International Cyber Terrorism

More documents

Recommendations

Info

system, e.g. to insert child pornography onto the computer of a politician or to manipulate votes on an electronic vote counting machine. • Combination Rules: Some agents are very complex and are able to combine the above features in order to provide very targeted intelligence collection capabilities. For example, the use of GPS bounding boxes and microphone activity can be used to turn a smart phone into a smart bug that intercepts conversations only within the office of a target. • Compromised cellphones. Since, modern cellphones are increasingly similar to general purpose computer, these cellphones are vulnerable to the same cybercollect attacks as computer systems, and are vulnerable to leak extremely sensitive conversational and location information to an attackers. Leaking of cellphone GPS location and conversational information to an attacker has been reported in a number of recent cyber stalking cases where the attacker was able to use the victim's GPS location to call nearby businesses and police authorities to make false allegations against the victim depending on his location, this can range from telling the restaurant staff information to tease the victim, or making false witness against the victim. For instance if the victim were parked in large parking lot the attackers may call and state that they saw drug or violence activity going on with a description of the victim and directions to their GPS location. Infiltration There are several common ways to infect or access the target: • An Injection Proxy is a system that is placed upstream from the target individual or company, usually at the Internet service provider, that injects malware into the targets system. For example, an innocent download made by the user can be injected with the malware executable on the fly so that the target system then is accessible to the government agents. • Spear Phishing: A carefully crafted e-mail is sent to the target in order to entice them to install the malware via a Trojan document or a drive by attack hosted on a web server compromised or controlled by the malware owner. • Surreptitious Entry may be used to infect a system. In other words, the spies carefully break into the target's residence or office and install the malware on the target's system. • An Upstream monitor or sniffer is a device that can intercept and view the data transmitted by a target system. Usually this device is placed at the Internet service provider. The Carnivore system developed by the U.S. FBI is a famous example of this type of system. Based on the same logic as a telephone intercept, this type of system is of limited use today due to the widespread use of encryption during data transmission. Page 70 of 174
• A wireless infiltration system can be used in proximity of the target when the target is using wireless technology. This is usually a laptop based system that impersonates a WiFi or 3G base station to capture the target systems and relay requests upstream to the Internet. Once the target systems are on the network, the system then functions as an Injection Proxy or as an Upstream Monitor in order to infiltrate or monitor the target system. • A USB Key preloaded with the malware infector may be given to or dropped at the target site. • Stuxnet • Flame • Duqu • Bundestrojaner • Rocra • Operation High Roller <strong>Cyber</strong>-collection agents are usually installed by payload delivery software constructed using zero-day attacks and delivered via infected USB drives, e- mail attachments or malicious web sites. State sponsored cyber-collections efforts have used official operating system certificates in place of relying on security vulnerabilities. In the Flame operation, Microsoft states that the Microsoft certificate used to impersonate a Windows Update was forged; however, some experts believe that it may have been acquired through HUMINT efforts. Examples of Operations Page 71 of 174
