<?xml version="1.0" encoding="UTF-8"?><rss version="2.0"
	xmlns:content="http://purl.org/rss/1.0/modules/content/"
	xmlns:wfw="http://wellformedweb.org/CommentAPI/"
	xmlns:dc="http://purl.org/dc/elements/1.1/"
	xmlns:atom="http://www.w3.org/2005/Atom"
	xmlns:sy="http://purl.org/rss/1.0/modules/syndication/"
	xmlns:slash="http://purl.org/rss/1.0/modules/slash/"
	>

<channel>
	<title>cyberwar &#8211; Noise</title>
	<atom:link href="https://noise.getoto.net/tag/cyberwar/feed/" rel="self" type="application/rss+xml" />
	<link>https://noise.getoto.net</link>
	<description>The collective thoughts of the interwebz</description>
	<lastBuildDate>Tue, 24 Sep 2024 01:02:31 +0000</lastBuildDate>
	<language>en-US</language>
	<sy:updatePeriod>
	hourly	</sy:updatePeriod>
	<sy:updateFrequency>
	1	</sy:updateFrequency>
	<generator>https://wordpress.org/?v=6.8.2</generator>
	<item>
		<title>Israel’s Pager Attacks and Supply Chain Vulnerabilities</title>
		<link>https://noise.getoto.net/2024/09/24/israels-pager-attacks-and-supply-chain-vulnerabilities/</link>
		
		<dc:creator><![CDATA[Bruce Schneier]]></dc:creator>
		<pubDate>Tue, 24 Sep 2024 11:05:34 +0000</pubDate>
				<category><![CDATA[cyberterrorism]]></category>
		<category><![CDATA[cyberwar]]></category>
		<category><![CDATA[Internet of Things]]></category>
		<category><![CDATA[supply chain]]></category>
		<category><![CDATA[Uncategorized]]></category>
		<guid isPermaLink="false">https://www.schneier.com/?p=69412</guid>

					<description><![CDATA[<p>Israel’s brazen attacks on Hezbollah last week, in which hundreds of pagers and two-way radios exploded and killed at least 37 people, graphically illustrated a threat that cybersecurity experts have been warning about for years: Our international supply chains for computerized equipment leave us vulnerable. And we have no good means to defend ourselves.</p>
<p>Though the deadly operations were stunning, none of the elements used to carry them out were particularly new. The tactics employed by Israel, which has neither confirmed nor denied any role, to hijack an international supply chain and embed plastic explosives in Hezbollah devices have been used for years. What’s new is that Israel put them together in such a devastating and extravagantly public fashion, bringing into stark relief what the future of great power competition will look like—in peacetime, wartime and the ever expanding ...</p>]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>Cyberattack on Ukraine’s Kyivstar Seems to Be Russian Hacktivists</title>
		<link>https://noise.getoto.net/2023/12/21/cyberattack-on-ukraines-kyivstar-seems-to-be-russian-hacktivists/</link>
		
		<dc:creator><![CDATA[Bruce Schneier]]></dc:creator>
		<pubDate>Thu, 21 Dec 2023 12:10:10 +0000</pubDate>
				<category><![CDATA[cyberattack]]></category>
		<category><![CDATA[cyberwar]]></category>
		<category><![CDATA[hacking]]></category>
		<category><![CDATA[russia]]></category>
		<category><![CDATA[Telecom]]></category>
		<category><![CDATA[Ukraine]]></category>
		<category><![CDATA[Uncategorized]]></category>
		<guid isPermaLink="false">https://www.schneier.com/?p=68225</guid>

					<description><![CDATA[The Solntsepek group has taken credit for the attack. They&#8217;re linked to the Russian military, so it&#8217;s unclear whether the attack was government directed or freelance.
This is one of the most significant cyberattacks since Russia invaded in ...]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>Expeditionary Cyberspace Operations</title>
		<link>https://noise.getoto.net/2023/05/26/expeditionary-cyberspace-operations/</link>
		
