Pentagon Discloses Network Breach By Russian Hackers

← Back to Stories (view on slashdot.org)

Pentagon Discloses Network Breach By Russian Hackers

Posted by Soulskill on Friday April 24, 2015 @04:21AM from the digital-diplomatic-incident dept.

An anonymous reader writes: The Pentagon has disclosed that Russian hackers were able to breach one of its secure networks earlier this year, and referred to the attack as a "worrisome" incident. "Earlier this year, the sensors that guard DOD's unclassified networks detected Russian hackers accessing one of our networks," said defense secretary Ash Carter yesterday during a speech at Stanford University. Carter warned Russia that the U.S. Department of Defense would retaliate with cyber campaigns should it see fit. "Adversaries should know that our preference for deterrence and our defensive posture don't diminish our willingness to use cyber options if necessary," said Carter. He added in a prepared statement that the Russian hackers had been able to gain access to an "unclassified network" but had been "quickly identified" by a team of cyberattack experts who managed to block the hackers "within 24 hours." The cybersecurity response team had quickly analyzed the hack patterns and code and identified the intruders as Russian, before "kicking them off the network."

64 comments

Min score:

Reason:

Sort:

Bet I can guess the solution by Anonymous Coward · 2015-04-24 04:25 · Score: 0

Another 10 billion dollars.
1. Re:Bet I can guess the solution by Meshach · 2015-04-24 04:42 · Score: 4, Insightful
  
  Another 10 billion dollars.
  The point of the article is not the Pentagon saying that they need more money to thwart future attacks. It is to let people know that attacks like this do occur and are being handled swiftly.
  
  --
  "Maybe this world is another planet's hell"
  Aldous Huxley
2. Re:Bet I can guess the solution by Anonymous Coward · 2015-04-24 04:49 · Score: 0
  
  As always 0 proof
3. Re:Bet I can guess the solution by Krojack · 2015-04-24 05:14 · Score: 1, Informative
  
  The fact that my network is seeing a 10 fold increased attacks from Russian IP's over the past 2-3 years is enough to lead me to believe what's being said here is true. Still doesn't beat China but Russia is very quickly gaining ground.
4. Re:Bet I can guess the solution by sinij · 2015-04-24 05:17 · Score: 2
  
  It is to let people know that attacks like this do occur and are being handled swiftly.
  In this cases handled swiftly measured in seconds, when it is measured in days it means that attackers had a chance to upload everything they had access to.
5. Re:Bet I can guess the solution by X.25 · 2015-04-24 06:01 · Score: 2
  
  The fact that my network is seeing a 10 fold increased attacks from Russian IP's over the past 2-3 years is enough to lead me to believe what's being said here is true. Still doesn't beat China but Russia is very quickly gaining ground.
  And how, exactly, those "attacks" look like?
6. Re:Bet I can guess the solution by Max_W · 2015-04-24 06:10 · Score: 4, Interesting
  
  ...attacks from Russian IP's...
  One should realize that there are a lot "pirated" Windows OS installations in Russia. I would guess more than 90%.
  These PCs do not have Windows Update, since the OS is not authentic. And consequently hoards of different viruses, trojans and bot-networks run on them. The masters of these malicious networks could mount cyber activity from the IPs' of unsuspecting owners.
  I would advise a Pentagon delegation to visit a Russian megalopolis for a cultural exchange trip and learn the real situation on the ground, before retaliating with cyber campaigns on poor people.
7. Re:Bet I can guess the solution by Anonymous Coward · 2015-04-24 06:45 · Score: 1
  
  Yeah, and to let people know the US has a magical purple unicorn which can pinpoint the country of origin of a 50-deep proxy chain cyber attack on a world map. F34r.
  Well ok, in reality, there sure can be various signs of the origin of a complex attack, there can be indications because of the specificity of the target, there can be some level of tracking through at least international sea optical fiber cables and satellites, US-intelligence-friendly countries, honey pot/controlled proxies/Tor nodes, inside knowledge from moles, and general spying activities... But when a country publicly accuses another of a cyber attack, whatever the facts, you can be certain it's mostly just PR, provocation, and budget 'justification'/seeking...
8. Re: Bet I can guess the solution by Anonymous Coward · 2015-04-24 06:46 · Score: 0
  
  That's true that there are lots of pirated Windows installs in Russia - Win7 is most popular, but absence of updates is total BS.
  All cracked win install bundles I know of are cracked properly - M$ acceps them as genuine and lets updates flow.
  Consider it US sanctions payback :)
  Another thing is lamers who set updates on manual and forget them. But, it'inernational thing I guess.
9. Re:Bet I can guess the solution by Anonymous Coward · 2015-04-24 09:17 · Score: 0
  
  As always 0 proof
  ... and Saddam had WMDs and ties to Al-Qaeda. ... and Assad used chemical weapons on his people. ... and we support freedom and democracy... except in Saudi Arabia, Egypt, UAE, and all those puppet dictators we backed in South America, and the Shah, and...
  But, *trust us* this time.
10. Re:Bet I can guess the solution by Anonymous Coward · 2015-04-24 09:38 · Score: 0
  
  Sssh... the NSA/CIA/GCHQ *need* those bot'ted machines to create hacks that look like they come from Russia.
  How else are they going to convince everyone we're under "threat" 24/7/365 and we need access to everything you do?
11. Re:Bet I can guess the solution by redwraith94 · 2015-04-24 13:36 · Score: 1
  
  Yes, "Quickly identified" "Within 24 hours" I love that.
  
