America Already Has a Manhattan Project for Developing Cyber Attacks.


535006939
Getty Images
“What we really need is a Manhattan Project for cybersecurity.” It’s a sentiment that swells up every few years in the wake of some huge computer intrusion—most recently the Sony and Anthem hacks. The invocation of the legendary program that spawned the atomic bomb is telling. The Manhattan Project is America’s go-to shorthand for our deep conviction that if we gather the smartest scientists together and give them billions of dollars and a sense of urgency, we can achieve what otherwise would be impossible. A Google search on “cyber Manhattan Project” brings up results from as far back as 1997—it’s second only to “electronic Pearl Harbor” in computer-themed World War II allusions.
In a much-circulated post on Medium last month, futurist Marc Goodman sets out what such a project would accomplish. “This Manhattan Project would help generate the associated tools we need to protect ourselves, including more robust, secure, and privacy-enhanced operating systems,” Goodman writes. “Through its research, it would also design and produce software and hardware that were self-healing and vastly more resistant to attack and resilient to failure than anything available today.”
These arguments have so far not swayed a sitting American president. Sure, President Obama mentioned cybersecurity at the State of the Union, but his proposal not only doesn’t boost security research and development, it potentially criminalizes it. At the White House’s cybersecurity summit last week, Obama told Silicon Valley bigwigs that he understood the hacking problem well—“We all know what we need to do. We have to build stronger defenses and disrupt more attacks”—but his prescription this time was a tepid executive order aimed at improving information sharing between the government and industry. Those hoping for something more Rooseveltian must have been disappointed.
On Monday, we finally learned the truth of it. America already has a computer security Manhattan Project. We’ve had it since at least 2001. Like the original, it has been highly classified, spawned huge technological advances in secret, and drawn some of the best minds in the country. We didn’t recognize it before because the project is not aimed at defense, as advocates hoped. Instead, like the original, America’s cyber Manhattan Project is purely offensive.
This revelation came by way of the Russia-based anti-virus company Kaspersky. At a conference in Cancun this week, Kaspersky researchers detailed the activities of a computer espionage outfit it calls the “Equation Group,” which, we can fairly surmise from previous leaks, is actually the NSA’s Tailored Access Operations unit. NSA’s cyber capabilities have been broadly known since the German news magazine Der Spiegel published a leaked 50-page catalog of NSA spy gear and malware in late 2013. But the one-page catalog descriptions didn’t convey the full flavor of the NSA’s technology. For that, somebody had to actually get their hands on that technology—capture it in the wild—and take it apart piece by piece, which is what Kaspersky did.
The result is impressive. The company has linked six different families of malware—“implants,” as the NSA calls them—to the Equation Group, the oldest of which has been kicking around since 2001. The malware has stayed below the radar in part because the NSA deploys it in limited, cautious stages. In the first stage, the agency might compromise a web forum or an ad network and use it to serve a simple “validator” backdoor to potential targets. That validator checks every newly infected computer to see if it’s of interest to the NSA. If not, it quietly removes itself, and nobody is the wiser.
Only if the computer is a target of interest to the NSA does the validator take the next step and load a more sophisticated implant from a stealth NSA website like suddenplot.com or technicalconsumerreports.com. That’s where it gets interesting. The top tier of NSA malware discovered by Kaspersky is a generation ahead of anything previously reported in the wild. It uses a well-engineered piece of software called a bootkit to control the operating system from the ground up. It hides itself encrypted in the Windows registry, so that anti-virus software can’t find it on the computer’s disk. It carves out its own virtual file system on your machine to store data for exfiltration.
There are update mechanisms, dozens of plug-ins, a self-destruct function, massive code obfuscation, hundreds of fake websites to serve as command-and-control. One of the NSA’s malware plug-ins can even reprogram your hard drive’s firmware, allowing the implant to survive a complete disk wipe—a feat that’s been demonstrated by computer scientists under laboratory conditions but never before seen in the wild. “The group is unique almost in every aspect of their activities,” Kaspersky concludes. “They use tools that are very complicated and expensive to develop, in order to infect victims, retrieve data, and hide activity in an outstandingly professional way.”
If you combine Kaspersky’s malware analysis with the Snowden revelations, you start to see just how strong a position the US has on the chess board of cyber espionage, and how hard it has worked to get there. Other countries use computer intrusion for spying, but not with the NSA’s $10 billion budget, and no public analysis of Chinese or Russian attacks has ever found a capability comparable to the Equation Group’s.
The US has made the strategic choice to put its resources into engineering better attack tools and an infrastructure to support them. In a way it’s a smart choice. It’s a truism that the cyber battlefield is asymmetric—a defender has to get it right every time, while an attacker only has to succeed once. If the US spends a billion dollars in cyber defense, it will still be vulnerable. But spend it on cyber attack, and you get the most advanced computer espionage and sabotage tools that history has ever seen. It all makes sense in a 1970s Rand-Corporation-nuclear-game-theory kind of way.
But we can stop pretending now that the government is ever going to have a “Manhattan Project” that improves the state of the art in computer defense. That would undermine the very attack system it has spent billions of dollars and a decade-and-a-half building. Despite the popular can-do appeal, a defensive Manhattan Project isn’t just unlikely. It’s a moon shot.

