US, Iran dig in for long cyber war

Jun 02, 2012 by Rob Lever

The United States and Iran are locked in a long-running cyber war that appears to be escalating amid a stalemate over Tehran's disputed nuclear program.

The Flame virus that surfaced recently may be part of the face-off, but Washington probably has more sophisticated tools at its disposal, security specialists say.

"Large nations with large have been using these kinds of techniques for more than a decade," said James Lewis, a senior fellow who monitors technology at the Center for Strategic and International Studies in Washington.

Lewis said cyber is "not a weapon" but can be "very effective" as an intelligence tool and can avoid some of the problems with traditional surveillance such as spy planes.

"If you have to choose between this and a pilot being paraded through the streets of Tehran, this is much preferable," he said.

But Lewis noted that the Flame virus is more primitive than one would expect from US .

"I hope it wasn't the US that developed it because it isn't very sophisticated," he told AFP.

He said Israel has quite advanced capabilities as well, and that this probably means Flame was developed in a "second-tier country."

Some analysts, however, consider Flame to be highly sophisticated. The said the virus is "a lot more complex than any other ever seen before."

Johannes Ullrich, a computer security specialist with the SANS Technology Institute, said Flame is a rather "clumsy" tool compared to other types of malware, but that it may be a rough version or prototype which can be wrapped into a "more polished" version.

"The technical part isn't that great, and I think it has been a bit hyped in some of the reports," Ullrich said.

Exactly where the malware came from is impossible to know from the code, Ullrich said.

"It doesn't look like one single individual," he said. "Whether it is a government or some criminal group, it's hard to tell."

Marcus Sachs, former director of the SANS Institute's Internet Storm Center, said Flame "could be written by virtually anybody but it looks similar to targeted espionage from a country."

Sachs said Flame is not a sabotage tool like the Stuxnet virus that targeted control systems in Iran, but instead resembles spyware seeking "to gain intellectual property, but it could be surveillance by a foreign government."

Neither the US nor the Israeli government has openly acknowledged authoring Flame, though a top Israeli minister said use of the software to counter Iran's nuclear plans would be "reasonable."

The US military has acknowledged working on both defensive and offensive systems.

The Pentagon's Defense Advanced Research Projects Agency has revealed few details about its "Plan X," which it calls a "foundational cyber warfare program" that draws on expertise in academia, industry and the gaming community.

But a DARPA statement said the program is "about building the platform needed for an effective cyber offensive capability. It is not developing cyber offensive effects."

Sachs said the US has been open about developing its cyber capabilities and that DARPA, which created the Internet, is looking at longer-term projects that may involve technologies not yet deployed.

On the surface, it might be harder for the US to maintain superiority in cyberspace as it does in the skies, for example, because the costs for computer programming is far less than for fighter planes.

But experts say the US is investing in cyberspace through DARPA and other projects.

Still, Sachs said measuring the capabilities of another country are not as easy as counting missile silos. "There's no way to measure what a country has," he said.

The New York Times reported that President Barack Obama secretly ordered cyber warfare against Iran to be ramped up in 2010 after details leaked out about Stuxnet, which some say came from the US, Israel or both.

Ilan Berman, an analyst at of the American Foreign Policy Council who follows Iran, said that with cyber war simmering, Tehran is boosting its defensive and offensive capabilities.

"They feel like there is a campaign against them and they are mobilizing in response," he said.

And the US should therefore be prepared for cyber retaliation from Iran.

"I think a cyber attack by Iran may not be as robust (as one from China or Russia) but politically it's more likely," he said.

Lewis said the US and Iran have been engaged in struggles for the past decade, due to the nuclear issue and suspected Iran involvement with certain forces in Iraq while US forces were deployed there.

But he said Flame and other cyber weapons are "not really warfare, it's primarily intelligence collection."

Lewis said he was not surprised that the discovery of the virus came from a Russian security firm, Kaspersky, which worked with the ITU.

" is a way to drive Russia's diplomatic agenda," which includes bringing the Internet under UN control, Lewis said.

