Saturday, May 26, 2012

Features

Russia's Silicon Valley Dreams May Threaten Cybersecurity

Russian President Dmitry Medvedev and California Governor Arnold Schwarzenegger (2nd left and left) talk with Skolkovo officials outside Moscow on October 11.

TEXT SIZE - +

By Gregory Feifer

November 14, 2010

There's little obviously unusual about the drab Moscow suburb Arnold Schwarzenegger visited last month. That's because Skolkovo has only just been selected as the planned site for a new Russian Silicon Valley, the crown jewel of a vaunted project President Dmitry Medvedev promises will modernize his oil-dependent country.

The California governor showed up with a small army of bigshots from Google, Microsoft, and other technology companies the Russians hope will provide the crucial technology they need to realize their ambitious plan.

The "governator" played his scripted role to great satisfaction. Revered by Russians who know him from grainy pirated copies of his movies in the 1990s, he praised the diminutive Medvedev as an "action president" and "great visionary." Skolkovo was a "gold mine" for foreign investors, he said. "We don't see Russia as an enemy."

Perhaps. But others believe the Kremlin's motives for attracting cooperation from hundreds of foreign technology companies aren't entirely benign. Among those who would benefit from the "huge honey pot" for the Russian technology industry, says Seattle-based cybersecurity expert Jeffrey Carr, would be the security services who monitor every byte of Internet traffic. "If you're wiring a facility," he says, "the best time to do it is while it's being built." Skolkovo, he says, would provide an information-gathering "coup."

Will Google and other companies help Moscow launch its own Silicon Valley?

That means Silicon Valley companies could be indirectly helping a state many believe is leading the development of the newest global security threat: cyberwarfare. While "cyberwar" is a controversial term -- partly because the lines between criminal, activist, and other kinds of cyberattacks are blurred, but also because it's often impossible to prove who's behind them -- two recent waves of cyberattacks against Russian neighbors have helped drive a major shift in the way Washington and its allies think about international security.

Dawn Of Cyberwar

This year has seen a sea change in planning for what many believe to be the new era of cyberwarfare, which U.S. Deputy Defense Secretary William Lynn recently described in "Foreign Affairs" magazine as a "catastrophic threat."

Last month the Obama administration centralized the military's vast cybersecurity capabilities under the direction of the Department of Homeland Security, months after the creation of the military's new Cyber-Command, which unites units in various services. Later this year, the Pentagon is expected to issue a new "National Defense Strategy for Cyberoperations." Cybersecurity will also rank among top priorities in a new NATO security concept, due later this month for the first time in a decade.

But despite the undeniable emergence of cyberspace as a new battleground, few experts agree on exactly what "cyberwarfare" means. Coined almost 20 years ago, the term first drew serious public attention in 2007, when Internet sites in the Baltic state of Estonia came under attack. It coincided with a bitter war of words between the former Soviet republic and Moscow, which was furious over the relocation of a statue of a Red Army soldier from the center of the capital, Tallinn.

Estonia is now a member of the European Union and NATO, and many there saw the "bronze soldier" as a symbol of Soviet occupation. The Kremlin saw it differently, condemning the statue's removal as an affront to the memory of what it calls the Soviet liberation of Estonia from Nazi control. The pro-Kremlin youth group Nashi took the lead organizing street protests against "fascist" Estonia and Moscow cut off oil shipments. It was then that a number of Estonian Internet sites maintained by parliament, various ministries, and banks, among other organizations, were temporarily overwhelmed by a flood of requests.

It emerged that many of the so-called distributed denial of service attacks (DDOS) were carried out by "botnets," groups of infected computers carrying out instructions from a handful of hackers. They provided the first real signal cyberattacks could pose a national security threat, says Estonian Defense Minister Jaak Aaviksoo. "They were meant to destabilize society and question the government's capabilities to maintain law and order in cyberspace," he says.

Although he says there's "little more" than circumstantial evidence the Russian government was behind the attacks, Estonian officials nevertheless blamed them on the Kremlin. "The nature of those attacks, the high level of coordination and focus," Aaviksoo says, "means there were considerable material and human resources behind them."

Moscow denies the charges. Soon after the attacks, a prominent member of parliament boasted that an associate of his acted alone in orchestrating the attacks. "They're lying," said Sergei Markov, a former scholar who's now a top Kremlin spin doctor, of the Estonian authorities. "They know very well that it was done by a few young guys sitting in [the pro-Moscow Moldovan breakaway region] Transdniester and that they just wanted to show the informal, angry reaction of an offended civil society."