		<dc:creator><![CDATA[Bruce Schneier]]></dc:creator>
		<pubDate>Fri, 26 May 2023 11:12:59 +0000</pubDate>
				<category><![CDATA[cyberattack]]></category>
		<category><![CDATA[cyberwar]]></category>
		<category><![CDATA[national security policy]]></category>
		<category><![CDATA[Uncategorized]]></category>
		<guid isPermaLink="false">https://www.schneier.com/?p=67387</guid>

					<description><![CDATA[<p>Cyberspace operations now <a href="https://defensescoop.com/2023/05/12/new-dod-doctrine-officially-outlines-and-defines-expeditionary-cyberspace-operations/">officially has</a> a physical dimension, meaning that the United States has official military doctrine about cyberattacks that also involve an actual human gaining physical access to a piece of computing infrastructure.</p>
<blockquote><p>A revised version of Joint Publication 3-12 Cyberspace Operations—published in December 2022 and while unclassified, is only available to those with DoD common access cards, according to a Joint Staff spokesperson—officially provides a definition for “expeditionary cyberspace operations,” which are “[c]yberspace operations that require the deployment of cyberspace forces within the physical domains.”...</p></blockquote>]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>Russian Cyberwarfare Documents Leaked</title>
		<link>https://noise.getoto.net/2023/03/31/russian-cyberwarfare-documents-leaked/</link>
		
		<dc:creator><![CDATA[Bruce Schneier]]></dc:creator>
		<pubDate>Thu, 30 Mar 2023 22:00:03 +0000</pubDate>
				<category><![CDATA[cyberespionage]]></category>
		<category><![CDATA[cyberwar]]></category>
		<category><![CDATA[espionage]]></category>
		<category><![CDATA[hacking]]></category>
		<category><![CDATA[leaks]]></category>
		<category><![CDATA[russia]]></category>
		<category><![CDATA[Uncategorized]]></category>
		<category><![CDATA[whistleblowers]]></category>
		<guid isPermaLink="false">https://www.schneier.com/?p=67134</guid>

					<description><![CDATA[<p>Now <a href="https://www.theguardian.com/technology/2023/mar/30/vulkan-files-leak-reveals-putins-global-and-domestic-cyberwarfare-tactics">this</a> is interesting:</p>
<blockquote><p>Thousands of pages of secret documents reveal how Vulkan’s engineers have worked for Russian military and intelligence agencies to support hacking operations, train operatives before attacks on national infrastructure, spread disinformation and control sections of the internet.</p>
<p>The company’s work is linked to the federal security service or FSB, the domestic spy agency; the operational and intelligence divisions of the armed forces, known as the GOU and GRU; and the SVR, Russia’s foreign intelligence organisation.</p></blockquote>
<p>Lots more at the link...</p>]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>Cyberwar Lessons from the War in Ukraine</title>
		<link>https://noise.getoto.net/2023/02/23/cyberwar-lessons-from-the-war-in-ukraine/</link>
		
		<dc:creator><![CDATA[Bruce Schneier]]></dc:creator>
		<pubDate>Thu, 23 Feb 2023 12:27:20 +0000</pubDate>
				<category><![CDATA[cyberattack]]></category>
		<category><![CDATA[cyberwar]]></category>
		<category><![CDATA[defense]]></category>
		<category><![CDATA[infrastructure]]></category>
		<category><![CDATA[reports]]></category>
		<category><![CDATA[russia]]></category>
		<category><![CDATA[Ukraine]]></category>
		<category><![CDATA[Uncategorized]]></category>
		<guid isPermaLink="false">https://www.schneier.com/?p=66964</guid>

