US cyber attack: Did America really try to override the Russian power grid?

Oliver Carroll

19 June 2019 at 3:33 am

On Saturday, readers of The New York Times were offered a glimpse of a grave new world of cyber warfare. The United States had successfully performed offensive operations against Moscow, readers were told, undermining key parts of Russian infrastructure. The details were scarce but astonishing: malware “implants” had been engineered inside the Russian power grid, ready to turn off electricity supply to homes, hospitals and schools at a moment’s notice. The operation, moreover, was kept to a need-to-know basis — with the president kept largely in the dark, lest he spilt the beans to Mr Putin. The article created a storm at home, not least from the president himself. Donald Trump described it as a “virtual act of Treason” (sic) and its writers — "true cowards." Reaction was excited in Moscow too, with state news agencies describing the dawn of “a new cold cyber war.” The Kremlin, while insisting its secret services had the matter under control, was largely happy to agree. “This information means there is a hypothetical possibility of cyber war,” spokesman Dmitry Peskov said on Monday. Yet for all the fear and excitement created by the article, big questions remain about the nature of the US operation it described. Not least: Why was Russia being tipped off about supposedly important US assets in the Russian power grid? Had they been found? If the operation was real, how much did it represent a change in the normal state of affairs? And why was the news being broken now?Cyber tensions between Russia and the West are not new. The first act of cyberwar assigned to Russia can be traced back to at least 2007, when a decision by Estonian authorities to move a Soviet war memorial provoked weeks of DDOS attacks. Then, Estonian banks, governmental bodies and the media were all targeted. The systems weren’t penetrated, but authorities were forced to disengage from the external internet to free traffic. For several days, those accessing the Estonian web from outside received 404 messages. Russia’s guilt was never conclusively proven at the time but Toomas Hendrik Ilves, President of Estonia at the time, was far from the only one to put the blame at the Kremlin’s door. The incident was “a massive annoyance” rather than an emergency, he told The Independent. But the lack of an international response laid the foundations for more serious operations later. These operations, it is alleged, included hacking power grids in Ukraine from 2015 onwards, attempts to infiltrate US civilian infrastructure and the operation to disrupt the 2016 US presidential elections. Under pressure to take action in response to these alleged attacks, in 2017 Barack Obama made an unusual move by of announcing he had ordered retaliatory cyber operations against Russia. The operations were part of a broader set of measures that included diplomatic expulsions, he said, but the cyber part would be kept secret. By that point, US active capability in cyber was already well-known — as early as 2009 it successfully planted malware into Iranian nuclear centrifuges, described as by a former CIA director as a game-changer equivalent to Hiroshima — but never before had the cyber capacity been so openly publicised. It is unclear to what extent these retaliatory operations were ever completed, or how the power grid operation described by the newspaper on Saturday offered any new intelligence capacity. As the New York Times article admitted, power grids have been "low-intensity battleground for years."That context would suggest message was as important as the operation itself, said Philip Ingram, a former British military intelligence officer and cyber expert. At a minimum, whoever leaked the information to the New York Times was “playing with the serotonin levels” of their Russian counterparts, he suggested. “Every country is looking to develop warfare either by physically doing something or perception that they can do something,” he told The Independent. “The Russians themselves are masters at creating an impression that far exceeds real capacity, whether that be in unrealistic hypersonic missiles or unaffordable next-generation tanks. The Americans, it seems, are simply catching up.”Saying that software has been implanted on the power grid doesn’t necessarily mean that it has, the security expert added — but what it does "is create doubt and it sets the adversary off on what may be a wild goose chase.” Arguably the one unambiguous moment of the article is its explicit criticism of President Trump. That the president was not informed of such an operation is arguably permissible under a presidential memorandum he signed in 2018, authorizing quick offensive operations against foreign adversaries. But the doubts over the president's ability to handle such information, as expressed by "pentagon and security sources" in the NY Times article, underlines long-running tensions between the White House and wider US establishment. John Sipher, a former head of CIA Russia operations, told The Independent that he too focused on the assertion that the national security establishment was cutting out the President."I can fully imagine that being the case," he said. "Trump is so untethered, ignorant and unable to focus, the majority of the government is probably trying to ... avoid engaging him." This point has been picked up by Russian media, who have suggested the leak had been designed to “sabotage” negotiations at the G20 summit. Russia has itself yet to disclose what it knows about the alleged American power grid operation, if indeed it knows anything at all. On Monday, an unnamed security source gave only a general statement, claiming the Russian security services had managed to “neutralise a growing number of attacks.” On Tuesday, spokesman Peskov offered underwhelming details of a "DDOS attack" on the President’s “Direct Line” Q&A with the nation, the next instalment of which is due on Tuesday. What is clear is that Washington and Moscow are both signed up to the principle of cyber warfare — meaning the road ahead could be as ambiguous as it is fraught. “Cyberwar is not yet well defined in international law," said Mr Ingram. "And when it becomes part of a disinformation operation by whatever side, things become dangerous.”

