[ad_1]
Government websites that went dark in Ukraine on Wednesday spread fears that an escalating conflict with Russia in cyberspace is headed for America, a cyberwar that experts say is already underway and the United States is unprepared for.
Experts say the Biden administration’s imposition of new sanctions over Russia’s military advance in Ukraine could give Russia a reason to respond to America in cyberspace.
Karim Hijazi, CEO of cyber-intelligence firm Prevailion, is sounding the alarm over Russia activating implanted vulnerabilities in America’s critical infrastructure, particularly water treatment plans, the energy industry, and the power grid.
“The cyberfight has been going on for too long as there is no better term,” Hijazi said. “It will become more overt.”
While Western cyber officials are trying to quietly discuss how opponents swing swords for cyber warfare, they are simultaneously urging cybersecurity experts to raise their shields should war break out.
When the official websites for Ukraine’s parliament, foreign ministry and security service became inaccessible Wednesday morning and all eyes were on possible Russian criminals, US and UK cyber officials issued a warning revealing new malware used by attackers alleged to be affiliated with the GRU. . Russian military intelligence agency.
The UK said the analysis of the “Cyclops Blink” malware was “routine advice and not directly linked to the situation in Ukraine”.
The day before, the White House press secretary, Jen Psaki, when questioned about a possible cyber war with Russia, said there was no “threat pending” in cyberspace.
But the Biden administration has told computer network advocates to continue searching for cyber-attackers using new previously unused tools as the crisis in Ukraine escalates.
Cybersecurity firm ESET said it discovered malware on hundreds of machines in Ukraine and may have been installed a few months ago while waiting for the right moment to attack.
Mr. Hijazi has observed that infected systems are communicating with foreign handlers and is worried about what will happen when enemies activate malware pending on American infrastructure. He said his company did not have the legal authority to intervene in everything it observed, and that he thought federal law enforcement might not have the level of personnel necessary to eliminate the threat.
“Luck favors the prepared in this situation and we’re a little behind in removing some of these implants,” he said.
The cybersecurity community inside and outside of government urges people to be vigilant. The Cybersecurity and Infrastructure Security Agency has adopted the mantra of “shields” from the Russian government for things like power and communications, against threats to critical infrastructure.
Christian Sorensen, CEO of cybersecurity company SightGain, said that America is not ready for a cyber war with Russia. He said the cybersecurity community has been vocal about the need to be prepared, but not everyone is doing it.
“It’s not easy to do and it’s not cheap to do right now,” said Mr. Sorensen. “A little screaming into the woods and not [getting] It’s easy to be prepared for but also not like a quick fix, it’s also easy to fix.”
Mr. Sorensen, who previously served with the US Cyber Command, said it was delayed for organizations to see if their cybersecurity was actually working and to learn the answer before something catastrophic happened.
The general public may not immediately know when the cyber war started, or may not know who is responsible.
National Cyber Director John C. Inglis told the House Oversight and Reform Committee in November that a cyberattack was “loss of health security, national security of an important nature.”
Mr Hijazi said such a cyberattack could include crashing a water treatment plant and causing people to drink dangerous drinking water that causes dysentery and floods hospitals with patients.
As cyber experts become more skilled at identifying the culprits responsible for the attacks, Mr. Hijazi said there is too much collusion between hostile countries in cyberspace and many countries will try to take advantage of a cyber war that hits the US like a looter gang.
“If there’s going to be an all-out cyber war or conflict, you’re going to get the looters to show up,” he said.
[ad_2]
Source link