					<description><![CDATA[<p>The Aspen Institute has published a good analysis of the successes, failures, and absences of cyberattacks as part of the current war in Ukraine: “<a href="https://www.aspeninstitute.org/publications/the-cyber-defense-assistance-imperative-lessons-from-ukraine/">The Cyber Defense Assistance Imperative ­ Lessons from Ukraine</a>.”</p>
<p>Its conclusion:</p>
<blockquote><p>Cyber defense assistance in Ukraine is working. The Ukrainian government and Ukrainian critical infrastructure organizations have better defended themselves and achieved higher levels of resiliency due to the efforts of CDAC and many others. But this is not the end of the road—the ability to provide cyber defense assistance will be important in the future. As a result, it is timely to assess how to provide organized, effective cyber defense assistance to safeguard the post-war order from potential aggressors...</p></blockquote>]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>The Limits of Cyber Operations in Wartime</title>
		<link>https://noise.getoto.net/2022/05/31/the-limits-of-cyber-operations-in-wartime/</link>
		
		<dc:creator><![CDATA[Bruce Schneier]]></dc:creator>
		<pubDate>Tue, 31 May 2022 11:06:03 +0000</pubDate>
				<category><![CDATA[academic papers]]></category>
		<category><![CDATA[cyberwar]]></category>
		<category><![CDATA[russia]]></category>
		<category><![CDATA[Ukraine]]></category>
		<category><![CDATA[Uncategorized]]></category>
		<guid isPermaLink="false">https://www.schneier.com/?p=65469</guid>

					<description><![CDATA[<p>Interesting paper by Lennart Maschmeyer: “<a href="https://direct.mit.edu/isec/article/46/2/51/107693/The-Subversive-Trilemma-Why-Cyber-Operations-Fall">The Subversive Trilemma: Why Cyber Operations Fall Short of Expectations</a>“:</p>
<blockquote><p><b>Abstract:</b> Although cyber conflict has existed for thirty years, the strategic utility of cyber operations remains unclear. Many expect cyber operations to provide independent utility in both warfare and low-intensity competition. Underlying these expectations are broadly shared assumptions that information technology increases operational effectiveness. But a growing body of research shows how cyber operations tend to fall short of their promise. The reason for this shortfall is their subversive mechanism of action. In theory, subversion provides a way to exert influence at lower risks than force because it is secret and indirect, exploiting systems to use them against adversaries. The mismatch between promise and practice is the consequence of the subversive trilemma of cyber operations, whereby speed, intensity, and control are negatively correlated. These constraints pose a trilemma for actors because a gain in one variable tends to produce losses across the other two variables. A case study of the Russo-Ukrainian conflict provides empirical support for the argument. Qualitative analysis leverages original data from field interviews, leaked documents, forensic evidence, and local media. Findings show that the subversive trilemma limited the strategic utility of all five major disruptive cyber operations in this conflict...</p></blockquote>]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>Microsoft Issues Report of Russian Cyberattacks against Ukraine</title>
		<link>https://noise.getoto.net/2022/04/28/microsoft-issues-report-of-russian-cyberattacks-against-ukraine/</link>
		
		<dc:creator><![CDATA[Bruce Schneier]]></dc:creator>
		<pubDate>Thu, 28 Apr 2022 14:15:56 +0000</pubDate>
				<category><![CDATA[cyberattack]]></category>
		<category><![CDATA[cyberespionage]]></category>
		<category><![CDATA[cyberwar]]></category>
		<category><![CDATA[espionage]]></category>
		<category><![CDATA[reports]]></category>
		<category><![CDATA[russia]]></category>
		<category><![CDATA[Ukraine]]></category>
		<category><![CDATA[Uncategorized]]></category>
		<guid isPermaLink="false">https://www.schneier.com/?p=65378</guid>