US cyber attack: Did America really try to override the Russian power grid?

On Saturday, readers of The New York Times were offered a glimpse of a grave new world of cyber warfare. The United States had successfully performed offensive operations against Moscow, readers were told, undermining key parts of Russian infrastructure. The details were scarce but astonishing: malware “implants” had been engineered inside the Russian power grid, ready to turn off electricity supply to homes, hospitals and schools at a moment’s notice. The operation, moreover, was kept to a need-to-know basis — with the president kept largely in the dark, lest he spilt the beans to Mr Putin. The article created a storm at home, not least from the president himself. Donald Trump described it as a “virtual act of Treason” (sic) and its writers — "true cowards." Reaction was excited in Moscow too, with state news agencies describing the dawn of “a new cold cyber war.” The Kremlin, while insisting its secret services had the matter under control, was largely happy to agree. “This information means there is a hypothetical possibility of cyber war,” spokesman Dmitry Peskov said on Monday. Yet for all the fear and excitement created by the article, big questions remain about the nature of the US operation it described. Not least: Why was Russia being tipped off about supposedly important US assets in the Russian power grid? Had they been found? If the operation was real, how much did it represent a change in the normal state of affairs? And why was the news being broken now?Cyber tensions between Russia and the West are not new. The first act of cyberwar assigned to Russia can be traced back to at least 2007, when a decision by Estonian authorities to move a Soviet war memorial provoked weeks of DDOS attacks. Then, Estonian banks, governmental bodies and the media were all targeted. The systems weren’t penetrated, but authorities were forced to disengage from the external internet to free traffic. For several days, those accessing the Estonian web from outside received 404 messages. Russia’s guilt was never conclusively proven at the time but Toomas Hendrik Ilves, President of Estonia at the time, was far from the only one to put the blame at the Kremlin’s door. The incident was “a massive annoyance” rather than an emergency, he told The Independent. But the lack of an international response laid the foundations for more serious operations later. These operations, it is alleged, included hacking power grids in Ukraine from 2015 onwards, attempts to infiltrate US civilian infrastructure and the operation to disrupt the 2016 US presidential elections. Under pressure to take action in response to these alleged attacks, in 2017 Barack Obama made an unusual move by of announcing he had ordered retaliatory cyber operations against Russia. The operations were part of a broader set of measures that included diplomatic expulsions, he said, but the cyber part would be kept secret. By that point, US active capability in cyber was already well-known — as early as 2009 it successfully planted malware into Iranian nuclear centrifuges, described as by a former CIA director as a game-changer equivalent to Hiroshima — but never before had the cyber capacity been so openly publicised. It is unclear to what extent these retaliatory operations were ever completed, or how the power grid operation described by the newspaper on Saturday offered any new intelligence capacity. As the New York Times article admitted, power grids have been "low-intensity battleground for years."That context would suggest message was as important as the operation itself, said Philip Ingram, a former British military intelligence officer and cyber expert. At a minimum, whoever leaked the information to the New York Times was “playing with the serotonin levels” of their Russian counterparts, he suggested. “Every country is looking to develop warfare either by physically doing something or perception that they can do something,” he told The Independent. “The Russians themselves are masters at creating an impression that far exceeds real capacity, whether that be in unrealistic hypersonic missiles or unaffordable next-generation tanks. The Americans, it seems, are simply catching up.”Saying that software has been implanted on the power grid doesn’t necessarily mean that it has, the security expert added — but what it does "is create doubt and it sets the adversary off on what may be a wild goose chase.” Arguably the one unambiguous moment of the article is its explicit criticism of President Trump. That the president was not informed of such an operation is arguably permissible under a presidential memorandum he signed in 2018, authorizing quick offensive operations against foreign adversaries. But the doubts over the president's ability to handle such information, as expressed by "pentagon and security sources" in the NY Times article, underlines long-running tensions between the White House and wider US establishment. John Sipher, a former head of CIA Russia operations, told The Independent that he too focused on the assertion that the national security establishment was cutting out the President."I can fully imagine that being the case," he said. "Trump is so untethered, ignorant and unable to focus, the majority of the government is probably trying to ... avoid engaging him." This point has been picked up by Russian media, who have suggested the leak had been designed to “sabotage” negotiations at the G20 summit. Russia has itself yet to disclose what it knows about the alleged American power grid operation, if indeed it knows anything at all. On Monday, an unnamed security source gave only a general statement, claiming the Russian security services had managed to “neutralise a growing number of attacks.” On Tuesday, spokesman Peskov offered underwhelming details of a "DDOS attack" on the President’s “Direct Line” Q&A with the nation, the next instalment of which is due on Tuesday. What is clear is that Washington and Moscow are both signed up to the principle of cyber warfare — meaning the road ahead could be as ambiguous as it is fraught. “Cyberwar is not yet well defined in international law," said Mr Ingram. "And when it becomes part of a disinformation operation by whatever side, things become dangerous.”

