Tech/Cyber

An attempted cyberattack on Israel’s water system in late April, just months after the global pandemic hit, prompted fears that cyber adversaries are getting even more bold in their efforts to cause harm. Israel’s national cyber chief, Yigal Unna, officially acknowledged the plot, calling it a ‘synchronized and organized attack’ ...

We know that corporate boards can no longer afford to leave cyber to the IT team. In the future, (which is now) they need to be actively engaged in cybersecurity and they need to know how to do it from a strategic level. Particularly in a time when many companies ...

 Sean Roche is former Associate Deputy Director of CIA for Digital Innovation. The Directorate of Digital Innovation (DDI) was created to accelerate the integration of advanced digital capability across all of CIA’s mission areas and is responsible for a wide range of espionage missions including cyber intelligence, open source collection, secure global communications, ...

Sean Roche is former Associate Deputy Director of CIA for Digital Innovation. The Directorate of Digital Innovation (DDI) was created to accelerate the integration of advanced digital capability across all of CIA’s mission areas and is responsible for a wide range of espionage missions including cyber intelligence, open source collection, secure global communications, ...

Quantum Information Science has been around for a while, but the importance of quantum computing and its impact on national security has become clear in recent years. Some national security experts are calling it the next technological revolution.   Cipher Brief Expert and former General Counsel for the NSA, Glenn Gerstell, wrote an ...

Thomas Donahue is a Cipher Brief expert and former Senior Director for Cyber Operations on the U.S. National Security Council Staff.  His article was originally published by National Defense University Press PRISM.  In case you missed it, you can read The Worst Possible Day: US Telecommunication and Huawei – Pt. 1 here  ...

Thomas Donahue is a Cipher Brief expert and former Senior Director for Cyber Operations on the U.S. National Security Council Staff.  His article was originally published by National Defense University Press PRISM. As a global power, the United States must be able to sustain military forces and project power anywhere ...

The development of artificial intelligence (AI) technologies provides great potential to businesses that are able to harness the opportunities it presents, but AI also poses great risks to national security.  Within the pages of the 2019 Worldwide Threat Report, presented in January of this year by former Director of National ...

The Cipher Brief is running a special series on disinformation over the next several months.  We’ll introduce you to experts in the field who will share ways to identify disinformation efforts, help you critically think your way through what you see and share tips on what to do when you ...

Predicting the future of Cloud computing is a bit like predicting the weather:  there are certain knowns that you can set a clock by, but there are unknowns about the environment, and how conditions can collide as the volume of information placed in the Cloud increases. A Gartner survey conducted ...

When DHS was established shortly after 9/11, terrorism was the focus. But in the 16 years since the Agency’s creation, the threat landscape has changed dramatically and cyber now plays a leading role in overall threats. Four months ago, President Trump signed the Cyber Security and Infrastructure Security Agency Act, ...

Bottom Line: The dark web has long been a place where stolen personal data is bought and sold in staggering numbers, criminals run lucrative drug and pornographic businesses and terrorists have found relatively safe territory from which to organize and communicate.  But the future of the dark web may look ...

Last week, The Cipher Brief told you how and why the U.S. has been working to convince its allies to ban Chinese vendors from contributing to the development of 5G networks as well as offering some basics about what 5G actually is, and what we should be most focused on as ...

Fresh off the heels of the Munich security conference, a rift remains between the U.S. and its allies over their approach to 5G networks and managing the potential national security risks of allowing Chinese vendors to participate in the development of the technology.   The U.S. has been working to ...

Bottom Line: In the digital age, determining the origins of cyberattacks is already difficult, but cyber actors can further muddy attribution by diverting blame for attacks to others. The intention is not necessarily to trick intelligence services – who are able to access information beyond technical forensics of the hack ...

Innovation in Government isn’t generally a phrase that rolls off the tongue, but in a relatively unconstrained threat environment, innovation has become synonymous with survival. A few years ago, the world’s most secretive signals intelligence agency underwent a significant reorganization effort that combined elements of the Agency’s offensive and defensive ...

Bottom Line Up Front:  The Trump Administration is confronting China on issues that have been developing for years and have percolated to the top of a list of concerns that are affecting bilateral relations.  The current 10% tariff on $250 billion of goods could escalate to 25% or higher if ...

Bottom Line: The U.S. and its NATO allies have warned that Russian submarine activity near undersea fiber optic cables means Moscow may be plotting to disrupt or intercept sensitive or other critical internet communications in the event of a confrontation with the West. Their warning serves as a plea to ...

