Current Weather
The Spy FM

For Recent Cyberattacks, Motivations Vary

Filed by KOSU News in US News.
June 16, 2011

Computer users have for years struggled with viruses, worms and all sorts of malware. But the most recent cyberattacks have targeted institutions whose computer systems were thought to be relatively secure: the French Ministry of Finance, Sony, Lockheed Martin, Citibank, even the International Monetary Fund.

“These are first class attacks,” says Luis Gorrons, technical director for Panda Security, a global cybersecurity firm. “We were always seeing attacks on small and medium companies, but now we’re seeing that many big companies are being targeted and successfully attacked.”

It’s a cyber-barrage.

The people hacking into these big computer networks are for the most part highly sophisticated, with advanced tools and software at their disposal. But their motivations vary.

There are, for example, the “hacktivists” who break into networks largely just to disrupt them and make a political point. A recent penetration of the U.S. Senate computer system fit this pattern, as did an apparent attack Wednesday on the CIA’s website.

There are also cybercriminals, seeking to commit fraud or raid bank or credit card accounts, as at Citibank or Sony.

Finally, there are the cyber-spies who want to steal military secrets from a defense contractor like Lockheed Martin or financial data from the IMF.

“If someone is breaching a defense contractor, it’s probably at the behest of a foreign nation,” says Anup Ghosh, chief executive of Invincea, a Virginia-based cybersecurity firm. “If someone is breaching the IMF, it’s probably at the behest of a foreign nation looking for competitive [intelligence] on what’s going on.”

The IMF decides which governments deserve financial bailouts, under what conditions, and the Fund’s actions have enormous implications for the global economy.

“If I can jump into the pool of water that is the IMF system, I can not only read the minds of the central banking community, but I can also manipulate currency and bond markets around the world,” says Tom Kellerman, chief technology officer at AirPatrol Corp.

A hacker penetrating the IMF system might know which country’s currency is likely to rise or fall in value and which government debts are likely to get paid off and which aren’t. He could learn what negotiating stance IMF officials might take with a member government.

Those are important secrets, but the IMF may have neglected the challenge of protecting them.

“For years, they have emphasized physical security,” says Kellerman, who used to manage cybersecurity at the World Bank, the IMF’s sister institution. “The most important thing was protecting the executives and the decision makers and the conference rooms wherein they made serious global decisions that had implications for the global financial markets.”

In the meantime, however, the expansion of information technology and the widening use of mobile devices and remote access to sensitive systems complicated the security challenge at institutions like the IMF.

“You’re seeing hackers leapfrog through these remote access points into the inner sanctums of these institutions,” Kellerman says, “and maintain this omniscient presence within the systems by which they can manipulate markets.”

The data breach at the IMF remains under investigation, and it is not yet clear who might have been responsible for the cyberattack. Governments would probably have the greatest interest in IMF data and confidential information, but that does not necessarily mean the attack was carried out by a state actor.

“There are underground markets [for data],” says Ghosh. “What we’re seeing today is widespread and indiscriminate looting of networks.” The IMF breach, he says, fit this pattern. “The person who is gathering that data may try to sell it to the highest bidder,” he says. [Copyright 2011 National Public Radio]

Leave a Reply

5AM to 9AM Morning Edition

Morning Edition

For more than two decades, NPR's Morning Edition has prepared listeners for the day ahead with two hours of up-to-the-minute news, background analysis, commentary, and coverage of arts and sports.

Listen Live Now!

9AM to 10AM The Takeaway

The Takeaway

A fresh alternative in morning news, "The Takeaway" provides a breadth and depth of world, national and regional news coverage that is unprecedented in public media.

View the program guide!

10AM to 11PM On Point

On Point

On Point unites distinct and provocative voices with passionate discussion as it confronts the stories that are at the center of what is important in the world today. Leaving no perspective unchallenged, On Point digs past the surface and into the core of a subject, exposing each of its real world implications.

View the program guide!

Upcoming Events in your area (Submit your event today!)

Streaming audio and podcasts

Stream KOSU on your smartphone

Phone Streaming

SmartPhone listening options on this page are intended for many iPhones, Blackberries, etc. with low-cost software applications available to listen to our full-time web streams, both News on KOSU-1 and Classical on KOSU-2.

Learn more about our complete range of streaming services

We're perfecting the patient experience - Stillwater Medical Center