24,000 files stolen from defense contractor: Pentagon

Jul 15, 2011 by Chris Lefkow

A foreign intelligence service swiped 24,000 computer files from a US defense contractor in March in one of the largest ever cyberattacks on a Pentagon supplier, a top Defense Department official revealed on Thursday.

"It is a significant concern that over the past decade, terabytes of data have been extracted by foreign intruders from of defense companies," Deputy Defense Secretary William Lynn said.

"In a single intrusion this March, 24,000 files were taken," Lynn said in a speech at National Defense University here outlining the Pentagon's strategy in cyberspace.

Speaking to reporters after his speech, Lynn described the theft of data from the unidentified defense contractor as "significant" and one of the largest ever.

"It was large -- 24,000 files," he said. "It was data-related to systems that are being developed for the Department of Defense.

"It was done, we think, by a foreign intelligence service," he said. "In other words a nation state was behind it."

China has been blamed for a number of probes of US corporate and military computer systems over the past few years but Lynn declined to point the finger at any specific suspects in the March intrusion.

"We don't get into our understanding of exactly who it was," he said.

Lynn said the data theft had "compromised information relative to the design of military equipment" but had not "set us back in terms of the development of the system."

In his speech, Lynn said some of the data stolen by intruders is "mundane, like the specifications for small parts of tanks, airplanes, and submarines.

"But a great deal of it concerns our most sensitive systems, including aircraft avionics, surveillance technologies, satellite communications systems, and network security protocols," he said.

"The cyber exploitation being perpetrated against the defense industry cuts across a wide swath of crucial military hardware, extending from missile tracking systems and devices to UAVs (unmanned aerial vehicles, or drones) and the Joint Strike Fighter," he said.

Lynn also said he did not believe the March intrusion involved the use of SecurID tokens that were stolen from US computer security titan RSA Security in a sophisticated hacking attack in March.

RSA's parent company, EMC Corp. has acknowledged that intruders breached its security systems at defense contractor Lockheed Martin in May using data swiped from RSA.

Outlining the Defense Department's strategy in cyberspace, Lynn said the Pentagon considers cyberspace an operational domain, like land, air, sea and space.

"Treating cyberspace as a domain means that the military needs to operate and defend its networks, and to organize, train and equip its forces to perform cyber missions," he said.

"In the 21st Century, bits and bytes can be as threatening as bullets and bombs," he said. "Keystrokes originating in one country can impact the other side of the globe in the blink of an eye."

Lynn said information technology has become so important to US military operations that it "virtually guarantees that future adversaries will target our dependence on it.

"Our assessment is that cyber attacks will be a significant component of any future conflict, whether it involves major nations, rogue states, or terrorist groups," he said.

Lynn said US military power served as a deterrent against from a nation state but "if a terrorist group gains disruptive or destructive cyber tools, we have to assume they will strike with little hesitation."

The thrust of the Defense Department's cyber strategy is defensive, he said, and "it should come as no surprise that the United States is prepared to defend itself.

"Just as our military organizes to defend against hostile acts from land, air and sea, we must also be prepared to respond to hostile acts in cyberspace," he said.

"Accordingly, the United States reserves the right, under the laws of armed conflict, to respond to serious cyber attacks with a proportional and justified military response at the time and place of our choosing," he said.

Lynn, who was accompanied by Marine General James Cartwright, vice chairman of the Joint Chiefs of Staff, declined to elaborate on US offensive cyber capabilities or what would constitute an act of war in cyberspace.

"It's a judgment," Cartwright said of an act of war. "It's subjective. It's in the eye of the beholder."

Explore further: Quantenna promises 10-gigabit Wi-Fi by next year

add to favorites email to friend print save as pdf

Related Stories

Too much hysteria over cyber attacks: US experts

Feb 15, 2011

Overblown talk of full-on cyber war between nations fueled by recent attacks like the computer worm Stuxnet could hamper Internet security efforts, officials and experts warned Tuesday.

US urges NATO to build 'cyber shield'

Sep 15, 2010

NATO must build a "cyber shield" to protect the transatlantic alliance from any Internet threats to its military and economic infrastructures, a top US defence official said Wednesday.

Destructive cyber attack inevitable: NSA chief

Feb 18, 2011

The US National Security Agency (NSA) chief on Thursday urged top computer security specialists to harden the nation's critical infrastructure against inevitable destructive cyber attacks.

Recommended for you

Quantenna promises 10-gigabit Wi-Fi by next year

19 hours ago

(Phys.org) —Quantenna Communications has announced that it has plans for releasing a chipset that will be capable of delivering 10Gbps WiFi to/from routers, bridges and computers by sometime next year. ...

Tech giants look to skies to spread Internet

Apr 16, 2014

The shortest path to the Internet for some remote corners of the world may be through the skies. That is the message from US tech giants seeking to spread the online gospel to hard-to-reach regions.

Wireless industry makes anti-theft commitment

Apr 16, 2014

A trade group for wireless providers said Tuesday that the biggest mobile device manufacturers and carriers will soon put anti-theft tools on the gadgets to try to deter rampant smartphone theft.

Dish Network denies wrongdoing in $2M settlement

Apr 15, 2014

The state attorney general's office says Dish Network Corp. will reimburse Washington state customers about $2 million for what it calls a deceptive surcharge, but the satellite TV provider denies any wrongdoing.

Netflix's Comcast deal improves quality of video

Apr 14, 2014

Netflix's videos are streaming through Comcast's Internet service at their highest speeds in the past 17 months now that Netflix is paying for a more direct connection to Comcast's network.

User comments : 0

More news stories

Sony's PlayStation 4 sales top seven million

Sony says it has sold seven million PlayStation 4 worldwide since its launch last year and admitted it can't make them fast enough, in a welcome change of fortune for the Japanese consumer electronics giant.

Robotics goes micro-scale

(Phys.org) —The development of light-driven 'micro-robots' that can autonomously investigate and manipulate the nano-scale environment in a microscope comes a step closer, thanks to new research from the ...

Biologists help solve fungi mysteries

(Phys.org) —A new genetic analysis revealing the previously unknown biodiversity and distribution of thousands of fungi in North America might also reveal a previously underappreciated contributor to climate ...