DOCSLIB.ORG

The Dynamics of Cyber Conflict Between Rival Antagonists

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
The Dynamics of Cyber Conflict Between Rival Antagonists Cyber Hype versus Cyber Reality: Restraint and Norms in Cyber Conflict Brandon Valeriano and Ryan C. Maness Chapter 4 The Dynamics of Cyber Conflict between Rival Antagonists Introduction In 2011, the United States government declared a cyber attack similar to an act of war, punishable with conventional military means. Cyber engagements directed by one state against another are now considered part of the normal relations range of combat and conflict. Cyber is thought to be just another piece in the arsenal. This chapter examines these processes and determines which rival states have been using cyber tactics and where these actions are directed. We also examine the level and seriousness of cyber interactions to discern the level of impact of the incident or dispute. The goal here is to understand what we can learn by examining the cyber relations of rivals. In particular, we question the reality of this threat. Is it actual or inflated, myth or fact based? Only by examining the data produced by an examination of cyber operations in the recent past can we really answer this question. Otherwise, investigations are selective and targeted to make political points. Here we move beyond the bluff and bluster to examine the relationship between cyber conflict and international interactions, the interchange between hype and reality. The Future of Military Conflict? Cyber security is clearly an important and pressing question for national security actors and policy makers. Akin to the shift in strategic operations after 2001 due to terrorism, the rising fear of cyber combat and threats has brought about a reorientation of military affairs (Nye 2011: 19). The Department of Defense notes “small scale technologies can have an impact disproportionate to their size; potential adversaries do not have to build expensive weapons systems to pose a significant threat to U.S. national security.”1 This dialogue only suggests that combat is changing and our institutions must rise to meet the challenge. The discourse is that asymmetric combat is real and likely to be realized through cyber conflict. To counter this threat, actors across the globe are promoting a variety of new military organizations and institutions to deal with it in much the same way the focus on terrorism has changed the security discourse. While it is clear that terrorism is an important concern in terms of scale of operations, locations, and impact, it is less clear on whether cyber combat has and will exhibit the same trends. The danger lies in focusing too much on fear of the attack rather than concentrating efforts against actual and demonstrated threats. Preliminary qualitative analysis suggests that while there is evidence for a plethora of cyber disputes among post-Soviet states, they rarely take the form of serious disruptions to the state of national security (Valeriano and Maness 2012). In addition, there is little evidence for cyber conflict among actual rivals. In reality, it seems that cyber conflict mimics the dynamics of espionage or economic combat and is not a form of war at 68 all since zero deaths result from the actions (Rid 2011). Most operations are taken by private citizens to achieve economic gain or for political expression rather than military gain. Operations taken for military gain rarely pay off in the form of the “significant damage” the U.S. government warns and strategizes against. In this chapter we quantify the number of cyber disputes and incidents experienced by international states in the realm of foreign policy, particularly historical antagonists. We examine the scope, length, and damage inflicted by cyber disputes among rival states (Klein et. al 2006) from 2001 to 2011 because cyber operations have been added to the arsenal of rival interactions. Our data demonstrate that 20 rival dyads out of 126 engaged in cyber conflict during this time period. About one-half of these rivals experienced only one dispute during this time period. The average number of cyber incidents among rivals who participate in such behavior is three incidents. The U.S.