Explore further: LinkedIn membership hits 300 million

add to favorites email to friend print save as pdf

Related Stories

Iran 'mobilizing' for cyberwar with West: experts

Apr 26, 2012

Iran is busy acquiring the technical know-how to launch a potentially crippling cyber-attack on the United States and its allies, experts told a congressional hearing on Thursday, urging the US to step up ...

Obama stepped up cyberattacks on Iran: report

Jun 01, 2012

US President Barack Obama accelerated cyberattacks on Iran's nuclear program and expanded the assault even after the Stuxnet virus accidentally escaped in 2010, the New York Times reported Friday.

Flame virus a new age cyber spy tool

May 31, 2012

The Flame computer virus that smoldered undetected for years in Middle Eastern energy facilities confirmed fears that the world has entered a new age of cyber espionage and sabotage.

Cyber war might never happen: researcher

Oct 10, 2011

Cyber war, long considered by many experts within the defence establishment to be a significant threat, if not an ongoing one, may never take place according to Dr. Thomas Rid of King’s College London.

Iran moves websites to avoid cyber attacks

Dec 22, 2011

Iran has moved most of its government websites to local hosts to protect them from cyber attacks, the country's deputy communications minister said on Thursday.

Report: Iran's paramilitary launches cyber attack

Mar 14, 2011

(AP) -- Iranian hackers working for the powerful Revolutionary Guard's paramilitary Basij group have launched attacks on websites of the "enemies," a state-owned newspaper reported Monday in a rare acknowledgment from Iran ...

Recommended for you

LinkedIn membership hits 300 million

Apr 18, 2014

The career-focused social network LinkedIn announced Friday it has 300 million members, with more than half the total outside the United States.

Researchers uncover likely creator of Bitcoin

Apr 18, 2014

The primary author of the celebrated Bitcoin paper, and therefore probable creator of Bitcoin, is most likely Nick Szabo, a blogger and former George Washington University law professor, according to students ...

White House updating online privacy policy

Apr 18, 2014

A new Obama administration privacy policy out Friday explains how the government will gather the user data of online visitors to WhiteHouse.gov, mobile apps and social media sites. It also clarifies that ...

User comments : 1

Adjust slider to filter visible comments by rank

Display comments: newest first

gwrede
not rated yet Jun 02, 2012
Ilan Berman, an analyst at of the American Foreign Policy Council who follows Iran, said that with cyber war simmering, Tehran is boosting its defensive and offensive capabilities.

"They feel like there is a campaign against them and they are mobilizing in response," he said.
No crap, honestly?

And about the nukes, maybe they have a hard time understanding why a dozen countries have nukes and it's okay, but for them, no way.

(Not that I'd let them either.)

More news stories

Ex-Apple chief plans mobile phone for India

Former Apple chief executive John Sculley, whose marketing skills helped bring the personal computer to desktops worldwide, says he plans to launch a mobile phone in India to exploit its still largely untapped ...

Airbnb rental site raises $450 mn

Online lodging listings website Airbnb inked a $450 million funding deal with investors led by TPG, a source close to the matter said Friday.

Health care site flagged in Heartbleed review

People with accounts on the enrollment website for President Barack Obama's signature health care law are being told to change their passwords following an administration-wide review of the government's vulnerability to the ...

A homemade solar lamp for developing countries

(Phys.org) —The solar lamp developed by the start-up LEDsafari is a more effective, safer, and less expensive form of illumination than the traditional oil lamp currently used by more than one billion people ...

NASA's space station Robonaut finally getting legs

Robonaut, the first out-of-this-world humanoid, is finally getting its space legs. For three years, Robonaut has had to manage from the waist up. This new pair of legs means the experimental robot—now stuck ...

Filipino tests negative for Middle East virus

A Filipino nurse who tested positive for the Middle East virus has been found free of infection in a subsequent examination after he returned home, Philippine health officials said Saturday.

Egypt archaeologists find ancient writer's tomb

Egypt's minister of antiquities says a team of Spanish archaeologists has discovered two tombs in the southern part of the country, one of them belonging to a writer and containing a trove of artifacts including reed pens ...