Page 2 and 3:
Page 2 of 174
Page 4 and 5:
Page 4 of 174
Page 6 and 7:
Page 6 of 174
Page 8 and 9:
Page 8 of 174
Page 10 and 11:
4. Throughout the process, we encou
Page 12 and 13:
Page 12 of 174
Page 14 and 15:
Page 14 of 174
Page 16 and 17:
Zechariah 10:5 5 Together they will
Page 18 and 19:
Page 18 of 174
Page 20 and 21: This work is not meant to be a piec
Page 22 and 23: Cyberterrorism can be also defined
Page 24 and 25: merging at an accelerated rate, mak
Page 26 and 27: • Complex-Coordinated: The capabi
Page 28 and 29: did act as a catalyst in sparking t
Page 30 and 31: politically motivated. Cyberterrori
Page 32 and 33: The chaos resulting from the attack
Page 34 and 35: signed off with the threat: "you ha
Page 36 and 37: previously attacked media organizat
Page 38 and 39: the NATO bombings of the Chinese em
Page 40 and 41: • In Mr Robot the main plot line
Page 42 and 43: Some governments have made it an in
Page 44 and 45: cutting undersea communication cabl
Page 46 and 47: One cyber warfare scenario, Cyber S
Page 48 and 49: passing information about the rocke
Page 50 and 51: Pakistan Computer Bureau, Council o
Page 52 and 53: With ongoing tensions on the Korean
Page 54 and 55: the entire arsenal of the biggest a
Page 56 and 57: Saudi Arabia On August 15, 2012 at
Page 58 and 59: In 2013 Cyberwarfare was, for the f
Page 60 and 61: disregard for national borders will
Page 62 and 63: most smartphones (including Apple's
Page 64 and 65: the area of cyberspace, the second
Page 66 and 67: information sovereignty and indepen
Page 68 and 69: include Endgame, Inc. and Netragard
Page 72 and 73: Page 72 of 174
Page 74 and 75: Active cyber operations refers to a
Page 76 and 77: Psychiatrist Viktor Frankl was like
Page 78 and 79: proactive cyber defense 2004-2008.
Page 80 and 81: imminent. Proactive measures, accor
Page 82 and 83: A June 2013 Congressional report fo
Page 84 and 85: and spyware bill and was passed on
Page 86 and 87: sector. The second highlight of the
Page 88 and 89: egulation in 2013. ENISA works acti
Page 90 and 91: In addition, citizens can also rest
Page 92 and 93: Service Components U.S. Cyber Comma
Page 94 and 95: technical assistance for network an
Page 96 and 97: domain; employ more active defenses
Page 98 and 99: Page 98 of 174
Page 100 and 101: • "Stealth" and other advanced sc
Page 102 and 103: • Titan Rain, targeting defense c
Page 104 and 105: • Target - in 2013, approximately
Page 106 and 107: Notes _____________________________
Page 108 and 109: Page 108 of 174
Page 110 and 111: Page 110 of 174
Page 112 and 113: Page 112 of 174
Page 114 and 115: Page 114 of 174
Page 116 and 117: Page 116 of 174
Page 118 and 119: Page 118 of 174
Page 120 and 121:
Page 120 of 174
Page 122 and 123:
Page 122 of 174
Page 124 and 125:
Page 124 of 174
Page 126 and 127:
Page 126 of 174
Page 128 and 129:
Page 128 of 174
Page 130 and 131:
Page 130 of 174
Page 132 and 133:
Page 132 of 174
Page 134 and 135:
Page 134 of 174
Page 136 and 137:
Page 136 of 174
Page 138 and 139:
Page 138 of 174
Page 140 and 141:
Page 140 of 174
Page 142 and 143:
Page 142 of 174
Page 144 and 145:
Page 144 of 174
Page 146 and 147:
Page 146 of 174
Page 148 and 149:
Page 148 of 174
Page 150 and 151:
Advocacy Foundation Publishers The
Page 152 and 153:
XVI for Drug-Free Communities Landm
Page 154 and 155:
Vol. VIII 2022 ComeUnity ReEngineer
Page 156 and 157:
Vol. XV 2029 Inner-Cities Revitaliz
Page 158 and 159:
The e-Advocate Monthly Review 2018
Page 160 and 161:
2021 Biblically Responsible Investi
Page 162 and 163:
The e-Advocate Quarterly Special Ed
Page 164 and 165:
Legal Missions International Page 1
Page 166 and 167:
Vol. V 2019 XVII Russia Q-1 2019 XV
Page 168 and 169:
The e-Advocate Newsletter Genesis o
Page 170 and 171:
Extras The Nonprofit Advisors Group
Page 172 and 173:
About The Author John C (Jack) John
Page 174:
Page 174 of 174
show all

International Cyber Terrorism

Create successful ePaper yourself

Delete template?

Save as template?