-Chinese dyad experiences by far the most amount of cyber conflict with 23 observed cyber incidents within five overall cyber disputes. As will be demonstrated (in Chapter 7), even though there are 111 observed cyber incidents within 45 cyber disputes among 20 rivals, the intensity, duration, and level of attack remain low compared to the dire warnings one receives from the media. We hope that this research can return the debate on cyber conflict to a more nuanced examination of the threat. Others should be able to use our data to come to their own conclusions. While there is a real danger of cyber combat and cyber disputes, one must remain prudent in relation to the actual threat, not the inflated threat presented by the imagination. Protection of the state against external threats is of the utmost importance, but when does the promotion of the threat impede the policy process? Next we will review our theory of cyber restraint and regionalism as we then move to the empirical study of cyber conflict. Cyber Conflict: Rivalry, Restraint and Regionalism It would be useful to summarize our theory of rivalry interactions in cyberspace before we proceed with our analysis. In terms of conflict operations, the attractiveness of the target in relation to the capability used is a critical equation rarely examined. What good would a cyber conflict between rivals be if it does little physical and psychological damage to a rival state? Much is made about the secret nature of cyber operations, yet we know very little about the impact of basic operations on foreign policy dynamics. The value of the tactic seems minimal when one thinks of the potential devastation can arise from direct attack between states. On the extreme end, a large scale operation that might wipe out the United States’ Eastern Seaboard power grid would be catastrophic, but it would likely be punished with immense retaliation and thus not a realistic option short of total war. We are then left with minor incidents that are basically speculative attacks with few operations resulting in considerable damage. Restraint exists in the realm of cyber conflict and we have covered this issue in Chapter 3. To review in the context of this chapter, we go over the argument briefly. Rid (2011, 2013) argues that cyberwar in the extreme sense that death will result has not yet occurred, and is unlikely to occur. Likewise, Gartzke (2013) develops the logic for cyberwar being utilized by states as a low level form of conflict. Maness and Valeriano (2013) in an examination of Russian foreign policy, conclude that cyber conflict is literally the least, easiest option Russia could use to attack Estonia during their dust up in 2007. We also contend that cyber interactions will take a regional tone in that rivals typically are constricted to regional interactions. 69 Little is known about the actual impact of cyber tactics. Much speculation has been made with little connection to the realities on the ground. In short, the risk to the initiator in relation to the impact of cyber tactics does not make the use of cyber strategies a very useful option in the international system. This is especially true in the context of the rivalry where the competition is often known and the attribution issue in cyber conflict is minimized because the enemies are obvious. The benefits of examining the rivalry population rather than interactions between all states are clear and logical. Why focus on all possible dyads when we have exhaustive data on those states most likely to engage in crises, escalated conflicts, and wars (Diehl and Goertz 2000)? By examining only the rivalry population, we should be able to focus on the antagonists experiencing the most and obvious forms of cyber conflict. The concept of rivalry brings history and the past pattern of interactions back into the study of political science. To understand why wars or crises develop, one must look at the history of interactions at the military, diplomatic, social, and cultural level. Rivalry is defined as long-standing conflict with a persistent enemy (Diehl and Goertz 2000). It would therefore make sense that cyber conflict would be added to the arsenal of rival interactions and should be investigated under this context. An important consideration for rivalry is relative gains or losses. The issue positions of the states engaged in a rivalry are made in relation to the attitude of the other side (Vasquez 1993). The phrase to cut the nose to spite the face comes to mind in rivalry. Rivals are in some ways addicted to perpetual conflict because of their singular outlook targeting the enemy. This spiraling competitive relationship can be a dangerous situation in international affairs due to the buildup of hatreds and tensions over time. As most rivalry scholars note, there must be some degree of competitiveness, connection between issues, perception of the other as an enemy, and long-standing animosity for a pair of states to be called rival (Diehl and Goertz 2000, Thompson 2001). Cyber operations are a tactic used to gain an advantage either diplomatically or militarily against a target. During a rivalry, one would think all options should be on the table; war and cyber conflict then become viable foreign policy options. It is in this context that the attribution problem in cybersecurity is minimized because rivals are obvious targets for cyber activity. The normal relations range for a rivalry interactions tend to take the form of espionage, war games, brinksmanship, and economic warfare. It is in this context that rivals should display a certain degree of hesitance to use cyber tactics against their rivals due to the fear of retaliation.
