Feeds

US Military cyber forces on the defensive in network battle

Operation Screaming Whimpering Fist

High performance access to file storage

The US 24th Air Force - the first dedicated American military cyber force to go operational - is "not yet a warfighting organisation" and needs to "create an awareness of the battlespace", according to its commander.

Major-General Richard Webber, a former nuclear-missile and satellite-jamming officer, took over the 24th in August. Speaking at a recent symposium in Los Angeles, the cyber general indicated that America's uniformed netwar forces have some way to go before they're ready to put digital boot to network ass.

“We need to know how to set up and defend the enterprise. It’s going to be a crawl/walk/run process,” said Webber, quoted by Aerospace Daily and Defense Report. “We’re under attack literally every day."

The 24th's main base at Lackland in Texas, which will cover 50,000 square feet, is still being built and equipped with its panoply of fearful cyber weaponry. It's set to be complete and manned up by some thousands of netwar specialists late next year.

Under Webber's command are two main units, the mainly defensive 688th Information Operations Wing (formerly known as the Air Force Information Operations Center) and the doing-unto-others outfit, the 67th Network Warfare Wing. The 67th has a subsidiary role in doing tiger-team mock attacks against US networks to test their defences, but its main purpose is "computer network exploitation and attack".

For now though, Webber's main focus seems to be on holding back the constant raids and meddling directed at US military networks, rather than taking the fight to the enemy - whoever that may prove to be.

Webber's boss, General Kevin Chilton, spoke of a "massive" cyber attack against the Pentagon nets last year, which was apparently a major reason for the formation of the 24th.

“One year ago this month we had a wake-up call in cyberspace," said the general. "We had a severe intrusion into the Defense networks. It changed the way people are thinking about cyberspace. This time it’s everybody’s problem — every soldier, sailor, airman and Marine."

It seems that at present, US military sysadmins are often forced to respond to cyberstrikes by simply disconnecting from the wider net - but this could have severe consequences on real-world operations if the timing were bad, and senior officers are keen to do better.

"We must learn to fight through an attack," says Webber.

The Aerospace Daily and Defense Report piece is here. ®

High performance access to file storage

More from The Register

next story
Obama allows NSA to exploit 0-days: report
If the spooks say they need it, they get it
Parent gabfest Mumsnet hit by SSL bug: My heart bleeds, grins hacker
Natter-board tells middle-class Britain to purée its passwords
Web data BLEEDOUT: Users to feel the pain as Heartbleed bug revealed
Vendors and ISPs have work to do updating firmware - if it's possible to fix this
OpenSSL Heartbleed: Bloody nose for open-source bleeding hearts
Bloke behind the cockup says not enough people are helping crucial crypto project
One year on: diplomatic fail as Chinese APT gangs get back to work
Mandiant says past 12 months shows Beijing won't call off its hackers
Call of Duty 'fragged using OpenSSL's Heartbleed exploit'
So it begins ... or maybe not, says one analyst
Experian subsidiary faces MEGA-PROBE for 'selling consumer data to fraudster'
US attorneys general roll up sleeves, snap on gloves
NSA denies it knew about and USED Heartbleed encryption flaw for TWO YEARS
Agency forgets it exists to protect communications, not just spy on them
prev story

Whitepapers

Mainstay ROI - Does application security pay?
In this whitepaper learn how you and your enterprise might benefit from better software security.
Five 3D headsets to be won!
We were so impressed by the Durovis Dive headset we’ve asked the company to give some away to Reg readers.
3 Big data security analytics techniques
Applying these Big Data security analytics techniques can help you make your business safer by detecting attacks early, before significant damage is done.
The benefits of software based PBX
Why you should break free from your proprietary PBX and how to leverage your existing server hardware.
Mobile application security study
Download this report to see the alarming realities regarding the sheer number of applications vulnerable to attack, as well as the most common and easily addressable vulnerability errors.