On Saturday, readers of The New York Times were offered a glimpse of a grave new world of cyber warfare.

The United States had successfully performed offensive operations against Moscow, readers were told, undermining key parts of Russian infrastructure. The details were scarce but astonishing: malware “implants” had been engineered inside the Russian power grid, ready to turn off electricity supply to homes, hospitals and schools at a moment’s notice. The operation, moreover, was kept to a need-to-know basis — with the president kept largely in the dark, lest he spilt the beans to Mr Putin.

The article created a storm at home, not least from the president himself. Donald Trump described it as a “virtual act of Treason” (sic) and its writers — "true cowards." Reaction was excited in Moscow too, with state news agencies describing the dawn of “a new cold cyber war.”

The Kremlin, while insisting its secret services had the matter under control, was largely happy to agree. “This information means there is a hypothetical possibility of cyber war,” spokesman Dmitry Peskov said on Monday.

Yet for all the fear and excitement created by the article, big questions remain about the nature of the US operation it described. Not least: Why was Russia being tipped off about supposedly important US assets in the Russian power grid? Had they been found? If the operation was real, how much did it represent a change in the normal state of affairs? And why was the news being broken now?

Cyber tensions between Russia and the West are not new. The first act of cyberwar assigned to Russia can be traced back to at least 2007, when a decision by Estonian authorities to move a Soviet war memorial provoked weeks of DDOS attacks. Then, Estonian banks, governmental bodies and the media were all targeted. The systems weren’t penetrated, but authorities were forced to disengage from the external internet to free traffic. For several days, those accessing the Estonian web from outside received 404 messages.

Russia’s guilt was never conclusively proven at the time but Toomas Hendrik Ilves, President of Estonia at the time, was far from the only one to put the blame at the Kremlin’s door. The incident was “a massive annoyance” rather than an emergency, he told The Independent. But the lack of an international response laid the foundations for more serious operations later.