Load more

Recommended publications
  • Botnets, Cybercrime, and Cyberterrorism: Vulnerabilities and Policy Issues for Congress
    Order Code RL32114 Botnets, Cybercrime, and Cyberterrorism: Vulnerabilities and Policy Issues for Congress Updated January 29, 2008 Clay Wilson Specialist in Technology and National Security Foreign Affairs, Defense, and Trade Division Botnets, Cybercrime, and Cyberterrorism: Vulnerabilities and Policy Issues for Congress Summary Cybercrime is becoming more organized and established as a transnational business. High technology online skills are now available for rent to a variety of customers, possibly including nation states, or individuals and groups that could secretly represent terrorist groups. The increased use of automated attack tools by cybercriminals has overwhelmed some current methodologies used for tracking Internet cyberattacks, and vulnerabilities of the U.S. critical infrastructure, which are acknowledged openly in publications, could possibly attract cyberattacks to extort money, or damage the U.S. economy to affect national security. In April and May 2007, NATO and the United States sent computer security experts to Estonia to help that nation recover from cyberattacks directed against government computer systems, and to analyze the methods used and determine the source of the attacks.1 Some security experts suspect that political protestors may have rented the services of cybercriminals, possibly a large network of infected PCs, called a “botnet,” to help disrupt the computer systems of the Estonian government. DOD officials have also indicated that similar cyberattacks from individuals and countries targeting economic,
    [Show full text]
  • Attribution and Response to Cybercrime/Terrorism/Warfare Susan W
    Journal of Criminal Law and Criminology Volume 97 Article 2 Issue 2 Winter Winter 2007 At Light Speed: Attribution and Response to Cybercrime/Terrorism/Warfare Susan W. Brenner Follow this and additional works at: https://scholarlycommons.law.northwestern.edu/jclc Part of the Criminal Law Commons, Criminology Commons, and the Criminology and Criminal Justice Commons Recommended Citation Susan W. Brenner, At Light Speed: Attribution and Response to Cybercrime/Terrorism/Warfare, 97 J. Crim. L. & Criminology 379 (2006-2007) This Symposium is brought to you for free and open access by Northwestern University School of Law Scholarly Commons. It has been accepted for inclusion in Journal of Criminal Law and Criminology by an authorized editor of Northwestern University School of Law Scholarly Commons. 0091-4169/07/9702-0379 THE JOURNALOF CRIMINAL LAW & CRIMINOLOGY Vol. 97. No. 2 Copyright 0 2007 by NorthwesternUniversity. Schoolof Low Printedin U.S.A. "AT LIGHT SPEED": ATTRIBUTION AND RESPONSE TO CYBERCRIME/TERRORISM/WARFARE SUSAN W. BRENNER* This Article explains why and how computer technology complicates the related processes of identifying internal (crime and terrorism) and external (war) threats to social order of respondingto those threats. First, it divides the process-attribution-intotwo categories: what-attribution (what kind of attack is this?) and who-attribution (who is responsiblefor this attack?). Then, it analyzes, in detail, how and why our adversaries' use of computer technology blurs the distinctions between what is now cybercrime, cyberterrorism, and cyberwarfare. The Article goes on to analyze how and why computer technology and the blurring of these distinctions erode our ability to mount an effective response to threats of either type.
    [Show full text]
  • Spytech Keystorke Copy
    Spytech Keystroke Spy Invisible Computer Keystroke Logging and Screen Capturing So�ware Keystroke Spy is a keylogger and computer monitoring solu�on that allows you to easily, and efficiently log what your computer users are doing. Keystroke Spy is a powerful tool that can log every keystroke users type and capture screenshots of their ac�vi�es. Keystroke Spy can run in total stealth, email you when specific keywords are typed, and can even be set to only log keystrokes typed in specific applica�ons. With Keystroke Spy you will be able to log websites users visit, emails they send, passwords they use, appli- ca�ons they interact with, typed documents, and see everything they did with visual screenshot playback! Uses: - Home Keystroke Spy can be used in many computer environments, and in countless ways. Here are a few possible uses for Keystroke Spy Computer Monitoring Parental Control Employee Monitoring Keystroke Logger / Keylogging Spouse Monitoring Internet Monitoring **Log Delivery via E-Mail Overview Keystroke Logging and Screenshot Applica�on Usage Capturing Social Ac�vity, Emails & Chats Remote Ac�vity Log Delivery via Email Document Ac�vity Secure Stealth Opera�on Specific Applica�on Logging Keystrokes and Passwords Keyword Phrase Alerts Screenshot Captures Easy-to-use Interface Website Usage & Searches Tracks User Activities by Logging All Keystrokes and Capturing Screen shots Remote Monitoring and Behaviour Alerts via Email Completely Secure, Stealth Monitoring Keystroke Logging and Screenshot Recording Keystroke Spy's keystroke logger allows you to record all keystrokes users type while using your computer. All logged keystrokes are viewable in their raw format, displaying the keys as they were typed, and can be formatted for easy viewing.
    [Show full text]
  • Cyber Warfare a “Nuclear Option”?
