Dan Sabbagh
Britain’s newly created offensive hacking unit, the National Cyber Force, has said it is engaged daily in operations to disrupt terrorist groups, distributors of child sexual abuse material and military opponents of the UK.
An official paper, Responsible Cyber Power in Practice, is the first policy statement from the body and is intended to describe how far the UK is prepared to fight back against growing organised online threats.
Operational details remain sketchy, although the NCF says it is engaged in techniques to “undermine the tradecraft” of Russian, Chinese and other state-sponsored hackers and in “technical disruption” against terrorist groups, for example to prevent the dissemination of online propaganda.
Other activities listed by the NCF include “disrupting networks and operational capabilities” of Britain’s enemies in support of the UK military, and “persistent campaigns” to remove images of child abuse, so making the illegal content harder to find online.
Formally announced in 2020, the NCF is a joint operation between the GCHQ spy agency and the Ministry of Defence. It is the first time Britain’s cyber-attack capabilities have been grouped together in one acknowledged unit.
Russia, China, Iran and North Korea are all considered to promote hacker groups which aim to steal political and trade secrets online, or engage in online ransomware extortion attacks, where cybercriminals take control of a company’s systems and demand substantial payments to restore them.
Last week, a leak of files from Moscow revealed that Russian spy agencies tasked an IT company, NTC Vulkan, to develop cyberwarfare tools aimed at taking down infrastructure networks and scouring the internet for vulnerabilities.
The NCF says it is willing to try to knock out an adversary’s cyber capability if necessary, but argues that it can often be more effective to degrade their “ability to acquire, analyse and exploit the information they need”.
It describes this as the “doctrine of cognitive effect”, by which it is hoped that it is possible to affect opponents’ “perception of the operating environment and weaken[ing] their ability to plan and conduct activities effectively”.
Simply eliminating computer servers or networks may have a more dramatic impact in the short term, but the NCF says lost equipment can often easily be replaced, which is why a longer-term psychological strategy is favoured.
Britain has been very coy about revealing any specific details about cyber operations, which could be interpreted by hostile states as a form of attack. But in the past officials have privately acknowledged hacking into computer networks run by Islamic State in 2017, before the NCF was unveiled.skip past newsletter promotion
The hack obtained details about how IS was obtaining drones and related missiles, and how and where pilots were trained, enabling coalition forces to destroy the capability, and reduce the military threat to ground forces in Iraq and Syria.
The NCF’s head, whose name is also being publicly revealed, is James Babbage, a GCHQ officer for the last 30 years, making him one of only four British spies whose names are in the public domain. The other three are the heads of Britain’s intelligence agencies, GCHQ, MI5 and MI6.
Jeremy Fleming, the head of GCHQ, said publishing the policy paper was intended to demonstrate the UK was a “truly responsible cyber power”. The NCF, he added was necessary to allow the UK to “contest and compete with adversaries in cyberspace” and to “protect our free, open and peaceful society”.
… as 2023 gathers pace, and you’re joining us from India, we have a small favour to ask. A new year means new opportunities, and we're hoping this year gives rise to some much-needed stability and progress. Whatever happens, the Guardian will be there, providing clarity and fearless, independent reporting from around the world, 24/7.
Times are tough, and we know not everyone is in a position to pay for news. But as we’re reader-funded, we rely on the ongoing generosity of those who can afford it. This vital support means millions can continue to read reliable reporting on the events shaping our world. Will you invest in the Guardian this year?
Unlike many others, we have no billionaire owner, meaning we can fearlessly chase the truth and report it with integrity. 2023 will be no different; we will work with trademark determination and passion to bring you journalism that’s always free from commercial or political interference. No one edits our editor or diverts our attention from what’s most important.
With your support, we’ll continue to keep Guardian journalism open and free for everyone to read. When access to information is made equal, greater numbers of people can understand global events and their impact on people and communities. Together, we can demand better from the powerful and fight for democracy.
No comments:
Post a Comment