Cyber Attack Danger – USA Gov Policy

Kinetic warfare ends lives and destroys infrastructure. There is another type of war, state-sponsored cyberattacks, that costs millions of dollars every year and is one of the most dangerous types of security threats faced by the US today.

Last year the United States experienced a 57% increase in overall cyberattacks. World-wide attacks on corporate networks rose by 38%. These attacks are responsible for communications interruptions and electrical blackouts, the failure of military equipment, and breaches in America’s national security secrets. In the private sector cyber-attacks on the US have caused financial and intellectual property losses that have paralyzed business and healthcare systems and destroyed whole companies. In 2022 the US healthcare sector suffered an average of 1,410 weekly cyberattacks per organization, which is an 86% increase over 2021. When sophisticated cyber actors steal valuable data, especially when the attack is committed by states with an adversarial relationship with the US, the damage can be extensive. A recent Heritage Foundation report says “…no threat facing America has grown as fast, a manner as difficult to understand, as the danger from cyberattacks.”

China, Russia, North Korea, Iran and other unfriendly states and hacker groups pose a severe challenge to America’s open society. Currently, Russia presents the most sophisticated cyber threat, according to the report, with China as a close second. Hacking enabled Beijing to skip generations of technological stages helped by its rampant theft of commercial intellectual property. The threat is not new. It is ongoing but occurring on a larger scale with increasing frequency over the last decade. In one single 2015 cybersecurity breach in the US Office of Personnel Management, in a campaign believed to be undertaken by the Chinese government, 22.1 million federal employees had their personnel records with personally identifiable information obtained and exfiltrated using a backdoor tool previously employed by China to target Tibetan and Hong Kong political activists.

In that same year Ukraine experienced the first ever successful cyber attack on a power grid; another also believed to be of Russian origin followed in 2016. A year ago, immediately following Putin’s invasion in Ukraine, Russia took down several major Ukrainian government and banking websites. Last June Microsoft shared a report that detailed Russian hacking activities and said the country has engaged in “strategic espionage” in 42 countries, including the United States. Russia hacked the Democratic National Committee and last year is believed to have been behind multiple cyberattacks that took down portions of Ukraine’s electric grid.

Iran and North Korea are much less sophisticated than the two giants, but what they lack in expertise they make up for in malice, according to the Heritage Report. It reports that the 2012 “Shamoon” virus unleashed on the Saudi ARAMCO oil production company was a brute-force attack that destroyed 30,000 computers. Iran also committed cyberattacks against banks, government networks, and public agencies in the United Kingdom.

The US intelligence community in its 2021 Annual Threat Assessment notes that “Iran’s expertise and willingness to conduct aggressive cyber operations make it a significant threat to the security of the US and allied networks and data… Iran has the ability to conduct attacks on critical infrastructure as well as to conduct influence and espionage activities.” North Korea has also conducted high-profile cyberattacks against the US. One of the most notable was launched against Sony Entertainment, in response to a movie negatively depicting the North Korea state and its leader. According to the US report, the hackers took terabytes of private data and released confidential information, including five undistributed Sony movies. The FBI reports that in 2021 alone, ransomware attacks hit 649 US critical infrastructure entities. Virtually every organization in the United States is at risk from cyber threats. One of the problems in defending against such attacks is that they are hard to identify and defend against in an open society. The US Cybersecurity and Infrastructure Security Agency only recently issued its first comprehensive strategic plan since CISA was established in 2018. It will focus and guide the agency through 2025.

The US cannot forget, though, that although kinetic warfare is visceral and talked about more often in news stories, a more encompassing cyber threat looms beneath the surface.

Quick Analysis

Russia Expanding Aggression

President Putin is using more than one pathway to enter Europe and undermine the West. While most of the world watches the conflict he initiated in Ukraine, the Russian government is actively pursuing a second front in a little noticed campaign in Cyprus. Although the corrupt Cypriot government ended its issuance of “golden passports” in 2020, Russian intelligence is functioning quietly there to transform this EU country into a Russian beachhead of illicit economic activity aimed at penetrating the capitalist West, according to Paul Goble of the Jamestown Foundation. Cyprus is not a member of the North Atlantic Treaty Organization (NATO) nor does it receive as much attention as those countries who are member states. That adds to its allure as a prime location for Russia to attempt to gain a European foothold. Last week a NATO report, cited in the European Daily Monitor, noted that Russian intelligence agents have been plotting to destroy European infrastructure across the continent to disrupt states supporting Ukraine. It further suggests that Putin’s immediate goal is to lay the framework for a future move against the security organization’s members. Hungary, in particular, is another country garnering Moscow’s attention as it opposes the Western response to Russian aggression. Russia is focusing its intelligence efforts on other European, non-NATO member countries in addition to Cyprus, including Austria, Malta, and Ireland. The NATO report suggests that Moscow has had success in disseminating the Russian political narrative in these states to advance its campaign against the West. The island of Cyprus is proving to be a good target for Moscow as it is an ethnically divided island that is part of the EU since 2004. Northern Cyprus, officially called the Turkish Republic of Northern Cyprus (TRNC), is a de facto state that is only recognized by Turkey. The division precludes it from joining NATO. As Goble suggests, “it offers Russia troubled waters in which to fish.” Over the last 20 years, he points out, Cyprus’ challenges have opened it to a massive influx of Russian citizens, who now comprise approximately 10 percent of the island state’s population. Over 2,900 residents are Russians who entered until the “golden passport” program that allowed wealthy or well-connected Russians to move to Cyprus. It also provided them with documentation to travel freely throughout Europe! Although less visible on the world’s radar than the war in Ukraine, Moscow is also being helped by Cyprus’ banks opposition to seizing Russian assets and its support in evading Western sanctions. Russia has placed tens of billions of US Dollars there for money laundering. It has been more than two years since a single Russian “diplomat” has been deported and, in fact, the Embassy has grown to over 300 staffers on this tiny island state of only 1.2 million people. The Russian embassy in Nicosia has advanced communications antennae on its roof and opened a consulate on the northern end of the island. Moscow’s Ambassador, Mura Zyazikov, is a lieutenant general in the FSB with no diplomatic experience. The FSB, SVR (Russia’s Foreign Intelligence Service), and GRU are actively using the island as a base of operations against NATO Member states, Israel, and other Western allies. Moscow backs pro-Russian political parties who in turn influence Cypriot decisions on education, language, and other issues. “Dmitry Khmelnitsky of the Dossier Center says that its findings should be of concern not only to Cyprus but to the West as a whole. Those who ignore what Moscow is doing because Cyprus does not follow the EU sanctions regime are missing something critical,” says Goble. “Cyprus does not seek to get rid of Russian agents and does not interfere with their work,” Khmelnitsky concludes, “despite the fact that what the Kremlin is doing is so clearly visible.” This has an impact not only on the small island but on the EU, NATO, and the West in general. Earlier this year the Moscow Times reported that when the FBI became more interested in Russian business and oligarchs in Cyprus, at least 10 of the major Russian businesses operating there left. Despite the government of Cyprus’ vow to implement plans for new sanctions against Russia, it continues to ignore Putin’s atrocities in Ukraine and to shield the wealth of the 50,000 wealthy Russian citizens and oligarchs residing there. Daria Novak served in the U.S. State Dept. Illustration: Pixabay