    CYBER WARFARE A “NUCLEAR OPTION”? ANDREW F. KREPINEVICH CYBER WARFARE: A “NUCLEAR OPTION”? BY ANDREW KREPINEVICH 2012 © 2012 Center for Strategic and Budgetary Assessments. All rights reserved. About the Center for Strategic and Budgetary Assessments The Center for Strategic and Budgetary Assessments (CSBA) is an independent, nonpartisan policy research institute established to promote innovative thinking and debate about national security strategy and investment options. CSBA’s goal is to enable policymakers to make informed decisions on matters of strategy, secu- rity policy and resource allocation. CSBA provides timely, impartial, and insight- ful analyses to senior decision makers in the executive and legislative branches, as well as to the media and the broader national security community. CSBA encour- ages thoughtful participation in the development of national security strategy and policy, and in the allocation of scarce human and capital resources. CSBA’s analysis and outreach focus on key questions related to existing and emerging threats to US national security. Meeting these challenges will require transforming the national security establishment, and we are devoted to helping achieve this end. About the Author Dr. Andrew F. Krepinevich, Jr. is the President of the Center for Strategic and Budgetary Assessments, which he joined following a 21-year career in the U.S. Army. He has served in the Department of Defense’s Office of Net Assessment, on the personal staff of three secretaries of defense, the National Defense Panel, the Defense Science Board Task Force on Joint Experimentation, and the Defense Policy Board. He is the author of 7 Deadly Scenarios: A Military Futurist Explores War in the 21st Century and The Army and Vietnam.
    [Show full text]
  • Nadzor in Zasebnost V Informacijski Družbi
    Matej Kovačič NADZOR IN ZASEBNOST V INFORMACIJSKI DRUŽBI Filozofski, sociološki, pravni in tehnični vidiki nadzora in zasebnosti na internetu Znanstvena knjižnica Fakulteta za družbene vede Ljubljana, 2006 Matej Kovačič NADZOR IN ZASEBNOST V INFORMACIJSKI DRUŽBI Filozofski, sociološki, pravni in tehnični vidiki nadzora in zasebnosti na internetu Izdajatelj: Univerza v Ljubljani, Fakulteta za družbene vede Kardeljeva ploščad 5, Ljubljana Zbirka: Znanstvena knjižnica 55 Urednik: dr. Niko Toš Uredniški odbor: dr. Vlado Benko, dr. Zdenko Roter, dr. Tomo Korošec, dr. Vlado Miheljak, dr. Niko Toš Recenzenta: dr. Slavko Splichal dr. Alenka Šelih Likovna oprema: Polona Mesec-Kurdija Lektura: Dora Mali CIP - Kataložni zapis o publikaciji Narodna in univerzitetna knjižnica, Ljubljana 342.721:004.738.5 004.738.5 KOVAČIČ, Matej, 1974- Nadzor in zasebnost v informacijski družbi [Elektronski vir] : filozofski, sociološki, pravni in tehnični vidiki nadzora in zasebnosti na internetu / Matej Kovačič. - Ljubljana : Fakulteta za družbene vede, 2006. - (Znanstvena knjižnica / Fakulteta za družbene vede ; 55) Način dostopa (URL): http://dk.fdv.uni-lj.si/eknjige/EK_Kovacic_2006_Nadzor.pdf . - Opis temelji na verziji z dne 19.12.2006 ISBN-10 961-235-261-5 ISBN-13 978-961-235-261-5 230725632 Knjigo je sofinancirala Agencija za raziskovalno dejavnost Republike Slovenije. Knjiga je izdana pod Creative Commons licenco: “Priznanje avtorstva-Nekomercialno-Deljenje pod enakimi pogoji 2.5 Slovenija”. Celotno pravno besedilo licence je dostopno na spletni strani: <http://creativecommons.org/licenses/by-nc-
    [Show full text]
  • Red Teaming the Red Team: Utilizing Cyber Espionage to Combat Terrorism
    Journal of Strategic Security Volume 6 Number 5 Volume 6, No. 3, Fall 2013 Supplement: Ninth Annual IAFIE Article 3 Conference: Expanding the Frontiers of Intelligence Education Red Teaming the Red Team: Utilizing Cyber Espionage to Combat Terrorism Gary Adkins The University of Texas at El Paso Follow this and additional works at: https://scholarcommons.usf.edu/jss pp. 1-9 Recommended Citation Adkins, Gary. "Red Teaming the Red Team: Utilizing Cyber Espionage to Combat Terrorism." Journal of Strategic Security 6, no. 3 Suppl. (2013): 1-9. This Papers is brought to you for free and open access by the Open Access Journals at Scholar Commons. It has been accepted for inclusion in Journal of Strategic Security by an authorized editor of Scholar Commons. For more information, please contact [email protected]. Red Teaming the Red Team: Utilizing Cyber Espionage to Combat Terrorism This papers is available in Journal of Strategic Security: https://scholarcommons.usf.edu/jss/vol6/iss5/ 3 Adkins: Red Teaming the Red Team: Utilizing Cyber Espionage to Combat Terrorism Red Teaming the Red Team: Utilizing Cyber Espionage to Combat Terrorism Gary Adkins Introduction The world has effectively exited the Industrial Age and is firmly planted in the Information Age. Global communication at the speed of light has become a great asset to both businesses and private citizens. However, there is a dark side to the age we live in as it allows terrorist groups to communicate, plan, fund, recruit, and spread their message to the world. Given the relative anonymity the Internet provides, many law enforcement and security agencies investigations are hindered in not only locating would be terrorists but also in disrupting their operations.
