BNET UK
silicon.com
ZDNet UK

Home
News
Blogs
Reviews
Videos
Jobs
Resources
Community

Leader
Comment
White Papers
Downloads
Special Reports

Hardware
Software
Communications
Internet
Security
IT Management
Emerging Tech
Leader

Group Blogs
News Blog
Post Room
Rupert's Diary

Hardware Reviews
Software Reviews
Editors' Choice
Buyer's Guides
Tech Guides
Competitions

Dialogue Box
Security threats
Server platforms
Mobile devices
Application development
Full video index

Articles
White Papers
Downloads
Companies
Broadband Speed Test

People
Competitions
Post Room
FAQ

You are here: ZDNet UK > News > Security

Security threats Toolkit

CIA: Cyberattack caused multi-city blackout

Tags:
Evidence,
Analyst,
Demands,
Institute

Tom Espiner ZDNet.co.uk

Published: 21 Jan 2008 12:58 GMT

The CIA has said that a cyberattack caused a power blackout in multiple cities in a country outside the US. Security training body the Sans Institute reported the CIA's disclosure on Friday.

CIA senior analyst Tom Donahue told a Sans Institute conference in New Orleans on Wednesday that the CIA had evidence of successful cyberattacks against various countries' critical national infrastructures.

"We have information that cyberattacks have been used to disrupt power equipment in several regions outside the US," said Donahue. "In at least one case, the disruption caused a power outage affecting multiple cities."

Donahue added that the CIA does not know who executed the attacks or why, but that all of the attacks involved "intrusions through the internet".

The CIA analyst added that his organisation had evidence of blackmail demands following demonstrations of successful intrusions.

Read this

Feature: Cracking open the cybercrime economy

Hacking for fun has evolved into hacking for profit, and created a business model that is nearly as sophisticated as that of legal software

"We have information, from multiple regions outside the US, of cyber-intrusions into utilities, followed by extortion demands," said Donahue. "We suspect, but cannot confirm, that some of these attackers had the benefit of inside knowledge."

The CIA does not normally make this information public. According to Donahue, the CIA actively and thoroughly considered the benefits and risks of making this information public, and came down on the side of disclosure, the Sans Institute reported.

Alan Paller, director of research at the Sans Institute, warned over three years ago about demonstrations of denial of service to computer systems, followed by demands for cash.

Governments prepare for 'cyber cold war'
MI5 warns of Chinese digital espionage
Burglars plunder Verizon's London data centre
Cyberterrorism: Myth or reality?
Explaining the Estonian cyberattacks
The worst IT security incidents of 2007
Cracking open the cybercrime economy
Countering corporate espionage
Anatomy of a hack attack
Storm worm anniversary brings fresh variants
CIA: Cyberattack caused multi-city blackout
Schneier: Cyber-extortion on the rise

Did you find this article useful?
3 out of 5 people found this useful

Share this article:
Digg
Slashdot
Del.ici.ous
Stumble
Reddit

In association with Network Liberation Movement

More in this Special Report

Governments prepare for 'cyber cold war'

There has been a sea change over the past year in the amount of government-sanctioned cyber-espionage, according to some security experts. more

MI5 warns of Chinese digital espionage

MI5 has issued a warning to UK businesses that spies in China are conducting a campaign of cyber-espionage against them. more

Burglars plunder Verizon's London data centre

Criminals posing as policemen conned their way into a data centre near London's King's Cross station, tying up staff and stealing computing equipment, the Metropolitan Police said on Friday. more

Cyberterrorism: Myth or reality?

Following recent accusations of government-sanctioned digitial espionage and alleged hacking attacks from China and Russia, there seems to be evidence that countries are capable of using electronic means to disrupt the computer systems of rival nations. more

Explaining the Estonian cyberattacks

When it comes to denial-of-service attacks, Jose Nazario has seen just about everything. more

The worst IT security incidents of 2007

Despite the message being driven home by governments, consumer groups and industry bodies that IT security is paramount, this year has thrown up a worrying number of serious breaches. more

Cracking open the cybercrime economy

Hacking for fun has evolved into hacking for profit, and created a business model that is nearly as sophisticated as that of legal software more

Countering corporate espionage

Theft of commercially valuable information costs the world's largest companies over £22bn a year, and small firms are just as vulnerable. How can you mitigate the risks to your company? more

Anatomy of a hack attack

With the help of security experts we reconstruct a typical hack attack on two large organisations and walk through the steps that the head of IT should follow in such a case more

Storm worm anniversary brings fresh variants

The first anniversary of the Storm worm has brought a fresh wave of variants, security companies have warned more

CIA: Cyberattack caused multi-city blackout

The CIA has warned of successful attacks against various countries' critical national infrastructures more

Schneier: Cyber-extortion on the rise

The security expert has warned of an increase in cyber-extortion, but added there is no need for panic about attacks on critical national infrastructures more