FacebookTwitterRedditEmail

Deterring Cyberattacks With Sanctions?

The White House has announced a new sanctions program that will authorize the executive branch to penalize malicious cyber “actors” whose behavior endangers “the national security, foreign policy, or economic health or financial stability of the United States.” Sadly the President is opting for theater that creates the perception of security rather than actually making it more difficult for attacks to succeed.

Obama’s new executive order rests on a strategy of deterrence, a cold war idea that’s been revived by the likes of former NSA director Mike McConnell and more recently by current NSA Director Mike Rogers. The basic idea is this: if enemies fear retaliation they’re less likely to launch an attack (nuclear, cyber, or otherwise).

But deterrence is useless if you can’t figure out who attacked you. Malware isn’t like an ICBM that leaves a clear trail going from point-A to point-B. Thanks to Ed Snowden it’s public knowledge Five-Eyes Intelligence agencies have invested heavily in developing anonymity technology and conducting deception operations that aim to conceal the origins of their clandestine attacks. It would be naïve to believe that other countries aren’t doing the same.

Consider the following scenario. A Japanese spy targeting sensitive information in the United States could launch their campaign out of China, outsourcing the bulk of their work to local outlaws who use indigenous tools and tactics. Advanced anti-forensic methods could be wielded to cast suspicion elsewhere, away from Japan, and investigators would no doubt recognize the political expedience of accusing China over an ally.

One can imagine the hazards, not to mention embarrassment, associated with rash accusations. In 2009 the presiding republican on the House Intelligence Committee, Peter Hoekstra, in lieu of hard evidence recommended that the United States execute a “show of force” against North Korea in response to run-of-the-mill denial of service attacks on South Korean and U.S. websites. Cooler heads prevailed and the attacks were eventually traced back to a VPN circuit in Florida.

It’s interesting to watch history repeat itself with the data breach at Sony. Yet the public clamors for POTUS to do something. This new program, which threatens would-be “actors” with economic sanctions, is something. So that’s what Obama is doing.

Boldly clambering down into the rabbit hole of attribution is bad enough, but there are additional questions that arise with respect to this new executive order. For example, if the United State is going to penalize other countries for alleged cyberattacks does this mean that other countries will be able to seek redress from the United States for American cyberattacks?

After all the United States is the most prolific “actor” in the cyber domain, seeking to “dominate” the Internet. Officials have admitted outright that both the Stuxnet and Equation Group attacks were NSA initiatives. Dozens of countries and hundreds of organizations were impacted. Will the United States be exempt from the mandates that it applies abroad, as the world’s one indispensable nation?

Sanctions may be less violent than conventional military weapons but they still rely on the process of attribution. This underscores the reality that false flag operations are as popular as ever and relatively easy for funded intelligence outfits to execute. Does the President believe threatening sanctions will improve our cyber security or is he merely looking for another excuse to frame and punish his adversaries?

Bill Blunden is an independent investigator whose current areas of inquiry include information security, anti-forensics, and institutional analysis. He is the author of several books, including The Rootkit Arsenal , and Behold a Pale Farce: Cyberwar, Threat Inflation, and the Malware-Industrial Complex. Bill is the lead investigator at Below Gotham Labs.

More articles by:

Bill Blunden is a journalist whose current areas of inquiry include information security, anti-forensics, and institutional analysis. He is the author of several books, including “The Rootkit Arsenal” andBehold a Pale Farce: Cyberwar, Threat Inflation, and the Malware-Industrial Complex.” Bill is the lead investigator at Below Gotham Labs and a member of the California State University Employees Union, Chapter 305.

bernie-the-sandernistas-cover-344x550

June 24, 2019
Jim Kavanagh
Eve of Destruction: Iran Strikes Back
Nino Pagliccia
Sorting Out Reality From Fiction About Venezuela
Jeff Sher
Pickin’ and Choosin’ the Winners and Losers of Climate Change
Howard Lisnoff
“Bomb, Bomb, Bomb Iran”
Robert Fisk
The West’s Disgraceful Silence on the Death of Morsi
Dean Baker
The Old Japan Disaster Horror Story
David Mattson
The Gallatin Forest Partnership and the Tyranny of Ego
George Wuerthner
How Mountain Bikes Threaten Wilderness
Christopher Ketcham
The Journalist as Hemorrhoid
Manuel E. Yepe
Yankee Worship of Bombings and Endless Wars
Mel Gurtov
Iran—Who and Where is The Threat?
Wim Laven
Revisiting Morality in the Age of Dishonesty
Thomas Knapp
Facebook’s Libra Isn’t a “Cryptocurrency”
Weekend Edition
June 21, 2019
Friday - Sunday
Brett Wilkins
A Brief History of US Concentration Camps
Rob Urie
Race, Identity and the Political Economy of Hate
Rev. William Alberts
America’s Respectable War Criminals
Paul Street
“So Happy”: The Trump “Boom,” the Nation’s Despair, and the Decline of Joe Biden
Jeffrey St. Clair
Roaming Charges: Ask Your Local Death Squad
Dr. Vandana Shiva
Fake Food, Fake Meat: Big Food’s Desperate Attempt to Further the Industrialisation of Food
Eric Draitser
The Art of Trade War: Is Trump Winning His Trade War against China?
Melvin Goodman
Trump’s Russian Problem
Jonathan Cook
Forget Trump’s Deal of the Century: Israel Was Always on Course to Annexation
Andrew Levine
The Biden Question
Stanley L. Cohen
From Tel Aviv to Tallahassee
Robert Hunziker
Permafrost Collapses 70 Years Early
Kenn Orphan
Normalizing Atrocity
Ajamu Baraka
No Dare Call It Austerity
Ron Jacobs
The Redemptive Essence of History
David Rosen
Is Socialism Possible in America?
Dave Lindorff
The US as Rogue Nation Number 1
Joseph Natoli
The Mad King in His Time
David Thorstad
Why I’m Skipping Stonewall 50
Michael Welton
Native People: Changing Our Ways of Seeing
Peter Bolton
The US-UK “Special Relationship” is a Farce
Ramzy Baroud
‘World Refugee Day’: Palestinians Keep Their Right of Return Alive Through Hope, Resistance
Louis Proyect
The Douma Gas Attack: What’s the Evidence It was a False Flag?
Binoy Kampmark
Nigel Farage’s Grand Tour of Sabotage
Brian Cloughley
Trump’s Sanctions are Sadistic and Spiteful
Norman Solomon
Clueless and Shameless: Joe Biden, Staggering Frontrunner
Tom Clifford
Hong Kong is Far From China’s Biggest Problem
Lawrence Davidson
On the Alleged “Preciousness of Life”
Mel Gurtov
Impeach Trump
Rajan Menon
America’s Suicide Epidemic: It’s Hitting Trump’s Base Hard
Dan Bacher
Oregon Governor Kate Brown Signs Five-Year Fracking Ban Bill
Ralph Nader
Congressional Interns and Congress Redirections—A Meeting
FacebookTwitterRedditEmail