World War III? Cyber, Economic Battles Take Over
Once relegated to the shadows of the digital underground, hacking has gone mainstream. Hardly a day goes by without the announcement of a major cybersecurity breach, sometimes conducted by groups, such as Anonymous and LulzSec, that are virtually becoming household names. Hacking has become so prevalent that it has even been allegedly used by major news organizations in the United Kingdom for news gathering. This year alone, there have been a number of high-profile attacks on major companies, such as Sony; international organizations, such as NATO; and even entire governments, as was the case most recently with Syria. Although the major players are becoming more familiar, to many, their methods are as opaque as they've always been. In this slideshow, explore some of the techniques used by hackers to exploit and overcome cybersecurity vulnerabilities.
Eavesdropping and Other Passive Attacks With a passive attack, computer systems and networks are monitored in order for a hacker to gain some information. One technique involves eavesdropping, where a hacker listens in on a network. The point isn't to cause damage to the computer system itself, but to harvest information as it's transmitted. This technique is also known as sniffing or snooping. Eavesdropping is not only a concern for computers, but also mobile devices as they become ubiquitous.
Viruses, Worms and Other Active Attacks Active attacks, such as viruses and trojans, are techniques where a hacker manipulates or deletes data to create the desired result. Computer viruses were first seen in the late 1980s just as home computers were growing more popular. As its name suggests, a virus is a piece of code attached to a seemingly innocuous program and passed between computers. Once inside a system, the virus spreads and can bring down a computer. Like a virus, a Trojan horse is simply a computer program. As the name implies, a Trojan horse fools the user into thinking it's another kind of program, and once installed, releases a malicious code. Another cousin of the virus is the computer worm. Worms burrow into network security holes to pass and install malicious code from user to user. One of the most severe cyber-attacks of all time was through the accidental use of a worm by a graduate student in 1988, who was looking to determine the size of the Internet. Software used for a variety of functions from disrupting a system to gaining access to a network is often called malware. Spyware serves to collect information on users and may or may not be malicious. Not all spyware is malware and vice versa. There are also more niche subcategories of malware, such as ransomware, a term used for an attack meant to scare the user into paying what is essentially a form of blackmail, or scareware, a product falsely sold under the premise that it will protect your computer from outside threats.
Denial of Service A denial of service attack is a technique intended to impede normal operations of a website or network. The basic idea is to overrun a computer or server with requests from outside a network to overwhelm the system's available resources. By flooding the intended target with requests, hackers incapacitate the site. These attacks often employ botnets, also known as zombie computers, which are systems that are taken over, sometimes unknowingly though occasionally voluntarily, by a hacker. This technique was most notably employed by the hacking group known as Anonymous against various websites, including Mastercard, Visa, Paypal and others, in the wake of the controversy surrounding the online whistleblower Wikileaks.
Going In The Back Door Earlier this year, hackers shut down Sony's PlayStation Network and stole the personal information, including some credit card data, from nearly 100 millions users. According to a letter by Sony following a Congressional inquiry into the matter, the company asserted that the heist was the result of two groups of hackers: the first launched a denial of service attack while the second stole the data. Before this series of attacks took place, however, Sony itself was accused of slipping malicious code -- a rootkit -- into one of its firmware updates for the PlayStation 3. A rootkit, also known as a back door, is software that gives a hacker access to a computer or network, often without an administrator's knowledge. Gaming security experts, however, dismissed the rumors as false.
Phishing and Sidejacking Behind almost all secure data both online and off is a username and password. If a hacker can gain user information and crack a password, that attacker can access a network and create, modify or delete data maliciously. Different techniques, however, are used to steal a user's password. One of the most popular methods is known as phishing. It starts when a hacker sends an electronic communication to an unsuspecting user under the illusion that the message is from a trusted institution. The user is duped into supplying his information, which may not only include a username and password but also a social security number and bank account information. Another method, known as sidejacking, session IDs, which can be unencrypted data in a URL or cookie, to gain access to an account. Other automated attacks simply guess passwords using predetermined dictionaries and often exploits systems without lockout policies for successive login failures.