					<description><![CDATA[<p>Microsoft has a <a href="https://query.prod.cms.rt.microsoft.com/cms/api/am/binary/RE4Vwwd">comprehensive report</a> on the dozens of cyberattacks — and even more espionage operations — Russia has conducted against Ukraine as part of this war:</p>
<blockquote><p>At least six Russian Advanced Persistent Threat (APT) actors and other unattributed threats, have conducted destructive attacks, espionage operations, or both, while Russian military forces attack the country by land, air, and sea. It is unclear whether computer network operators and physical forces are just independently pursuing a common set of priorities or actively coordinating. However, collectively, the cyber and kinetic actions work to disrupt or degrade Ukrainian government and military functions and undermine the public’s trust in those same institutions...</p></blockquote>]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>Russian Cyberattack against Ukrainian Power Grid Prevented</title>
		<link>https://noise.getoto.net/2022/04/13/russian-cyberattack-against-ukrainian-power-grid-prevented/</link>
		
		<dc:creator><![CDATA[Bruce Schneier]]></dc:creator>
		<pubDate>Wed, 13 Apr 2022 11:32:50 +0000</pubDate>
				<category><![CDATA[cyberattack]]></category>
		<category><![CDATA[cyberwar]]></category>
		<category><![CDATA[cyberweapons]]></category>
		<category><![CDATA[Malware]]></category>
		<category><![CDATA[russia]]></category>
		<category><![CDATA[Ukraine]]></category>
		<category><![CDATA[Uncategorized]]></category>
		<guid isPermaLink="false">https://www.schneier.com/?p=65324</guid>

					<description><![CDATA[<p>A Russian cyberweapon, similar to the one used in 2016, was <a href="https://www.welivesecurity.com/2022/04/12/industroyer2-industroyer-reloaded/">detected and removed</a> before it could be used.</p>
<blockquote><p>Key points:</p>
<ul>
<li>ESET researchers collaborated with CERT-UA to analyze the attack against the Ukrainian energy company
</li><li>The destructive actions were scheduled for 2022-04-08 but artifacts suggest that the attack had been planned for at least two weeks
</li><li>The attack used ICS-capable malware and regular disk wipers for Windows, Linux and Solaris operating systems
</li><li>We assess with high confidence that the attackers used a new version of the Industroyer malware, which was used in 2016 to cut power in Ukraine
...</li></ul></blockquote>]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>White House Warns of Possible Russian Cyberattacks</title>
		<link>https://noise.getoto.net/2022/03/22/white-house-warns-of-possible-russian-cyberattacks/</link>
		
		<dc:creator><![CDATA[Bruce Schneier]]></dc:creator>
		<pubDate>Tue, 22 Mar 2022 14:57:33 +0000</pubDate>
				<category><![CDATA[cyberattack]]></category>
		<category><![CDATA[cyberwar]]></category>
		<category><![CDATA[infrastructure]]></category>
		<category><![CDATA[russia]]></category>
		<category><![CDATA[Uncategorized]]></category>
		<guid isPermaLink="false">https://www.schneier.com/?p=65256</guid>

					<description><![CDATA[<p><a href="https://www.washingtonpost.com/politics/2022/03/22/biden-warns-us-companies-gird-up-against-russian-hacks/">News</a>:</p>
<blockquote><p>The White House has issued its starkest warning that Russia may be planning cyberattacks against critical-sector U.S. companies amid the Ukraine invasion.</p>
<p>[…]</p>
<p>Context: The alert comes after Russia has lobbed a series of digital attacks at the Ukrainian government and critical industry sectors. But there’s been no sign so far of major disruptive hacks against U.S. targets even as the government has imposed increasingly harsh sanctions that have battered the Russian economy.</p>
<ul>
<li>The public alert followed classified briefings government officials conducted last week for more than 100 companies in sectors at the highest risk of Russian hacks, Neuberger said. The briefing was prompted by “preparatory activity” by Russian hackers, she said.
...</li></ul></blockquote>]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>Where’s the Russia-Ukraine Cyberwar?</title>
		<link>https://noise.getoto.net/2022/03/10/wheres-the-russia-ukraine-cyberwar/</link>
		