These operations, it is alleged, included hacking power grids in Ukraine from 2015 onwards, attempts to infiltrate US civilian infrastructure and the operation to disrupt the 2016 US presidential elections.

Under pressure to take action in response to these alleged attacks, in 2017 Barack Obama made an unusual move by of announcing he had ordered retaliatory cyber operations against Russia. The operations were part of a broader set of measures that included diplomatic expulsions, he said, but the cyber part would be kept secret. By that point, US active capability in cyber was already well-known — as early as 2009 it successfully planted malware into Iranian nuclear centrifuges, described as by a former CIA director as a game-changer equivalent to Hiroshima — but never before had the cyber capacity been so openly publicised.

It is unclear to what extent these retaliatory operations were ever completed, or how the power grid operation described by the newspaper on Saturday offered any new intelligence capacity. As the New York Times article admitted, power grids have been "low-intensity battleground for years."

That context would suggest message was as important as the operation itself, said Philip Ingram, a former British military intelligence officer and cyber expert. At a minimum, whoever leaked the information to the New York Times was “playing with the serotonin levels” of their Russian counterparts, he suggested.

“Every country is looking to develop warfare either by physically doing something or perception that they can do something,” he told The Independent. “The Russians themselves are masters at creating an impression that far exceeds real capacity, whether that be in unrealistic hypersonic missiles or unaffordable next-generation tanks. The Americans, it seems, are simply catching up.”

Saying that software has been implanted on the power grid doesn’t necessarily mean that it has, the security expert added — but what it does "is create doubt and it sets the adversary off on what may be a wild goose chase.”

Arguably the one unambiguous moment of the article is its explicit criticism of President Trump. That the president was not informed of such an operation is arguably permissible under a presidential memorandum he signed in 2018, authorizing quick offensive operations against foreign adversaries. But the doubts over the president's ability to handle such information, as expressed by "pentagon and security sources" in the NY Times article, underlines long-running tensions between the White House and wider US establishment.

John Sipher, a former head of CIA Russia operations, told The Independent that he too focused on the assertion that the national security establishment was cutting out the President.

"I can fully imagine that being the case," he said. "Trump is so untethered, ignorant and unable to focus, the majority of the government is probably trying to ... avoid engaging him."

This point has been picked up by Russian media, who have suggested the leak had been designed to “sabotage” negotiations at the G20 summit.

Russia has itself yet to disclose what it knows about the alleged American power grid operation, if indeed it knows anything at all. On Monday, an unnamed security source gave only a general statement, claiming the Russian security services had managed to “neutralise a growing number of attacks.” On Tuesday, spokesman Peskov offered underwhelming details of a "DDOS attack" on the President’s “Direct Line” Q&A with the nation, the next instalment of which is due on Tuesday.

What is clear is that Washington and Moscow are both signed up to the principle of cyber warfare — meaning the road ahead could be as ambiguous as it is fraught.

“Cyberwar is not yet well defined in international law," said Mr Ingram. "And when it becomes part of a disinformation operation by whatever side, things become dangerous.”

