In an interesting turn of events, it appears that the 2014 Sony hack, February’s Bangladeshi bank heist and the attempted breach of a Vietnamese bank last year may all be linked. Vietnam’s Tien Phong Bank released a statement over the weekend saying it disrupted an attempted cyber heist valued at US$1.1 million at the end of last year. The thwarted incident and the breach of Bangladesh’s central bank in February are both thought to have targeted SWIFT, the central network for global financial transactions, with fraudulent transfer requests. SWIFT’s CEO has denied claims that vulnerabilities in the payment network facilitated the Bangladesh heist, with the company releasing a statement arguing that PDF-targeting malware was used to initiate fraudulent bank transfers. However, security firm BAE has just published a blog highlighting the ‘strong links’ between the methods used in those two bank incidents and the infamous hack of Sony Pictures in 2014. The similarities suggest that these events are part of a broader campaign that could be traced back to a single group of hackers.
To counter such breaches in the future, IBM’s super computer, Watson, is now being trained to combat cybercrime. The computing system already excels in many areas, including healthcare, cooking, finance, customer service and playing Jeopardy. IBM describes Watson as ‘a technology platform that uses natural language processing and machine learning to reveal insights from large amounts of unstructured data’. Now, eight universities across the US will be part of the effort to expand Watson’s knowledge on the topic of cybercrime. IBM will provide Watson with 15,000 annotated security documents per month, and expects it to attain an expert level of understanding of the cybersecurity landscape and the ability to monitor large scale trends, as well as the ability to detect potential threats. Watch a video explaining the process here.
The US Senate has asked President Obama to develop a national definition of cyberwar. Republican Senator Mike Rounds has proposed the Cyber Act of War Act 2016, which would ‘require the President to develop a policy for determining when an action carried out in cyberspace constitutes an act of war against the United States, and for other purposes’. Rounds’ suggestion has raised criticism, including this CFR article that describes the bill as ‘an ill-conceived proposal that deserves to die, quickly, in Congress’.
The US Department of Commerce’s National Telecommunications and Information Administration (NTIA) has published new research revealing that the ongoing encryption debate is eroding public confidence in the safety of the Internet. A survey of 41,000 households in the US revealed that nearly one in two individuals report that privacy and security concerns now prevent them from doing even simple things online. NTIA has raised concerns that this significant loss of trust may ‘reduce economic activity and hamper the free exchange of ideas online’, a trend that could be reversed by encouraging broad use of strong encryption technologies.
Last Wednesday, Chinese and US officials met in DC to discuss cyber issues for the first time since establishing some common cyber principles as part of a broader bilateral agreement in September last year. The first iteration of the new Senior Experts Group, included US representatives from the US Department of State, Department of Defense, and Department of Homeland Security, with Chinese representatives from the Ministry of Foreign Affairs, Ministry of National Defense, Cyberspace Administration of China, and the Ministry of Public Security. According to the Chinese Foreign Ministry’s spokesperson, the discussions took place in a ‘positive, in-depth and constructive way, touching upon norms for state behaviour and cyberspace-related international law and confidence-building measures’. The group is expected to meet twice a year, and represents an improvement of bilateral cyber relations after China withdrew from a similar initiative in response to the US indictment of five Chinese military officers in 2014.
Unfortunately, it’s not all good news in Sino–US cyber relations. The recent release of US Defense Department’s annual report to Congress, Military and Security Developments Involving the People’s Republic of China, offers a critical assessment of Chinese cyber posturing. It re-issues accusations of China’s attempts on US government networks, describing the use of ‘cyber capabilities to support intelligence collection against the US diplomatic, economic, and defense industrial base sectors that support US national defense programs’. Chinese Defence Ministry spokesman Yang Yujun denounced the report as having ‘deliberately distorted’ Chinese defence policies, while Chinese Foreign Ministry spokesman Hong Lei described it as ‘full of prejudice against China’. At the same time, The New York Times is reporting that Chinese authorities have been secretly reviewing the security features of tech products sold in China by overseas companies. The assessments are supposedly run by a committee within the Cyberspace Administration of China and are expected to create a ‘new front in an already tense relationship with Washington over digital security’.
Lastly, please join us in a moment of silence to honour the timely death of CSI: Cyber. Ok, that’ll do.