At a recent private D.C. dinner, Homeland Security Secretary Kirstjen Nielsen gathered with academics and cyber experts from the private sector to talk candidly about urgent cyber threats and actions that DHS is taking to address them. It was an intimate event, hosted by Atlantic Council President Fred Kempe and ...

Bottom line: Terrorists are turning to the dark web’s crypto-bazaars, social media channels and e-commerce sites to buy more coveted military equipment than the usual rocket launchers and AK-47s in the traditional black market. These digital black markets are also allowing terrorist organizations from Iraq, Syria, Libya and Yemen, as ...

This brief is part of The Cipher Brief’s 2018 Annual Threat Report.   Bottom Line: There are three prominent technological security concerns for the United States with a growing Chinese strategic competitor to the east: Beijing’s push toward cyber and electronic warfare, its development of counter-space capabilities that threaten U.S. space ...

China's state news agency Xinhua, has shown the world just how far China has come in the artificial intelligence race with the introduction of a digital news anchor. The digital anchor not only read the news at China's World Internet Conference last week, but it also demonstrated the capabilities of ...

Twitter is releasing a trove of known accounts and posts that it says were used to meddle in U.S. elections dating back to 2016.  According to the company, the data includes more than 4,600 accounts and more than 10 million tweets, photos, GIFs and broadcasts linked to Russia and Iran.  ...

As the Principal Deputy Director of National Intelligence, Susan M. Gordon serves as DNI Dan Coats’ number two, helping to manage an Intelligence Community (IC) that includes 17 different agencies and organizations, if you include the ODNI itself. The IC’s central mission is to provide the President with the most ...

The U.S. Administration released its new National Cyber Strategy on Thursday, covering a broad number of security-related issues that fall into four main categories, it refers to as ‘pillars’. The first pillar includes securing federal networks and information, securing critical infrastructure, fighting cybercrime and seeking improved incident reporting.  The second ...

The world’s malicious cyber actors -- Russia, China, Iran, and North Korea – have spoiled cyber’s original, idealistic vision and instead use cyberspace to advance competitive interests to undermine Western laws and norms and pursue a clandestine means (cyber theft) to catch up with the West in technology, political influence, ...

Bottom Line: In the past decade, Iran’s cyber capabilities have evolved from a tool used to lash out against domestic opponents of the Islamic Republic to a central pillar of its national strategy of holding adversaries at risk and gleaning crucial foreign intelligence. Despite a fall in disruptive Iranian cyberattacks ...

Few would argue that in a world of consistent, emerging cyber threats, the role of the Chief Information Security Officer is one that requires a special kind of calm as well as a steady stream of credible, timely information.  Some of the information that is used to build a strong ...

On the heels of the Helsinki summit between U.S. President Donald Trump and Russian President Vladimir Putin, it bears revisiting some of the important, outstanding questions that remain about how President Trump might approach the financial sanctions imposed on Russia since its 2014 seizure of Crimea. Measures such as freezing ...

In part two of The Cipher Brief’s two-part series on how Russia is building its virtual battlefield, we look at the U.S response to the tools and tactics that the Kremlin is employing and ask whether it’s enough.  Response: The U.S. has responded to Russian activity in cyberspace through diplomatic ...

As the world focuses on the Singapore summit between President Donald Trump and North Korean leader Kim Jong Un, the President’s Treasury Secretary announced sanctions against five Russian entities and three individuals for their ties to Russian cyber activities, prompting some to question the Administration’s mixed signals on Russia over ...

Bottom Line:  The risk posed to U.S. national security by what are believed to be Russian-backed hacking groups, is similar to the October 1962 Cuban Missile Crisis according to Cipher Brief Experts, but different, in that the U.S. has no clear and obvious deterrent this time around. Recent Developments:  The ...

The Trump administration has accused Russia of a coordinated “multi-stage intrusion campaign” to hack into critical U.S. infrastructure networks and conduct “network reconnaissance” while attempting to delete evidence of their intrusions.  Homeland Security officials say they have helped the affected companies remove the Russian hackers from their compromised networks, but ...

Bottom Line: Conflict follows humanity wherever it goes, and the world’s population is increasingly living in cities. Waning are the days of the Maoist blueprint of rural insurgents pillaging small peripheral villages and seeking refuge in the hard terrain of mountainous caverns, dense forests or expansive deserts. Soon terrorist and ...