'A Military Operation'

Although the Estonia attacks were the most serious of their kind, they were far smaller and disorganized compared to another wave the following year in another former Soviet republic that rubbed Moscow the wrong way. During Russia's invasion of Georgia in August 2008, DDOS attacks against the presidential administration, a number of ministries, and private companies disabled 20 sites for more than a week and disrupted communications.

A distributed-denial-of-service attack can be carried out with innocent users' computers.

Irakli Porchkhidze, deputy national security adviser to President Mikheil Saakashvili, says the assault actually began the month before the war and eventually involved tens of thousands of botnets mostly controlled by a St. Petersburg criminal group. Some of the attacks disseminated images of Saakashvili in Nazi uniform and other propaganda. The size, timing, and complexity implicated the Kremlin, which Porchkhidze says used the attacks as a military weapon. "It was a new page in the history of cyberwarfare," he says.

Cybersecurity expert Carr, who spent six months investigating the attacks against Estonian and Georgian sites, agrees the evidence casts doubt on the Russian claim the Georgia attacks represented a spontaneous action by impassioned hackers. It was "literally a military operation" by the Russian government. "They were distributing lists of targets to hackers," he says

Research by the nonprofit U.S. Cyber Consequences Unit found that Russian hackers stole the identities of Americans and hijacked U.S. software tools in the attacks. The unit's John Bumgarner, a former CIA cybersecurity expert, says the targets might have been attacked by other means in the past. "They would have been potentially jammed with electronic warfare or bombed with artillery or air strikes," he says. "So the cyberattacks actually spared facilities from being destroyed."

Those who disagree cite the lack of direct evidence against the Kremlin. Georgian cybersecurity expert Nodar Davituri believes the attacks against Georgian sites were probably carried out by an independent group of "kids."

"Georgian websites weren't so hard to hack because most were built by nonprofessionals," he says. "I don't think the Russian government made a big effort to take them down."

But Carr dismisses the lack of direct evidence. "In a criminal trial, you're very rarely able to make a decision on guilt based on anything but indirect evidence," he says. "Even DNA is indirect. So I think it's a misconception that with cyberattacks we now need to jump to some gold standard that doesn't exist in any other domain."

Cybercrime Platform

Nevertheless, Carr dislikes the term "cyberwar."

"Nobody knows what it means," he says. "You can point to an example of a cyberattack in time of war or you can point to other cyberattacks of various types, but you can't dump the label 'war' on it without defining what you really mean."

Part of the problem is the blurred line between different kinds of cyberattacks. James Lewis, a cybersecurity expert at the Center for Strategic and International Studies, says the biggest global cyber-threat isn't warfare but financial crime, which "almost always leads back to Russia."

One of the latest examples was an Eastern European cybercriminal network made public last month, when the FBI charged more than 60 people in various countries with stealing tens of millions of dollars from American banks. The Zeus Trojan virus used to steal bank-account passwords is believed to have been developed by Russian criminals.

Carr says such software worms "provide the platform" for the state to conduct cyberespionage or attacks. Since the programs can operate from servers outside Russia, they also provide the Kremlin with the crucial benefit of plausible deniability.

Lewis believes the Kremlin is failing to prosecute the majority of known hackers because it wants to maintain a pool of them to draw on when needed.

"You have a state that's relatively active in controlling communications and dissident groups," Lewis says. "And yet they say they're unable to control these patriotic hackers. There's a disconnect there. You're a police state, but you're saying these guys are just outside your control."

Hostile Action

Still, cybersecurity experts say the U.S. record of cracking down against cybercrime is worse. Last month, Moscow police launched an investigation into a legendary spammer whose subsequent disappearance coincided with a drop in global spam levels of 20 percent.

Legislator Markov agrees the authorities need to do more to tackle cybercrime. Along with the scientists who turned to hacking after their livelihoods all but vanished following the Soviet collapse, he blames the weakness of postcommunist institutions. "If you want to increase cybersecurity in the world," he says, "help [Russian Prime Minister Vladimir] Putin and [President] Medvedev."

That's precisely what Silicon Valley companies are doing. Earlier this month, Microsoft said it would take part in developing Skolkovo in projects possibly worth tens of millions of dollars, after Cisco Systems agreed to invest $1 billion last summer.