    [Show full text]
  • Hardware Keylogger User Guide
    KeyGrabber Forensic Keylogger User’s Guide KeyGrabber Forensic Keylogger Check http://www.keelog.com/ for the latest version of this document. 1 Copyright © www.keelog.com KeyGrabber Forensic Keylogger Table of contents Table of contents ...................................................................................................................... 2 Getting started .......................................................................................................................... 2 Introduction .............................................................................................................................. 3 About the product ................................................................................................................. 3 Features ............................................................................................................................... 3 Requirements ....................................................................................................................... 3 Applications .......................................................................................................................... 4 Quick start ................................................................................................................................ 5 Recording keystrokes ............................................................................................................... 6 Viewing recorded data .............................................................................................................
    [Show full text]
  • Share — Copy and Redistribute the Material in Any Medium Or Format
    Attribution-NonCommercial-NoDerivs 2.0 KOREA You are free to : Share — copy and redistribute the material in any medium or format Under the follwing terms : Attribution — You must give appropriate credit, provide a link to the license, and indicate if changes were made. You may do so in any reasonable manner, but not in any way that suggests the licensor endorses you or your use. NonCommercial — You may not use the material for commercial purposes. NoDerivatives — If you remix, transform, or build upon the material, you may not distribute the modified material. You do not have to comply with the license for elements of the material in the public domain or where your use is permitted by an applicable exception or limitation. This is a human-readable summary of (and not a substitute for) the license. Disclaimer 국제학석사학위논문 Wired For War: An Analysis of United States Cyber Security Against a Rising China 하이테크 전쟁: 중국의 부상에 대응하는 미국의 사이버 안보에 관한 연구 2017년 8월 서울대학교 국제대학원 국제학과 국제협력 전공 에멧 존슨 Wired For War: An Analysis of United States Cybersecurity Against a Rising China 하이테크 전쟁: 중국의 부상에 대응하는 미국의 사이버 안보에 관한 연구 Thesis By Emmett Johnson Graduate Program in International Cooperation In Fulfillment of the Requirements For The Degree of Master in International Studies August 2017 Graduate School of International Studies Seoul National University Seoul, Republic of Korea Abstract Wired For War: An Analysis of United States Cyber Security Against a Rising China The United States hegemony is challenged by China. With China’s economic and military rise, it is inevitable a power transition will take place.
    [Show full text]
  • A PRACTICAL METHOD of IDENTIFYING CYBERATTACKS February 2018 INDEX
    In Collaboration With A PRACTICAL METHOD OF IDENTIFYING CYBERATTACKS February 2018 INDEX TOPICS EXECUTIVE SUMMARY 4 OVERVIEW 5 THE RESPONSES TO A GROWING THREAT 7 DIFFERENT TYPES OF PERPETRATORS 10 THE SCOURGE OF CYBERCRIME 11 THE EVOLUTION OF CYBERWARFARE 12 CYBERACTIVISM: ACTIVE AS EVER 13 THE ATTRIBUTION PROBLEM 14 TRACKING THE ORIGINS OF CYBERATTACKS 17 CONCLUSION 20 APPENDIX: TIMELINE OF CYBERSECURITY 21 INCIDENTS 2 A Practical Method of Identifying Cyberattacks EXECUTIVE OVERVIEW SUMMARY The frequency and scope of cyberattacks Cyberattacks carried out by a range of entities are continue to grow, and yet despite the seriousness a growing threat to the security of governments of the problem, it remains extremely difficult to and their citizens. There are three main sources differentiate between the various sources of an of attacks; activists, criminals and governments, attack. This paper aims to shed light on the main and - based on the evidence - it is sometimes types of cyberattacks and provides examples hard to differentiate them. Indeed, they may of each. In particular, a high level framework sometimes work together when their interests for investigation is presented, aimed at helping are aligned. The increasing frequency and severity analysts in gaining a better understanding of the of the attacks makes it more important than ever origins of threats, the motive of the attacker, the to understand the source. Knowing who planned technical origin of the attack, the information an attack might make it easier to capture the contained in the coding of the malware and culprits or frame an appropriate response. the attacker’s modus operandi.