Bottom Line: A spy’s tradecraft must constantly evolve because of the rapid changes of the digital age – especially the tools and skills required to maintain a legend, or cover identity. Virtual recordkeeping, modern surveillance technology and the vast amounts of a person’s background accessible on open-source platforms such as ...

Bottom Line: While President Donald Trump’s tweets at times unnerve America’s closest allies, especially those that attack U.S. intelligence and law enforcement, the “Five Eyes” network of the U.S., Britain, Canada, Australia and New Zealand continues to share intelligence almost as one nation. The intelligence relationship arguably provides stability and ...

Bottom Line: Russia’s use of private military contractors in Syria lends the Kremlin deniability that becomes problematic when the U.S. tries to calculate how to retaliate against incursions again U.S. and coalition troops by the Assad regime. The problem reared its head earlier this month when the of U.S. conducted ...

Special Counsel Robert Mueller has released the indictment of 13 Russian nationals and three Russian entities for allegedly interfering in the 2016 presidential election. The indictment charges all of the defendants with conspiracy to defraud the United States, three defendants with conspiracy to commit wire fraud and bank fraud, and ...

Bottom Line: While North Korea has put on a friendly face during the Olympic Games taking place along its southern border, the country’s hackers continue to engage in global cybercrime campaigns that seek to fill the coffers of the ruling regime in the background – with the latest hacking campaign ...

Cipher Brief Cyber Advisory Board members offer their views on threats to the U.S. power grid, as interviewed by Cipher Brief Publisher and CEO Suzanne Kelly. Former Deputy Secretary of State Robert Work, a member of The Cipher Brief’s Cyber Advisory Board, says potential attacks on the U..S power grid ...

Bottom Line: Maturing under Tehran’s tutelage, Hezbollah’s hackers are quickly learning the art of cyber warfare. The formidable militant organization is increasingly turning its attention to the digital realm to engage in espionage, psychological operations, disruption of critical services and criminal activity to fund its activities on the ground. Background: ...

Bottom Line: China is aggressively pursuing capabilities such as anti-satellite (ASAT) weapons that could diminish the U.S. military’s reconnaissance, navigation and communications in case of war in the South China Sea or on the Korean Peninsula. But while China’s ASAT capabilities threaten U.S. assets in space, it’s still unclear how ...

Bottom Line: Since 2016, the North Korean regime has shown its hand as a state sponsor of cybercrime by targeting international financial institutions, engaging in broad ransomware campaigns, and illegally accruing and laundering cryptocurrencies such as bitcoin. This pattern of behavior supports Pyongyang’s objective of self-financing the ruling Korean Worker’s ...

Cybersecurity researchers have discovered two major software vulnerabilities in the Intel microprocessors inside the vast majority of all computers. Dubbed “Meltdown” and “Spectre,” the vulnerabilities could allow hackers to siphon off the entire memory contents of computers, mobile phones and servers that run on cloud networks. Two Cipher Brief experts ...

Revealing the identities of intelligence officials – a practice known as doxing – could become more common among nation-states, directed in particular at the clandestine cyber-spies who operate overseas. Doing so undermines an unspoken norm of confidentiality among even adversarial intelligence services – where they allow each other to operate ...

Cyber-enabled information operations in the Gulf, such as the one that seemingly spurred the ongoing feud between Qatar and its neighbors, represent the gray line between open conflict and backchannel disagreements that have proven difficult to respond to, according to experts who spoke at an event Wednesday co-hosted by The ...

In one month, the authorities provided under Section 702 of the Foreign Intelligence and Surveillance Act (FISA) are due to expire unless reauthorized by Congress. Lawmakers are expected to renew FISA, but may put another expiration deadline on the bill, and also may add limitations on how the government is ...

For this year’s Thanksgiving Day feature, The Cipher Brief revisits its coverage of the Kremlin’s strategic use of blackmail to silence dissent at home and undermine opposition abroad. Known in Russian intelligence lexicon as kompromat, or compromising material, blackmail has long played the role of leveraging personal information for political ...

The UN’s Convention on Conventional Weapons (CCW) Group of Governmental Experts (GGE) met last week to discuss lethal autonomous weapons systems. But while most member states called for a legally-binding process to ensure that some form of meaningful human control be maintained over these prospective weapons systems, there is a ...

The Cipher Brief Cyber Advisory Board’s Bob Gourley commented on the Trump administration’s new process for disclosing software vulnerabilities it has detected – the first time a U.S. administration has revealed its internal rules, aka the Vulnerability Equities Process. This is a significant improvement and clarification of the existing process ...