But Carr believes statements from officials such as Markov, who he says plays a key role in developing Russia's "information warfare" policy, aren't entirely believable. China may lead the world in cyberespionage that raids Western intellectual property, he says, but Russia leads the way in "being willing to take hostile action." American firms helping build Skolkovo may therefore also inadvertently be harming global cybersecurity.

This forum has been closed.

Comment Sorting

Comments

by: Alex W from: Russia

November 15, 2010 08:11

you would have to be an idiot to put your data, or anything containing or accessing your data anywhere in russia where anything can be done for money. get out of a speeding ticket - $5, get a drivers license with no tests - $50, avoid mandatory draft - $200, get a copy of all internet traffic for a datacenter - $?? that's why all the hackers live here

by: alexander galaktionov from: russia

November 15, 2010 09:04

Sure, there's got to be no complacency dealing with the cyber threat, before it's too late. Remember that the Kremlinists act according to that famous US congressman words of decades ago: "We won't repeat the mistake of the British Empire and try to rule the world. Too wise to try to rule the world, we will simply own it". That's exactly what they've been doing with the obsene wealth from oil and gas. Now, saying "we're all in one boat" what they do is to constantly rock the boat as they cannot act in normal conditions and within civilized norms.

by: Eric from: Seattle

November 15, 2010 13:57

To the author: you're a complete Russophobe.

I don't know if you're really that idiotic or you have some hidden agenda or you're being paid to trash anything and everything about Russia. There are so many hypotheses and twisting of the truth in this article, it's too talk about it all.

One thing I want to say is that if you're not a complete invalid, I would double check your facts about "Russia's invasion of Georgia in 2008" and rephrase it as "Russia's response to Georgia's invasion of SO in 2008". I'm sure that as a journalist, you would have to know your facts.

In Response

by: Anonymous from: USA

November 15, 2010 22:20

In defense of the author, the article raises legitimate concerns about the trustworthyness of Russia as a country. Every intelligence expert I have ever heard is saying there in no U.S. equivilent to the 10 Russian spies caught last summer. The fact that Russia would go through the trouble sending people to my country to live under false identities and gather intelligence on U.S. policy, U.S. industry, and U.S. technology says it all. How can anyone seriously trust these people?? If that is being Russophobic, then I guess I am included! Also, your warped view of the Russo-Georgian war needs some fact analysis. Last I heard, most of the world still considers South Ossetia to be sovereign Georgian territory. So, in essence, Georgia invaded itself, and was repelled!

In Response

by: Olav from: Norway

November 16, 2010 08:09

OMG, US doesn't have a moral right to blame Russia after the things done in Kosovo. It's looks like one beast blames another.

In Response

by: Anonymous from: USA

November 16, 2010 19:49

OMG, what things could you possibly be referring to Olav? The partitioning of Serbia? I seem to recall most of Europe being supportive of such an event. If I am correct the whole thing was based on an idea from some guy in Finland, the U.S. just hopped on board the bureaucratic Euro-train. FYI, I actually was against the the creation of Kosovo because I believed and still do, that it sets a bad precedent for the rest of the world. A partition of Georgia by Russia in response to Kosovo doesn't make everything right again and as said before, almost nobody recognizes Abkhazia and South Ossetia--not even Ukraine, Belarus, Kazahkstan, China, etc.

In Response

by: Alexandr

November 16, 2010 20:43

You call them spies? They never had access to secret data. Real spies both from USA in Russia and from Russia in USA will not be so easily uncovered. Recently a Romanian spy was arrested in Russia. As Romania is USA's satellite state, this means he was spying for USA.

In Response

by: Anonymous from: USA

November 17, 2010 01:17

Alexander,
Yes! I do call them spies. It is what they were sent to do, not what they failed to do. If they were not real spies, then why were they traded? Why were they awarded "feel-good" medals by Uncle Vlad Putin? Only in Russia do spies get medals for failure. Also, I am unaware that Romanians are spying on Russia. If the Romanian you are referring to was not a diplomat then he should be jailed, plain and simple. Otherwise he should be deported. The 10 Russian agents were not diplomats, they were "illegals". Even Russian analysts admit that there are no US illegals in Russia. Traitors? Now that is a different story....

In Response

by: Maxwell from: USA

November 19, 2010 05:24

Come now Anonymous, are you really so naive as to not think that (Americans) are not undertaking similar operations in Russia as we speak? Study a little Cold War history and observe how it reflects a quid-pro-quo sort of mentality between the U.S. & Soviet Union. It is absurd to attempt to take the high ground by implying that our government is more virtuous than that of any other major power. Does the corrupt, criminally driven U.S. government deserve to be trusted any more than the bastards in the Kremlin? What was it Putin said in regards to Bush after the Iraq invasion? Something about brother wolf knowing what he wants to gobble up...