    [Show full text]
  • KEYLOGGERS Comparison of Detection Techniques & Its
    INTERNATIONAL JOURNAL FOR RESEARCH IN EMERGING SCIENCE AND TECHNOLOGY, VOLUME-4, ISSUE-11, NOV-2017 E-ISSN: 2349-7610 Cyber Security – KEYLOGGERS Comparison of Detection Techniques & Its Legitimate Use Aaradhya Gorecha Information Technology Department SVKM NMIMS MPSTME, Shirpur, Maharashtra, India. ABSTRACT This paper presents an introduction of key loggers with explaining the different types and comparison of different detection techniques overview. Also how one of these technique which could be used for keeping to keep a watch on the children web activites to guarentee their protection from online predators and dangers. And also organizations can also use this technique to monitor their employee’s activity on internet. Index Terms:- Keyloggers, hooking, KLIMAX, OS. 1. INTRODUCTION Mainly keyloggers are divided into two types Hardware Keyloggers are software or hardware tools which capture the keylogger and Software keylogger. Hardware key loggers are computer user’s keystrokes and then send this information the electronic devices used for keystroke logging or capturing back to attackers. Keylogger has some bad reputation in the the information between the keyboard device and input/output world of technology because it is often linked with illegal use port. These type of devices have a inbuilt storage where they of the someone personal data. But it can also be used for some capture the keystrokes so a person who had installed it on the of the legal functions. An example can be taken as of the system can get the information of all the activities done on that company security purpose, which states that web activities of system. workers can be checked and keylogger can be used to monitor Software keylogger programs are made to work on the target any employee, which is suspected of being a insider threat.
    [Show full text]
  • The Strange World of Keyloggers - an Overview, Part I
    https://doi.org/10.2352/ISSN.2470-1173.2017.6.MOBMU-313 © 2017, Society for Imaging Science and Technology The strange world of keyloggers - an overview, Part I Reiner Creutzburg Technische Hochschule Brandenburg, Department of Informatics and Media, IT- and Media Forensics Lab, P.O.Box 2132, D-14737 Brandenburg, Germany Email: [email protected] Abstract events, as if it was a normal piece of the application instead In this article we give a bibliographic overview of keyloggers of malware. The keylogger receives an event each time the and review the relavant hard- and software and mobile keyloggers user presses or releases a key. The keylogger simply records that are available and in use. The functionalities, availability, it. + Windows APIs such as GetAsyncKeyState(), GetFore- detection possibilities of keyloggers are described and reviewed. groundWindow(), etc. are used to poll the state of the key- In a future Part II keyloggers for mobile devices and the eth- board or to subscribe to keyboard events [3]. A more recent ical and legal aspects are reviewed. example simply polls the BIOS for pre-boot authentication PINs that have not been cleared from memory [4]. Keylogger – Introduction • Form grabbing based: Form grabbing-based keyloggers Keystroke logging, often referred to as keylogging [1] or log web form submissions by recording the web browsing keyboard capturing, is the action of recording (logging) the keys on submit events. This happens when the user completes a struck on a keyboard, typically covertly, so that the person using form and submits it, usually by clicking a button or hitting the keyboard is unaware that their actions are being monitored.
    [Show full text]
  • WORLD WAR C : Understanding Nation-State Motives Behind Today’S Advanced Cyber Attacks
    REPORT WORLD WAR C : Understanding Nation-State Motives Behind Today’s Advanced Cyber Attacks Authors: Kenneth Geers, Darien Kindlund, Ned Moran, Rob Rachwald SECURITY REIMAGINED World War C: Understanding Nation-State Motives Behind Today’s Advanced Cyber Attacks CONTENTS Executive Summary ............................................................................................................................................................................................................................................................................................................... 3 Introduction ............................................................................................................................................................................................................................................................................................................................................... 4 A Word of Warning ................................................................................................................................................................................................................................................................................................................. 5 The FireEye Perspective ...........................................................................................................................................................................................................................................................................................
    [Show full text]