wired.

Popular posts from this blog

UK GENERAL ELECTIONS:Inquiry announced into memo alleging Sturgeon wants Tory election victory.

Image
Civil service instigates investigation into leaked memo from Foreign Office about supposed comments made in February Scotland’s first minister, Nicola Sturgeon, with David Cameron in her office at the Scottish parliament earlier this year. Photograph: WPA Pool/Getty A civil service inquiry into a leaked memo which claimed that Nicola Sturgeon privately wanted to see David Cameron remain in power after the general election has been instigated following calls from the First Minister. Ms Sturgeon described the allegation as “100% untrue” and accused Whitehall of “dirty tricks”.
Read more

Sandhurst's sheikhs: Why do so many Gulf royals receive military training in the UK? A parade outside the building at Sandhurst Continue reading the main story In today's Magazine The death list that names 5,000 victims Is this woman an apostate? Voices from a WW1 prison camp The Swiss selfie scandal Generations of foreign royals - particularly from the Middle East - have learned to be military leaders at the UK's Sandhurst officer training academy. But is that still a good idea, asks Matthew Teller. Since 1812, the Royal Military Academy Sandhurst, on the Surrey/Berkshire border, has been where the British Army trains its officers. It has a gruelling 44-week course testing the physical and intellectual skills of officer cadets and imbuing them with the values of the British Army. Alongside would-be British officers, Sandhurst has a tradition of drawing cadets from overseas. Many of the elite families of the Middle East have sent their sons and daughters. Perhaps the most notable was King Hussein of Jordan. Continue reading the main story Find out more Matthew Teller presents Sandhurst and the Sheikhs, a Whistledown production for BBC Radio 4, on Wednesday 27 August 2014 at 11:00 BST It will be available on iPlayer shortly after broadcast Four reigning Arab monarchs are graduates of Sandhurst and its affiliated colleges - King Abdullah of Jordan, King Hamad of Bahrain, Sheikh Tamim, Emir of Qatar, and Sultan Qaboos of Oman. Past monarchs include Sheikh Saad, Emir of Kuwait, and Sheikh Hamad, Emir of Qatar. Sandhurst's links have continued from the time when Britain was the major colonial power in the Gulf. "One thing the British were excellent at was consolidating their rule through spectacle," says Habiba Hamid, former foreign policy strategist to the rulers of Dubai and Abu Dhabi. "Pomp, ceremony, displays of military might, shock and awe - they all originate from the British military relationship." Sheikh Hamad Bin Isa Al Khalifa, King Abdullah, Sultan Qaboos Sandhurst alumni: King Hamad of Bahrain, King Abdullah of Jordan and Sultan Qaboos of Oman It's a place where future leaders get to know each other, says Michael Stephens, deputy director of the Royal United Services Institute, Qatar. And Sandhurst gives the UK influence in the Gulf. "The [UK] gets the kind of attention from Gulf policy elites that countries of our size, like France and others, don't get. It gives us the ability to punch above our weight. "You have people who've spent time in Britain, they have… connections to their mates, their teachers. Familiarity in politics is very beneficial in the Gulf context." "For British people who are drifting around the world, as I did as a soldier," says Brigadier Peter Sincock, former defence attache to Saudi Arabia, "you find people who were at Sandhurst and you have an immediate rapport. I think that's very helpful, for example, in the field of military sales." The Emir of Dubai Mohammad bin Rashid Al Maktoum with his son after his Passing Out Parade at Sandhurst in 2006 Sheikh Mohammad bin Rashid Al Maktoum, Emir of Dubai, with his son in uniform at Sandhurst in 2006 Her Majesty The Queen's Representative His Highness Sheikh Hamad bin Khalifa Al-Thani, The Emir of Qatar inspects soldiers during the 144th Sovereign's Parade held at The Royal Military Academy Sandhurst on April 8, 2004 in Camberley, England. Some 470 Officer cadets took part of which 219 were commissioned into the British Army Hamad bin Khalifa Al-Thani, the Emir of Qatar until 2013, inspects soldiers at Sandhurst in 2004 Emotion doesn't always deliver. In 2013, despite the personal intervention of David Cameron, the UAE decided against buying the UK's Typhoon fighter jets. But elsewhere fellow feeling is paying dividends. "The Gulf monarchies have become important sources of capital," says Jane Kinninmont, deputy head of the Middle East/North Africa programme at the foreign affairs think tank Chatham House. "So you see the tallest building in London being financed by the Qataris, you see UK infrastructure and oilfield development being financed by the UAE. There's a desire - it can even seem like a desperation - to keep them onside for trade reasons." British policy in the Gulf is primarily "mercantile", says Dr Kristian Coates Ulrichsen, of the Baker Institute in Houston, Texas. Concerns over human rights and reform are secondary. The Shard at dusk The Shard was funded by Qatari investors In 2012 Sandhurst accepted a £15m donation from the UAE for a new accommodation block, named the Zayed Building after that country's founding ruler. In March 2013, Sandhurst's Mons Hall - a sports centre - was reopened as the King Hamad Hall, following a £3m donation from the monarch of Bahrain, who was educated at one