In Response

by: Anonymous from: USA

November 19, 2010 17:05

Maxwell-
It is not naivety, it is fact. Russia is one of the only countries left in the world that still sends "illegals" to live in other countries. The fact that they gained no intelligence proves how backward and futile such an operation was. I know plenty of Cold War history, but 2010 is not the Cold War. We (Americans and Russians) are supposed to past that. I don't deny that the US spies on other countries, just that it uses different methods (ie traitors). I do consider our government to be more virtuous, at least we TRY to follow our Constitution. Maxwell, have you ever READ the U.S. Constitution?? Also, ALL governments are corrupt, there are just different levels of it. I hope you are not going to judge 230+ years of US history on the Bush era or the Iraq War?

In Response

by: Andrew from: Auckland

November 16, 2010 05:03

Actually Eric, if you had any understanding of the region, or of military operations, or had read the IFFC report, you would know that it was an invasion by Russia of Georgia. South Ossetia was internationally recognised as Georgian territory, even by Russia.

Oh and by the way, how would you expect your own government to act when "peacekeepers" supply terrorist groups with weapons and assist them in shelling villages under government control, set off roadside bombs that kill or injure civilians and police, etc?

Of course given the force ratios the Georgians were foolish to take the bait, but in the end it was Russia that wanted the war, and did everything to make it happen.

Also note that the IFFC found EVERY SINGLE ONE of Russia's actions illegal, and refuted all of Russia's attempts to justify it's actions.

Also I find Russophiles such as yourself to be somewhat hypocritical, after all, you tend to support Russia's genocidal actions in the north Caucasus without question, while bashing smaller countries for trying to maintain the integrity of their states.

In Response

by: Boris from: New York

November 16, 2010 17:55

Actually, if you do study newswires reports and and timeline of 08/08/08 events in Georgia you will clearly see that it was Georgina attempt to retake control by force over rebellious region which never recognized Georgia as its sovereign - something, Georgian president explicitly promised never commit while at the same time regrouping Georgian forces around Tskhinvali to start the attack in a few hours. If you honest person, you would also have to admit, by timeline, that Russia did all it could to prevent its "invasion" and stop Georgian attack by emergency UN session - and it was US and UK which refused to force Georgia to sign non-agression pact, something Russia forced Geoggia to do a week later.
You would also have to admit that brutality of this attempt far exceeded any reasonable and unreasonable means - using multiple-launch missiles, destroying the city, killing civilians and peacekeepings indiscriminately. US and allies bombed Serbia to stone age for mere refusal of Milosevic to cede Serbian sovereignity and allow NATO forces to be stationed in Serbia proper - read Rambouillet agreement, and infamous Appendix B, which was formal cause to start bombing campaign in Kosovo.
And finally, you would also have to admit that Western media coverage did all it could to spin the facts and accuse Russia in wehat was Georgina invasion - by, for exmaple, supplying the pictures of Georgian soldiers killing Ossetian civilians as "Russinas killing Georgians". Well the same lying and media hoaxes as we saw during war with Serbia (e.g. google "picture that fooled the world", you'd fined lots of interesting facts about amount of lies and spiun used by US media to justify war in Kosovo ). I think, that none of you guys simply has a moral right to accuse anyone of invasion after what "civilized West" did in Kosovo and Serbia.

And, after all that amount of lies and spinning the facts, and supporting brutality of "US allies" both in Kosovo and Georgia - I really think it is you who is hopelessly hypocritical.

My advise - look at mirror before judging others, as one monkey was suggested in old Lafontaine tale.

In Response

by: Andrew from: Auckland

November 17, 2010 10:02

Really Boris, stop the BS, Russia tried to do everything it could to make the situation worse.

Lets have a look shall we:

1. Arming training and otherwise supporting separatist militia in violation of the UN charter.

2. Vetoing attempts to put in place a real UN mandated peacekeeping force over a period of nearly 20 years.

3. Assisting the separatists in shelling Georgian villages, then claiming that the Russian CIS peacekeepers "can no longer control the situation"

4. Vetoing direct talks between the Georgian and Ossetian leadership in the weeks leading up to the attack which were requested by the Georgians.

