Fri Feb 25

How much damage could a Russian cyberattack do in the US?

Written by Scott Jasper, Senior Lecturer in National Security Affairs, Naval Postgraduate School

U.S. intelligence analysts have determined that Moscow would consider ^[1] a cyberattack ^[2] against the U.S. as the Ukraine crisis grows ^[3].

As a scholar ^[4] of Russian cyber operations ^[5], I know the Kremlin has the capacity to damage critical U.S. infrastructure systems.

Federal officials have been bracing for this. In January 2022 the U.S. Cybersecurity and Infrastructure Security Agency issued an alert ^[6] that outlined the Russian cyberattack threat, with technical details of sophisticated Russian-led hacking from recent years. That included a complicated digital break-in ^[7] that targeted the U.S. energy industry and gained access to the control rooms of U.S. electric utilities. According to Homeland Security officials, the hackers “could have thrown switches ^[8]” and knocked out power to the public – but did not.

In mid-February 2022, federal cybersecurity experts met with executives from big U.S. banks ^[9] to discuss defenses against Russian hacking attempts.

In Ukraine, the Russian offensive began Feb. 23, 2022, with cyberattacks aimed at overloading and shutting down bank and government websites ^[10]. In addition there were reports of software capable of corrupting data ^[11] having been secretly installed on hundreds of computers owned by large Ukrainian organizations in the financial, defense and information technology services industries ^[12].

That malicious software spilled outside Ukraine – it was found on computers in Lithuania and Latvia – which is reminiscent of the NotPetya ^[13] attack. In 2017, a piece of malware that initially seemed to be ransomware was unleashed on Ukraine and spread widely, causing more than $10 billion in collateral damage ^[14] to major international companies. The NotPetya attack was ultimately attributed to a Russian military unit ^[15].

U.S. officials have also highlighted that Russian cyberwarriors can gain access and remain undetected for long periods ^[16] in key systems in the U.S.

Russian Foreign Intelligence Service ^[17] hackers did this in 2020 when they gained access to SolarWinds software, used by many companies and government agencies to manage their computer networks ^[18]. After initially breaking into the system, the Russians stayed undetected for seven months, even disabling ^[19] antivirus software and using stolen login credentials ^[20] to appear like legitimate users.

This attack gave Russians access inside at least nine U.S. federal agencies ^[21] and around 100 private companies, many in information technology and cybersecurity.

It’s impossible to be certain ^[22] there aren’t more Russian government hackers lurking undetected in critical companies and systems in the U.S. And wherever they are, they may have the ability to cause substantial damage.

[Get The Conversation’s most important politics headlines, in our Politics Weekly newsletter ^[23].]

References

^{^} would consider (news.yahoo.com)
^{^} a cyberattack (theconversation.com)
^{^} Ukraine crisis grows (www.wsj.com)
^{^} scholar (scholar.google.com)
^{^} Russian cyber operations (press.georgetown.edu)
^{^} an alert (www.cisa.gov)
^{^} complicated digital break-in (www.cisa.gov)
^{^} could have thrown switches (www.wsj.com)
^{^} big U.S. banks (www.cnn.com)
^{^} bank and government websites (www.cnn.com)
^{^} software capable of corrupting data (www.scmagazine.com)
^{^} financial, defense and information technology services industries (symantec-enterprise-blogs.security.com)
^{^} NotPetya (www.cbsnews.com)
^{^} more than $10 billion in collateral damage (www.wired.com)
^{^} Russian military unit (www.justice.gov)
^{^} gain access and remain undetected for long periods (www.cisa.gov)
^{^} Foreign Intelligence Service (home.treasury.gov)
^{^} manage their computer networks (www.rpc.senate.gov)
^{^} disabling (www.mandiant.com)
^{^} stolen login credentials (www.mandiant.com)
^{^} nine U.S. federal agencies (www.whitehouse.gov)
^{^} impossible to be certain (theconversation.com)
^{^} Get The Conversation’s most important politics headlines, in our Politics Weekly newsletter (memberservices.theconversation.com)

Authors: Scott Jasper, Senior Lecturer in National Security Affairs, Naval Postgraduate School

How much damage could a Russian cyberattack do in the US?

References

Don't care about the Build Back Better Act? Hearing people's personal stories might change that

Indigenous Mexicans turn inward to survive COVID-19, barricading villages and growing their own food

Waves of strikes rippling across the US seem big, but the total number of Americans walking off the job remains historically low

Where is my Xanax Rx? Why your doctor may be concerned about prescribing benzodiazepines

Does hardening schools make students safer?

How I learned to stop worrying and love the doll – a feminist philosopher's journey back to Barbie

The Great Resignation: Historical data and a deeper analysis show it’s not as great as screaming headlines suggest

New Israeli power broker seeks to rewrite history to justify violence against Palestinians

AI maps psychedelic 'trip' experiences to regions of the brain – opening new route to psychiatric treatments

Uprisings after pandemics have happened before – just look at the English Peasant Revolt of 1381

Meditative mothering? How Buddhism honors both compassionate caregiving and celibate monks and nuns

#1 CHART-TOPPING INDIE RECORDING ARTIST JASON SHAND: ART IMITATES LIFE

5 COOL GADGETS TO CARRY FOR A SAFE TRIP

The women who appear in Dante's 'Divine Comedy' are finally getting their due, 700 years later