of Sandhurst's affiliated colleges. The renaming proved controversial, partly because of the perceived slight towards the 1,600 British casualties at the Battle of Mons in August 1914 - and partly because of how Hamad and his government have dealt with political protest in Bahrain over the last three years. A critic might note that the third term of Sandhurst's Officer Commissioning Course covers counter-insurgency techniques and ways to manage public disorder. Since tension between Bahrain's majority Shia population and minority Sunni ruling elite boiled over in 2011, more than 80 civilians have died at the hands of the security forces, according to opposition estimates, though the government disputes the figures. Thirteen police officers have also lost their lives in the clashes. "The king has always felt that Sandhurst was a great place," says Sincock, chairman of the Bahrain Society, which promotes friendship between the UK and Bahrain. "Something like 20 of his immediate family have been there as cadets. He didn't really understand why there was such an outcry." David Cameron and King Hamad David Cameron meeting King Hamad in 2012... A protester is held back by police ... while protesters nearby opposed the Bahrain ruler's human rights record Crispin Black, a Sandhurst graduate and former instructor, says the academy should not have taken the money. "Everywhere you look there's a memorial to something, a building or a plaque that serves as a touchstone that takes you right to the heart of British military history. Calling this hall 'King Hamad Hall' ain't gonna do that." Sandhurst gave a written response to the criticism. "All donations to Sandhurst are in compliance with the UK's domestic and international legal obligations and our values as a nation. Over the years donations like this have saved the UK taxpayer a considerable amount of money." But what happens when Sandhurst's friends become enemies? In 2001, then-prime minister Tony Blair visited Damascus, marking a warming of relations between the UK and Syria. Shortly after, in 2003, Sandhurst was training officers from the Syrian armed forces. Now, of course, Syria is an international pariah. Journalist Michael Cockerell has written about Libyan dictator Colonel Gaddafi's time at the Army School of Education in Beaconsfield in 1966: "Three years [later], Gaddafi followed a tradition of foreign officers trained by the British Army. He made use of his newfound knowledge to seize political power in his own country." Ahmed Ali Sandhurst-trained Ahmed Ali was a key player in the Egyptian military's removal of Islamist President Mohammed Morsi That tradition persists. In the 1990s Egyptian colonel Ahmed Ali attended Sandhurst. In 2013 he was one of the key figures in the Egyptian military's removal of Islamist President Mohammed Morsi, now rewarded by a post in President Sisi's inner circle of advisers. In the late 1990s there were moves by the British government under Tony Blair to end Sandhurst's training of overseas cadets. Major-General Arthur Denaro, Middle East adviser to the defence secretary and commandant at Sandhurst in the late 1990s, describes the idea as part of the "ethical foreign policy" advocated by the late Robin Cook, then-foreign secretary. Tony Blair and Robin Cook Tony Blair and Robin Cook at one point planned to end Sandhurst's training of overseas cadets The funeral of King Hussein in 1999 appears to have scuppered the plan. "Coming to that funeral were the heads of state of almost every country in the world - and our prime minister was there, Tony Blair," says Major-General Denaro. "He happened to see me talking to heads of state - the Sultan of Brunei, the Sultan of Oman, the Bahrainis, the Saudis - and he said 'How do you know all these guys?' The answer was because they went to Sandhurst." Today, Sandhurst has reportedly trained more officer cadets from the UAE than from any other country bar the UK. The May 2014 intake included 72 overseas cadets, around 40% of whom were from the Middle East. "In the future," says Maryam al-Khawaja, acting president of the Bahrain Centre for Human Rights, "people will look back at how much Britain messed up in the [Middle East] because they wanted to sell more Typhoon jets to Bahrain, rather than stand behind the values of human rights and democracy." "It's one thing saying we're inculcating benign values, but that's not happening," says Habiba Hamid. Sandhurst is "a relic of the colonial past. They're not [teaching] the civic values we ought to find in democratically elected leaders." line Who else went to Sandhurst? Princes William and Harry, Winston Churchill, Ian Fleming, Katie Hopkins, Antony Beevor, James Blunt, Josh Lewsey, Devon Harris (From left to right) Princes William and Harry Sir Winston Churchill Ian Fleming, creator of James Bond (but did not complete training) Katie Hopkins, reality TV star Antony Beevor, historian James Blunt, singer-songwriter Josh Lewsey, World Cup-winning England rugby player Devon Harris, member of Jamaica's first bobsleigh team line Sandhurst says that "building international relations through military exchanges and education is a key pillar of the UK's international engagement strategy". Sandhurst may be marvellous for the UK, a country where the army is subservient to government, but it is also delivering militarily-trained officers to Middle Eastern monarchies where, often, armies seem to exist to defend not the nation but the ruling family.

