode in which a foreign intelligence agent used a flash drive to infect computers, including those used by the Central Command in overseeing combat zones in Iraq and Afghanistan.

Plugging the cigarette-lighter-sized flash drive into an American military laptop at a base in the Middle East amounted to “a digital beachhead, from which data could be transferred to servers under foreign control,” according to William J. Lynn 3d, deputy secretary of defense, writing in the latest issue of the journal Foreign Affairs.

“It was a network administrator’s worst fear: a rogue program operating silently, poised to deliver operational plans into the hands of an unknown adversary,” Mr. Lynn wrote.


Pentagon Teams Up With DHS For Cyber Security

Video from: YouTube.com



The incident was first reported in November 2008 by the Danger Room blog of Wired magazine, and then in greater detail by The Los Angeles Times, which said that the matter was sufficiently grave that President George W. Bush was briefed on it. The newspaper mentioned suspicions of Russian involvement.

But Mr. Lynn’s article was the first official confirmation. He also put a name — Operation Buckshot Yankee — to the Pentagon operation to counter the attack, and said that the episode “marked a turning point in U.S. cyber-defense strategy.” In an early step, the Defense Department banned the use of portable flash drives with its computers, though it later modified the ban.

Mr. Lynn described the extraordinary difficulty of protecting military digital communications over a web of 15,000 networks and 7 million computing devices in dozens of countries against farflung adversaries who, with modest means and a reasonable degree of ingenuity, can inflict outsized damage. Traditional notions of deterrence do not apply.

“A dozen determined computer programmers can, if they find a vulnerability to exploit, threaten the United States’s global logistics network, steal its operational plans, blind its intelligence capabilities or hinder its ability to deliver weapons on target,” he wrote.

Security officials also face the problem of counterfeit hardware that may have remotely operated “kill switches” or “back doors” built in to allow manipulation from afar, as well as the problem of software with rogue code meant to cause sudden malfunctions.

Against the array of threats, Mr. Lynn said, the National Security Agency had pioneered systems — “part sensor, part sentry, part sharpshooter” — that are meant to automatically counter intrusions in real time.

His article appeared intended partly to raise awareness of the threat to United States cybersecurity — “the frequency and sophistication of intrusions into U.S. military networks have increased exponentially,” he wrote — and partly to make the case for a larger Pentagon role in cyberdefense.

Various efforts at cyberdefense by the military have been drawn under a single organization, the U.S. Cyber Command, which began operations in late May at Fort Meade, Maryland, under a four-star general, Keith B. Alexander.

But under proposed legislation, the Department of Homeland Security would take the leading role in the defense of civilian systems.

Though the Cyber Command has greater capabilities, the military operates within the United States only if ordered to do so by the president.

Another concern is whether the Pentagon, or government in general, has the nimbleness for such work. Mr. Lynn acknowledged that “it takes the Pentagon 81 months to make a new computer system operational after it is first funded.” By contrast, he noted, “the iPhone was developed in 24 months.”


Article from: NYTimes.com

Top Image: Source





Pentagon Enlists Computer Nerds for Covert Global Cyber War

Video from: YouTube.com




Related Articles
US Cyber Command logo contains coded message
Code Cracked! Cyber Command Logo Mystery Solved
Cyber Command: We Don’t Wanna Defend the Internet (We Just Might Have To)
Report Reveals Cyberattacks on Oil Companies
Former US officials fend off simulated cyberattack
IMPACT, ITU calls for borderless effort on cybersecurity
Pentagon plans new cyberspace war command
EU wants ’Internet G12’ to govern cyberspace
Could a Massive “False-Flag” Cyberattack Be On The Horizon?
Russian hackers penetrate Pentagon computer system in cyber attack (2008)
Hacker cracks ATM machines remotely
Bail denied for G20 hacker arrestee
Hackers Slam Australia Government With A ’S**t Storm’ Of Porn
"NASA-UFO Hacker" McKinnon tells all (Video)
Pentagon Enlists Teenage ’Geeks’ for Cyber War (video)
Insiders Doubt 2008 Pentagon Hack Was Foreign Spy Attack (Updated)
US military begins Operation Buckshot Yankee (Satire)


Latest News from our Front Page

'Spectre' Is Doomed: Did North Korea Kill James Bond? No, but Political Correctness will
2014-12-22 22:01
Comment: Below is an interesting article from Forbes on the fate of the Bond franchise. They asks: 'Spectre' Is Doomed: Did North Korea Kill James Bond? North Korea probably wasn't behind the Sony hack, China also chimed in. Looks more like a False Flag Hack. North Korea is a lot of things, but behind the Sony attack? Probably not. They have ...
NYPD officer slayings: When the Left's False Narratives Have Deadly Consequences
2014-12-22 21:12
On Saturday afternoon, Black Brooklynite Ismaaiyl Brinsley ambushed two NYPD police officers and shot them both to death while they were sitting in their patrol car. According to early reports, there was “no warning” and “no provocation.” Brinsley simply approached the vehicle and “unloaded” on the two officers sitting inside. Hours before the assassination, he had announced his intent ...
Saudi oil chief: No conspiracy behind oil prices
2014-12-22 20:36
Nothing to see here or here Saudi Arabia's oil chief on Sunday dismissed allegations that his kingdom conspired to bring down oil prices in order to harm other countries and told a summit of Arab energy leaders that he was confident the market would stabilize. The kingdom, which is dependent on oil revenues, is able to weather lower oil prices due to ...
North Korea's internet is having serious problems
2014-12-22 19:13
North Korea is having serious connectivity issues this morning, North Korea Tech reports. The country has extremely limited web infrastructure to begin with, but reports from Dyn indicate the country's infrastructure has suffered a series of major outages over the past 24 hours. As a result, anyone at a North Korean IP would have found it nearly impossible to connect ...
The Left, The State And (Opportunistically As Always) Big Business
2014-12-22 18:04
Adapted from Paul Gottfried‘s address to the 2014 H.L. Mencken Club Conference, at a panel focused on “The Left and the State,“ following remarks made by Carl Horowitz of the National Legal and Policy Center and Keith Preston of Attack the System I’d like to come back to a remark that Carl Horowitz made in Keith Preston described in his remarks, ...
More News »