Cyber cold war fears grow
120 countries have cyber-espionage capability, warns McAfee
Forget run of the mill cybercrooks, international cyber spying will pose the single biggest information security threat in 2008.
That's according to security giant McAfee, which also predicts increased attacks against e-banking services and the growth of an increasingly sophisticated market for malware next year.
McAfee's annual Virtual Criminology report looked at global cyber security trends, with input from NATO, the FBI, and universities.
The report noted the growing use of the internet for cyber spying and attacks by government and allied groups. Targets include critical national infrastructure network systems such as electricity, air traffic control, financial markets, and government computer networks.
As many as 120 countries are using the internet for espionage. The most high profile cyber-attack this year was thrown against the national infrastructure of Estonia. Cyber assaults in general have become more sophisticated over recent months, featuring techniques designed to slip under the radar of government cyber defences.
Western governments have pointed the finger of blame for targeted Trojan attacks towards China, which has denied any involvement in the assaults.
According to NATO insiders, cited by McAfee, many governments are ill-prepared to fend off cyber-attacks. These insiders believe the attack on Estonia, which disrupted government, news, and bank servers for several weeks, is just the tip of the iceberg in cyber warfare.
"Traditional protective measures were not enough to protect against the attacks on Estonia's critical national infrastructure. Botnets, unsurprisingly, were used but the complexity and coordination seen was new. There were a series of attacks with careful timing using different techniques and specific targets. The attackers stopped deliberately rather than being shut down," a NATO informant told McAfee.
McAfee reckons attacks have progressed from "curiosity probes to well-funded and well organised operations for political, military, economic and technical espionage".
"Cybercrime is now a global issue," said Jeff Green, senior vice president of McAfee Avert Labs and product development. "It has evolved significantly and is no longer just a threat to industry and individuals, but increasingly to national security. We're seeing emerging threats from increasingly sophisticated groups attacking organisations around the world. Technology is only part of the solution, and over the next five years we will start to see international governments take action."
McAfee notes a trend towards more sophisticated threats to personal data and online services more generally. It predicts the emergence of threats akin to the Storm worm, that can be modified over and over again like "recombinant DNA".
The security giant also reckons cybercriminals will look for ways to exploit the popularity of applications on social networking sites such as MySpace and Facebook. Voice over IP (Internet Protocol) technologies will be used as a technique for making phishing attacks more convincing, McAfee predicts.
The underground economy in malware and exploit sites already includes specialised auction sites, product advertising, and even support services. Customer service has become a differentiator among denizens of the digital underground. McAfee reports that with increased competition the cost of renting a platform for spamming has dropped. Criminals can now buy custom-written Trojans built to steal credit card data, it adds. ®
@ re: Estonia
interesting. is your paper online for public read? i myself am researching the difficulties of legislating cybercrime on an international front. can it be done, is it possible, bla bla bla. can i read your paper? if not, that's cool, i understand, but if i could that would be great!
The statue was a memorial to the all of the Russian soldiers who died while driving the Nazis from the area during WWII. It was moved from the Capital to a nearby military cemetery, and all the Russian script kiddies were driven into a "feeding frenzy" of nationalism on the hacker bulletin boards. The result was a massive DDoS attack on Estonia that lasted for several weeks in May. There is no proof that the Russian government was behind the attack, even though one of the zombie computers came from Putin's equivalent of the West Wing. Of course, just because there isn't any proof doesn't mean they weren't... Russia, of course, is acting like Estonia is no big deal and they don't care.
I wouldn't poo-poo the idea of a cyber-war too much. This isn't something that has been manufactured by Hollywood to sell films, or by the military to get money; in fact, some military groups are not paying enough attention to it. Too stuck in a Cold War mentality, I think. Problem is... the possibility is all too real.
Sorry - the problem with just having finished a research paper on Cyber Warfare is you tend to regurgitate the info at the drop of a hat... so I think I'll pick up mine and hail a taxi.
Notice the penguin didn't take long to appear after the request was made...
have to agree
with amanfrommars. i dont know how many of the chinese population are logging on to amazon and ebay to buy bargain products for their xmas shopping... how many of them really have a bank account, let alone online banking or an internet connection at home. me thinks only people in shanghai and the big cities do (probably in the minority too) and they dont need to order online, they just go down to their local humongous mall to get all the electronics and counterfeit products they need...
and anyway, i hear the russian govt were behind the estonian attacks because they had removed some communist statue (lenin/stalin?) from the town center and it angered radical fascists (or so they claim that as the reason... probably just waiting for the opportune moment more like)...