Image
Generations of foreign royals - particularly from the Middle East - have learned to be military leaders at the UK's Sandhurst officer training academy. But is that still a good idea, asks Matthew Teller. Since 1812, the Royal Military Academy Sandhurst, on the Surrey/Berkshire border, has been where the British Army trains its officers. It has a gruelling 44-week course testing the physical and intellectual skills of officer cadets and imbuing them with the values of the British Army. Alongside would-be British officers, Sandhurst has a tradition of drawing cadets from overseas. Many of the elite families of the Middle East have sent their sons and daughters. Perhaps the most notable was King Hussein of Jordan. Four reigning Arab monarchs are graduates of Sandhurst and its affiliated colleges - King Abdullah of Jordan, King Hamad of Bahrain, Sheikh Tamim, Emir of Qatar, and Sultan Qaboos of Oman. Past monarchs include Sheikh S
Read more

Ebola Outbreak: Guinea Declares Emergency As Overall Deaths From Ebola Rise To 1,069

Image
Health workers take passengers' temperatures infrared digital laser thermometers at the Felix Houphouet Boigny international airport in Abidjan on Aug. 13, 2014. Ivory Coast on Monday banned air travellers from Guinea, Liberia and Sierra Leone, the three countries worst-hit by the Ebola outbreak, and ordered its flagship carrier Air Cote d'Ivoire to cease flights to and from them. Reuters/Luc Gnago Guinea, one of the worst-hit West African nations in the ongoing Ebola outbreak, announced a state of emergency Wednesday. The World Health Organization, or WHO, also  said  that four new people died in Guinea between Aug. 10 and Aug. 11. The total death count in Guinea from the latest epidemic was estimated at 377 by WHO while the number of cases reported had risen to 510. Overa
Read more