		<dc:creator><![CDATA[Bruce Schneier]]></dc:creator>
		<pubDate>Thu, 10 Mar 2022 12:06:34 +0000</pubDate>
				<category><![CDATA[cyberwar]]></category>
		<category><![CDATA[russia]]></category>
		<category><![CDATA[Ukraine]]></category>
		<category><![CDATA[Uncategorized]]></category>
		<guid isPermaLink="false">https://www.schneier.com/?p=65201</guid>

					<description><![CDATA[<p>It has been interesting to notice how unimportant and ineffective cyber operations have been in the Russia-Ukraine war. Russia launched a wiper against Ukraine at the beginning, but it was <a href="https://symantec-enterprise-blogs.security.com/blogs/threat-intelligence/ukraine-wiper-malware-russia">found</a> <a href="https://www.nytimes.com/2022/02/28/us/politics/ukraine-russia-microsoft.html">and</a> <a href="https://arstechnica.com/gadgets/2022/03/microsoft-identifies-and-mitigates-new-malware-targeting-ukraine-within-3-hours/">neutered</a>. Near as I can tell, the only thing that worked was the <a href="https://www.reversemode.com/2022/03/satcom-terminals-under-attack-in-europe.html">disabling</a> of regional KA-SAT SATCOM terminals.</p>
<p>It’s probably too early to reach any conclusions, but people are starting to <a href="https://www.washingtonpost.com/politics/2022/03/03/11-reasons-we-havent-seen-big-russian-cyberattacks-yet/">write</a> <a href="https://www.lawfareblog.com/cyber-realism-time-war">about</a> this, with varying theories.</p>
<p>I want to write about this, too, but I’m waiting for things to progress more.</p>
<p>EDITED TO ADD (3/12): Two <a href="https://gru.gq/2022/03/07/cyber-in-the-raw/">additional</a> <a href="https://www.theregister.com/2022/03/09/where_are_the_russian_cyberattacks/">takes...</a></p>]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>More Russian Cyber Operations against Ukraine</title>
		<link>https://noise.getoto.net/2022/01/05/more-russian-cyber-operations-against-ukraine/</link>
		
		<dc:creator><![CDATA[Bruce Schneier]]></dc:creator>
		<pubDate>Wed, 05 Jan 2022 12:12:13 +0000</pubDate>
				<category><![CDATA[cyberwar]]></category>
		<category><![CDATA[russia]]></category>
		<category><![CDATA[Ukraine]]></category>
		<category><![CDATA[Uncategorized]]></category>
		<guid isPermaLink="false">https://www.schneier.com/?p=64864</guid>

					<description><![CDATA[Both Russia and Ukraine are preparing for military operations in cyberspace.
]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>AI-Piloted Fighter Jets</title>
		<link>https://noise.getoto.net/2021/06/25/ai-piloted-fighter-jets/</link>
		
		<dc:creator><![CDATA[Bruce Schneier]]></dc:creator>
		<pubDate>Fri, 25 Jun 2021 13:53:27 +0000</pubDate>
				<category><![CDATA[artificial intelligence]]></category>
		<category><![CDATA[china]]></category>
		<category><![CDATA[cyberwar]]></category>
		<category><![CDATA[cyberweapons]]></category>
		<category><![CDATA[Uncategorized]]></category>
		<guid isPermaLink="false">https://www.schneier.com/?p=63399</guid>