Chronicle Live
This Morning's Ben Shephard calls halt to ITV show as 'distressing' news breaks
This Morning host Ben Shephard called a halt to the ITV show as breaking news came into the studio live on air
2 days ago
Daily Record
ITV For the Love of Dogs fans fume over Alison Hammond's 'bad habit' as ratings plummet
For the Love of Dogs viewers were left infuriated as they pointed out a 'bad habit' of presenter Alison Hammond's during the latest episode of the ITV show, which has seen ratings plummet.
2 days ago
Daily Record
Giant rat found trapped in Glasgow garden bird feeder as homeowner left horrified
The moment was filmed by a Pollok resident who was left disgusted after spotting the vermin from her kitchen window in the Templeland Road area of Glasgow.
23 hours ago
OK! Magazine
Prince William gives 14-word update on Kate Middleton during surprise school visit
Prince William made a surprise visit to a school in the West Midlands today, where he issued a 14-word update on his wife, Kate Middleton, amid her cancer treatment
14 hours ago
Birmingham Live
Meghan Markle's 'three-word reply' to Prince Harry's 'unexpected interruption' at event
Meghan Markle and Prince Harry made their first public appearance alongside Prince William and Kate Middleton in 2018, but a Royal author has claimed it was marred by an awkward moment
2 days ago
Leicestershire Live
ITV For the Love of Dogs fans spot Alison Hammond's 'bad habit' as ratings plummet
For the Love of Dogs viewers were left fuming during the latest episode of the long-running ITV show
19 hours ago
Edinburgh Live
Dad with six months to live gets 'second shot of life' as Edinburgh medics make surprising discovery
Callum Laing, 40, was diagnosed with a stage 4 Glioblastoma brain tumour, after he had been suffering from intense headaches - but surgeons in Edinburgh have made a surprising discovery.
a day ago
Chronicle Live
Martin Lewis issues 'urgent' three-digit code for anybody who has bank account
The ITV The Martin Lewis Money Show star, who is a BBC Sounds podcast host too, spoke out on Twitter/X over how to get in touch with your bank urgently
a day ago
Lancashire Live
Down-on-his-luck dad collared on M6 in BMW packed with shopping bags
Officers said it was 'possibly the biggest seizure in recent years' - and Leonard Simpson was offered £2,000 to get it to Scotland
2 days ago
Manchester Evening News
Ben Shephard steps in as Cat Deeley breaks into tears over emotional loss on This Morning
The pair were back at the helm of the ITV daytime show when Cat struggled through tears over their latest interview
21 hours ago
Manchester Evening News
Two men caught having sex in Lidl car park bushes
Police officers had received reports of two men 'exposing themselves'
a day ago
INSIDER
I tried Gordon Ramsay's favorite 10-minute pasta and now I know why he makes it every week
Gordon Ramsay swears by this easy 10-minute pasta dish, which he said has become a "regular midweek family meal" in his house.
a day ago
The Independent
Mastermind behind Red Bull’s success ‘to leave F1 team’ in wake of Christian Horner scandal
Adrian Newey, the man behind Max Verstappen’s current domination of F1, has been at Red Bull since 2006
16 hours ago
The Telegraph
Humza has delivered a final blow to Nicola Sturgeon
Whatever the long-term electoral consequences of the ending of the SNP-Greens agreement, Humza Yousaf has at last seized one of the most important elements in politics: the initiative.
22 hours ago
Futurism
Orbiter Spots "Spiders" on Surface of Mars
Martian Creepy Crawlers The European Space Agency's Mars Express orbiter has spotted mysterious "spiders" roaming the Red Planet's southern polar region. But they're not the arachnids we've come to fear back on Earth — they're the result of a complex geological process that causes carbon dioxide to sublimate, bringing darker material from below the surface […]
18 hours ago
Yahoo News UK
Moment members of public step in to calm horse charging through London
Footage taken by a Brazilian tourist shows several pedestrians stepping to soothe the black horse which caused damage after running through the London streets on Wednesday.
2 days ago
The Telegraph
Horse trainer accused of rape and murder found dead at home
A horse trainer who was accused of the murder and rape of a showjumper he was in an “illicit relationship” with has been found dead before the second day of his trial was set to begin.
a day ago
Manchester Evening News
Marcus Rashford fires three-word Manchester United 'abuse' message amid exit talk
Manchester United star Marcus Rashford took to social media in the middle of the night to hit back at his critics
2 hours ago
Prevention
Archaeologists Discovered an ‘Unprecedented’ Ancient Monument That Could Rewrite History
It’s practically impossible.
2 days ago
Manchester Evening News
'You think you're something of a gangster - you need to come down a peg or two'
A judge said Jack Brenan had 'small man syndrome' after he strangled his ex-girlfriend in a jealous rage
2 hours ago

Latest stories