As for "destroying the city" the only places that were destroyed were Georgian villages to the north of Tshkinvali, all media who later visited Tshkinvali have noted how the moronic Russian claims of genocide and the destruction of the city were an absolute fabrication.

The Russian government claimed 2000 dead civilians within minutes of the main fighting breaking out. Not only were these claims rubbished by Memorial and HRW, but the final official death toll was lowered by Russia to 135. The Russian government lied in order to incite racial hatred the same way that they always do Boris.

Oh and funny to note, Russia used far more and far heavier artillery to shell Tshkinvali for three days after the Georgians captured it, who do you think did more damage?

What pictures of "Georgians killing Ossetians" were used? You are probably referring to the pictures of Georgian civilians killed by Russian bombing in Gori.

Russia also conducted a pre planned and deliberate campaign of ethnic cleansing against the Georgian civilian population of South Ossetia. This too has been widely documented.

I suggest, as you are so incredibly ignorant of your subject matter, that you read in its entirety the IFFC report on the August war, which (while quite rightly criticising the Georgians for their mistakes) reserves its true vitriol for the completely illegal actions of Russia and the separatists.

Now, lets talk about your real Russian hypocrisy. Chechnya, Ingushetia, Daghestan, the 250,000 dead Chechens murdered and raped in your 15 year orgy of all too typical Russian killing.

Russia and Russians were, are, and will be for the foreseeable future, an evil empire.

In Response

by: Maxwell from: USA

November 19, 2010 05:49

How about the fairly compelling circumstantial evidence that the FSB planted bombs in the Moscow, Buynaksk, and Volgodonsk apartment buildings that were blamed on Chechen rebels and led in part to the second war in Chechnya. Unfinished business, I suppose. It is not fairly apparent to anyone who has even scratched the surface of post-Soviet Russian affairs that this is a gangster state controlled by an unholy alliance of organized crime, ex-KBG types, and a small set of oil industry tycoons?

Why would the Russian citizenry support such swine? Because there isn't much choice. Go ask Gary Kasparov. I will say in defense of my Eastern Bloc comrades that the situation in the U.S. is far from ideal and getting worse daily. The difference here seems to be that people are simply too stupid or apathetic to realize that basic civil liberties (the bloody right to privacy for one) are slowly being siphoned off. Corruption greases the wheels of democracy. Of course the problem is that our political figures have been run by corporate interests and Wall Street financiers for the better part of a century. Didn't anybody watch Network (1976)?

by: Vytautasba from: vilnius

November 16, 2010 12:35

We are in a vicious circle. In 2002 Microsoft provided its source code to the Russian Government as part of Microsofts Government Security Program. This past summer the agreement was apparently updated to include access to Win7 code (see link to article below). Oh by the way. Microsoft signed a similar agreement with the Chinese government in 2007. Oh what interesting cyber security times we live in.

http://www.zdnet.co.uk/news/security/2010/07/08/microsoft-opens-source-code-to-russian-secret-service-40089481/

In Response

by: Alexandr

November 16, 2010 20:46

Providing source code is a rule for OS to be used in states organization. Of course, no serious organization would use Windows. But there is lobbying, so it is used frequently in USA and less frequently in Russia.

by: CG_RJ from: Toronto, ON, Canada

November 16, 2010 18:19

Very interesting article. It seems that Mr. Feifer's main idea is that Russians possessing ANY modern technology is a threat to a Free World. However, that begs the question. What, in Mr. Feifer's mind, should be appropriate course of action to deny Russka any technology developed after 1940?

In Response

by: Alexandr

November 20, 2010 18:12

US than should also stop using ex-USSR and Russian technology. Let's start with Intel processors that use technology from Russian supercomputer series Elbrus. And any crypto software that uses USSR crypto algorithms (usually named "GOST").

by: Marlen

November 17, 2010 09:09

Where is an article about Kyrgyzstan and Customs Union? On your home page i see the headline for this article, but there is no article on Kyrgyzstan. Please, remove this mistake,

by: Boris from: London

November 17, 2010 14:13

Very well written article Mr. Feifer!

Russia is a criminal state today. Crime of various shapes and dimensions increasingly originates and spreads from Russia in today's globalized world. This is an Evil empire, with which developed world needs to do something. Best of all is somehow to drop the oil prices, as Reigan administration did 20 years ago.
Talking sweet wtih those checkist and trying to involve them in various global projects only emboldens them, motivates to push in this direction harder.