Keylogging Keylogging is a technique that could be used for password cracking, but goes a step further. It allows hackers to monitor every stroke of the key entered by a user, which could include other information besides passwords, such as social security numbers, credit card data and much more.
Spoofing With spoofing attacks, hackers pretend to be a user designated to access a particular system or network by mimicking that person's IP address. Once a hacker is inside the system, that attacker can steal or delete data, or access other resources within a particular network.
Tens of millions of people died in World War I and World War II as nations fought over resources, territory and ideology. But in the 21st century, economic and cyber-warfare between warring countries have largely replaced tanks, bombers and troops.
As tensions continue to ratchet up between Russia and Ukraine over the province of Crimea, could this sort of bloodless conflict be one possible outcome? Experts say it's possible.
"Nowadays it's hard to separate warfare from cyberwarfare, or even economic warfare," said Jacques Gansler, a former Pentagon undersecretary for technology and security, now professor of public policy and private enterprise at the University of Maryland. "The three are interrelated."
Gansler says that Ukraine is important to Russia for economic, rather than security reasons. It represents an important economic buffer between Russia's zone of influence and Europe. While observers say that Russia has already dispatched unmarked troops into Crimea, it's not clear whether a shooting war will break out.
Moscow has already engaged in cyber-warfare, launching denial of service attacks against Estonian government websites in 2007, and Georgia in 2008 before attacking that nation. Both nations were satellites of the former Soviet Union, along with Ukraine.
Cyber-attacks are "bound to be part of any future engagements," Gansler said. "We also have economic concerns about cyber having impact on industry or messing up power grids or communications systems. These are the things we are worrying about for the 21st century."
The opening salvos of a cyber-war between Russia and Ukraine may have already begun. Ukrainian parliament members said this week that their cell phone and Internet services are being blocked by Russian agents in the Crimea.
Crimea has only one Internet exchange point that controls access to all traffic within the disputed territory. Russia also controls three of the six Internet junctions into the entire nation of Ukraine.
Crippling a nation’s digital infrastructure could be as important as seizing telegraph lines, railroads and radio stations was for enemy armies during World War II. Today, water, power and energy supplies are digitally linked and could be vulnerable to hacker attacks or viruses, such as the Stuxnet worm that damaged one of Iran's nuclear facilities and was reportedly devised by Israeli and American programmers.
U.S. officials have also blamed China for infiltrating U.S. public water supplies and power grids, although there has been no damage so far.
Given today's global economy, any disruption through a shooting war could hurt the victor, as well as the victim. One historian notes that Nazi Germany wanted a "large economic space" of nations around it to feed the German economy. For Adolf Hitler, the Ukraine was a vital agricultural area -- "the breadbasket of Russia" -- as well a gateway to the oil fields of the Caucuses region.
Today, controlling the Ukraine is part of Vladimir Putin's plan to build his own "Eurasian Union" to rival the existing European Union, according to Jan De Vries, a professor at the University of California, Berkeley, who specializes in the economic history of Europe.
"The main economic strategy of the Putin regime in Moscow is to recreate a zone more or less on the borders of the old Soviet Union which, if it cannot be a single state, it can be a single economic zone ruled by a customs union," De Vries said.
De Vries says that the idea of Ukraine joining the European Union doesn't appear to be a threat, unless you are living in Moscow. That threatened economic perspective may explain Putin’s actions in Crimea.
"Today, when we look at the European Union, it seems a benign, useful and admirable institution," De Vries said. "But from Putin’s perspective, it looks different."
But other experts believe nationalism and power is behind Russia's moves.
"War comes from a mixture of motives," said Charles Maier, history professor at Harvard University. "That was true of World War II and whatever conflicts exist today. Putin would like to believe he can reconstruct the influence the Soviet Union had during the Cold War. Ukraine was part of Russia for a long time; he's trying to show it won't be easily absorbed by the West. This is as much as power politics as economics."