US ran offensive cyber ops to support Ukraine, says general
Public acknowledgement 'unusual', one cybersec exec tells us
America's military conducted offensive cyber operations to support Ukraine in its response to Russia's illegal invasion, US Cyber Command chief General Paul Nakasone has said.
"We've conducted a series of operations across the full spectrum; offensive, defensive, [and] information operations," General Nakasone told Sky News in an interview that aired Wednesday.
Nakasone, who also serves as director of the NSA, didn't provide specific details about the offensive operations, though he said they were lawful and complied with US policy.
"My job is to provide a series of options to the secretary of defense and the President, and so that's what I do," he said.
White House press spokesperson Karine Jean-Pierre doubled down on the message, saying: "We don't negotiate our security assistance packages to Ukraine. We are doing exactly what the President said he would do ... to provide security assistance that is above and beyond."
Tom Kellermann, head of cybersecurity strategy at VMware, called the move "historic."
"Since 2013, the Russians have waged an insurgency in American cyberspace and our retaliation and disruption has been muted," Kellermann, who is also a global fellow for cyber policy at the Wilson Center, told The Register.
"The paradigm has changed as Russia must play defense now," he continued. "The US brings to bear the formidable capabilities of Cyber Command against rogue nation states. Cyberspace is a new domain for warfare."
Tenable CEO Amit Yoran added: "That the US has engaged in offensive cyber operations should be of no surprise to anyone. There are very few countries around the globe today who do not use such measures. The fact that these operations are acknowledged in a public way is unusual."
Last month, the US and the European Union officially blamed Russia for a series of a destructive data-wiping malware infections in Ukrainian government and private-sector networks that began in January, and continued after Russian troops invaded Ukraine the following month.
At the time, the governments also said they would "take steps" to defend against and respond to Kremlin-orchestrated attacks.
And while President Joe Biden has indicated the US would respond with kinetic force to a major cyberattack against the West, General Nakasone's comments are the first confirmation of US-sanctioned hacking against Russia.
- US Cyber Command shored up nine nations' defenses last year
- US, Europe formally blame Russia for data wiper attacks against Ukraine, Viasat
- 'Peacetime in cyberspace is a chaotic environment' says senior US advisor
- Iran, China-linked gangs join Putin's disinformation war online
Nakasone did, in May, reveal that US Cyber Command conducted nine "hunt forward" operations last year, sending teams to different countries including Ukraine to help them improve their defensive security posture and hunt for cyberthreats.
These missions provide "security for our nation in cyberspace," Nakasone said during a Summit on Modern Conflict and Emerging Threats at Vanderbilt University. "It provides an inoculation of these threats, and it provides a partnership with a nation that has asked us for assistance."
In fact, the agency's first hunt-forward exercise sent a Cyber Command team to Ukraine in 2018 with the goal to "understand what our adversaries are doing, being able to capture that and then being able to share it," Nakasone said. That adversary, although he didn't name names, is presumably Russia.
When asked by Sky News journalist Alex Martin, formerly of this parish, about the risk of Russian attacks targeting the US, General Nakasone said: "We remain vigilant every single day. Every single day. I think about it all the time." ®
- Advanced persistent threat
- Black Hat
- Bug Bounty
- Central Intelligence Agency
- Common Vulnerability Scoring System
- Cybersecurity and Infrastructure Security Agency
- Cybersecurity Information Sharing Act
- Data Breach
- Data Protection
- Data Theft
- Digital certificate
- Federal government of the United States
- Five Eyes
- Foreign Intelligence Surveillance Act
- Identity Theft
- Kenna Security
- New Mexico
- Palo Alto Networks
- Remote Access Trojan
- RSA Conference
- Trusted Platform Module
- United States Armed Forces
- United States Department of Commerce
- US Treasury
- Zero trust