Modern field guide to security and privacy

Major cyber-assaults on Ukraine, then Moscow, on eve of Crimea vote

A group calling itself Anonymous Russia, which knocked out a Kremlin website in 2012 to protest Putin's third term as president, may have signaled a role in the attack on the Moscow site. 

Andrei Udovichenko/AP
A convoy of trucks towing artillery canons moves on a road at a security check point near Chongar, Crimea, Ukraine, Friday. Russian troops have secured control of Crimea, which is set to hold a referendum on joining Russia on Sunday.

With a disputed vote in Crimea set for Sunday, a powerful eight-minute cyber-attack was launched against Ukraine Thursday in the form of a large denial-of-service attack, originating in Russia, that hammered a computer network, cyber-security experts said.

Thursday’s distributed denial-of-service attack (DDoS) against an unidentified computer network in Ukraine was notable for being 32 times larger than the largest known distributed denial of service (DDoS) attack during Russia’s invasion of Georgia in 2008, according to Arbor Networks, a Burlington, Mass.-based cyber-security company.

It was followed on Friday by a powerful DDoS attack that temporarily knocked out websites belonging to the Kremlin, the Russian central bank, and Foreign Ministry. But it’s unclear if that was a Ukrainian response, and Russian authorities said the attack had nothing to do with the Ukraine crisis.

"A powerful cyber-attack is under way on the [Kremlin] site," a spokeswoman for the Russian president's press service told Reuters during the disruption. The three sites were repaired and all working later on Friday.

A group calling itself Anonymous Russia cited the Kremlin website's attack on Twitter, perhaps signaling it was behind the attack. The same group claimed to have knocked out the website in 2012 to protest Putin’s third term as president.

Only a little is known about the powerful Thursday attack. Eight minutes is enough time to take down a site and cause an outage, according to Jason Jones, an Arbor Networks analyst. Depending on the robustness of the network gear in place it can take down the network support equipment and cause a more extended outage.

“There have been no other attacks in this size range originating in Russia and targeting Ukraine in the past week,” Mr. Jones wrote in an e-mail interview.

For two weeks it’s been mostly quiet on the cyber-conflict front between Ukraine and Russia – a handful of attacks defacing websites and some minor denial-of-service attacks notwithstanding.

A major cyber-espionage system called “Snake,” which appears likely to have infested Ukraine’s government computer systems, according to a recent report by BAE Systems, has been around for years. But such a system could be used by its originators – believed to be Russian – to conduct attacks.

The recent attacks, as well as any future attacks attempting to impair the Ukrainian government’s ability to coordinate a response to Russian activities in Crimea, may hinge on geopolitical movements outside Ukraine.

“If it does continue to heat up – if NATO goes ahead and puts in passive defensive surveillance systems and says to Ukraine, ‘here’s how we can help and signs a partnership agreement' – that’s a tripwire,” says Jason Healey, director of the Cyber Statecraft Initiative at the Atlantic Council, a national security think tank.

"If that happened," he says. “I would expect to see the Russians using cyber means to throw sand in the gears of the new government and make life a lot more difficult.”

You've read  of  free articles. Subscribe to continue.

Dear Reader,

About a year ago, I happened upon this statement about the Monitor in the Harvard Business Review – under the charming heading of “do things that don’t interest you”:

“Many things that end up” being meaningful, writes social scientist Joseph Grenny, “have come from conference workshops, articles, or online videos that began as a chore and ended with an insight. My work in Kenya, for example, was heavily influenced by a Christian Science Monitor article I had forced myself to read 10 years earlier. Sometimes, we call things ‘boring’ simply because they lie outside the box we are currently in.”

If you were to come up with a punchline to a joke about the Monitor, that would probably be it. We’re seen as being global, fair, insightful, and perhaps a bit too earnest. We’re the bran muffin of journalism.

But you know what? We change lives. And I’m going to argue that we change lives precisely because we force open that too-small box that most human beings think they live in.

The Monitor is a peculiar little publication that’s hard for the world to figure out. We’re run by a church, but we’re not only for church members and we’re not about converting people. We’re known as being fair even as the world becomes as polarized as at any time since the newspaper’s founding in 1908.

We have a mission beyond circulation, we want to bridge divides. We’re about kicking down the door of thought everywhere and saying, “You are bigger and more capable than you realize. And we can prove it.”

If you’re looking for bran muffin journalism, you can subscribe to the Monitor for $15. You’ll get the Monitor Weekly magazine, the Monitor Daily email, and unlimited access to CSMonitor.com.