					<description><![CDATA[<p><a href="https://cset.georgetown.edu/newsletter/june-24-2021/">News</a> from Georgetown’s Center for Security and Emerging Technology:</p>
<blockquote><p><b>China Claims Its AI Can Beat Human Pilots in Battle:</b> Chinese state media reported that an AI system <a href="https://www.businessinsider.com/china-pits-fighter-pilots-against-ai-aircraft-in-simulated-dogfights-2021-6">had successfully defeated human pilots during simulated dogfights</a>. According to <a href="https://www.globaltimes.cn/page/202106/1226131.shtml">the Global Times report</a>, the system had shot down several PLA pilots during a handful of virtual exercises in recent years. Observers outside China noted that while reports coming out of state-controlled media outlets should be taken with a grain of salt, <a href="https://www.thedrive.com/the-war-zone/41152/chinese-pilots-are-also-dueling-with-ai-opponents-in-simulated-dogfights-and-losing-report">the capabilities described in the report are not outside the realm of possibility...</a></p></blockquote>]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>Including Hackers in NATO Wargames</title>
		<link>https://noise.getoto.net/2021/01/29/including-hackers-in-nato-wargames/</link>
		
		<dc:creator><![CDATA[Bruce Schneier]]></dc:creator>
		<pubDate>Fri, 29 Jan 2021 18:03:43 +0000</pubDate>
				<category><![CDATA[control]]></category>
		<category><![CDATA[cyberwar]]></category>
		<category><![CDATA[games]]></category>
		<category><![CDATA[hacking]]></category>
		<category><![CDATA[infrastructure]]></category>
		<category><![CDATA[physical security]]></category>
		<category><![CDATA[Uncategorized]]></category>
		<guid isPermaLink="false">https://www.schneier.com/?p=61864</guid>

					<description><![CDATA[<p>This <a href="https://foreignpolicy.com/2020/12/22/nato-we-want-to-go-to-war-with-you/">essay</a> makes the point that actual computer hackers would be a useful addition to NATO wargames:</p>
<blockquote><p>The international information security community is filled with smart people who are not in a military structure, many of whom would be excited to pose as independent actors in any upcoming wargames. Including them would increase the reality of the game and the skills of the soldiers building and training on these networks. Hackers and cyberwar experts would demonstrate how industrial control systems such as power supply for refrigeration and temperature monitoring in vaccine production facilities are critical infrastructure; they’re easy targets and should be among NATO’s priorities at the moment...</p></blockquote>]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>Ranking National Cyber Power</title>
		<link>https://noise.getoto.net/2020/09/11/ranking-national-cyber-power/</link>
		
		<dc:creator><![CDATA[Bruce Schneier]]></dc:creator>
		<pubDate>Fri, 11 Sep 2020 11:15:08 +0000</pubDate>
				<category><![CDATA[cyberwar]]></category>
		<category><![CDATA[power]]></category>
		<category><![CDATA[reports]]></category>
		<category><![CDATA[Uncategorized]]></category>
		<guid isPermaLink="false">https://www.schneier.com/?p=60187</guid>

					<description><![CDATA[<p>Harvard Kennedy School&#8217;s Belfer Center published the &#8220;<a href="https://www.belfercenter.org/sites/default/files/2020-09/NCPI_2020.pdf">National Cyber Power Index 2020: Methodology and Analytical Considerations</a>.&#8221; The rankings: 1. US, 2. China, 3. UK, 4. Russia, 5. Netherlands, 6. France, 7. Germany, 8. Canada, 9. Japan, 10. Australia, 11. Israel. More countries are in the document.</p>
<p>We could &#8212; and should &#8212; argue about the criteria and the methodology, but it&#8217;s good that someone is starting this conversation.</p>
<blockquote><p><b>Executive Summary</b>: The Belfer National Cyber Power Index (NCPI) measures 30 countries&#8217; cyber capabilities in the context of seven national objectives, using 32 intent indicators and 27 capability indicators with evidence collected from publicly available data...</p></blockquote>]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
	</channel>
</rss>

<!--
Performance optimized by W3 Total Cache. Learn more: https://www.boldgrid.com/w3-total-cache/

Object Caching 32/223 objects using Memcached
Page Caching using Disk: Enhanced 
Lazy Loading (feed)
Database Caching using Memcached

Served from: noise.getoto.net @ 2025-12-11 05:56:04 by W3 Total Cache
-->