  --
  I art more snarky, and terse than thou. I art Slashdot!
12. Re:Bet I can guess the solution by Krojack · 2015-04-25 04:28 · Score: 1
  
  One should realize that there are a lot "pirated" Windows OS installations in Russia. I would guess more than 90%.
  Every pirated version of windows I have used, including the one I'm using right this second, has been getting updates from MS.
13. Re:Bet I can guess the solution by Max_W · 2015-04-25 04:51 · Score: 2
  
  This may have an appearance of being updated. But by what and by whom? It is obvious that if a "Windows OS" costs USD 0.- it is not the Windows as we know it.
14. Re: Bet I can guess the solution by Anonymous Coward · 2015-04-25 12:25 · Score: 0
  
  Oh yeah chain that proxy around the world a few times bounce off a wifi router or two even root a few phones and tunnel between them oh and don't forget to jump across a few trusted domains and their open proxies and then might as well set up a few of your own right Who would block google and amazon.
  Now whats Mooxie1
15. Re:Bet I can guess the solution by Krojack · 2015-05-06 09:43 · Score: 1
  
  The fact that I can see what host and IPs it's connecting to and downloading the patch files (which are all owned by MS) tells me they are legit.
secure network? by Anonymous Coward · 2015-04-24 04:31 · Score: 1

Apparently their definition of "secure network" is different from what I thought it was.
1. Re:secure network? by Anonymous Coward · 2015-04-24 04:43 · Score: 0
  
  Operation Honeypot successful, cover story must be maintained to enhance credulity. It will keep the Russians busy for a few years as they look over plans for upcoming armour plated drones and exo suits.
2. Re:secure network? by Anonymous Coward · 2015-04-24 04:49 · Score: 2, Informative
  
  It isn't what you think - as an isolated network.
  There are thousands of connections between the secure net and the unclassified network due to the amount of data that must be transferred. Even where I worked 20 years ago, the amount of data being transferred by tapes was many GB per hour - and tape handling was too slow to keep up.
  And the summary is incorrect. The penetration was of an unclassified network. From the article itself:
  "The United States on Thursday disclosed a cyber intrusion this year by Russian hackers who accessed an unclassified U.S. military network, in a episode Defense Secretary Ash Carter said showed the growing threat and the improving U.S. ability to respond."
3. Re:secure network? by halivar · 2015-04-24 04:58 · Score: 1
  
  No, no, they should be looking over fake plans to raise thebattleship Yamato and put her into space. Go big, or go home.
  Or... maybe those are the real plans?
4. Re:secure network? by antiperimetaparalogo · 2015-04-24 05:04 · Score: 1
  
  Apparently their definition of "secure network" is different from what I thought it was.
  A "secure network", depending on security and networking requirements, may be a "network" that -to be useful- is connected to external resources (thus "bad guys" may attempt to connect), and "secure" enough to detect unauthorized access, so further actions could be taken (i.e., dealing with the "bad guys").
  
  --
  Antisthenes: "Wisdom begins by examining the words/names." - excuse my English, i am (slightly...) better with my Greek!
5. Re:secure network? by Etherwalk · 2015-04-24 05:15 · Score: 2
  
  No, no, they should be looking over fake plans to raise thebattleship Yamato and put her into space. Go big, or go home.
  Or... maybe those are the real plans?
  It had 18" guns, the biggest ones ever built for sea and in violation of international arms agreements. If you fire them from space, they're space guns!
6. Re:secure network? by __aabppq7737 · 2015-04-24 05:35 · Score: 1
  
  also sinkholing terabytes of information daily from bitcoin and exploit cloud. Thanks for contributing.
7. Re:secure network? by halivar · 2015-04-24 05:39 · Score: 1
  
  If you fire them from space, they're space guns!
  And if you control them from an iPhone, they're n guns!
8. Re:secure network? by smooth+wombat · 2015-04-24 05:43 · Score: 1
  
  18" guns firing in space? Feh. Come to me when you have a wave motion gun.
  
  --
  We will bankrupt ourselves in the vain search for absolute security. -- Dwight D. Eisenhower
9. Re:secure network? by higuita · 2015-04-24 06:34 · Score: 1
  
  Details, check the damn details!!
  1- there is also a agreement to not put weapons on space
  2- Money! you would need a HUGE amount of fuel to put something that big on space, even if piece by piece... probably too expensive for any country.
  3- physic laws:
  if you fired those guns on space, you would start to move away from the target... so on each fire round you would need to correct the velocity and position, quickly wasting all your fuel
  So yes, damn details!! :)
  
  --
  Higuita
10. Re:secure network? by Etherwalk · 2015-04-24 15:25 · Score: 1
  
  Details, check the damn details!!
  1- there is also a agreement to not put weapons on space
  2- Money! you would need a HUGE amount of fuel to put something that big on space, even if piece by piece... probably too expensive for any country.
  3- physic laws:
  if you fired those guns on space, you would start to move away from the target... so on each fire round you would need to correct the velocity and position, quickly wasting all your fuel
  So yes, damn details!! :)
  I like to think they would be smart enough to fire the shells by dropping them...
  In the alternative, you could just fire the guns on both ends of the ship simultaneously...
Retaliate, really? by Anonymous Coward · 2015-04-24 04:42 · Score: 0

If we "retaliated" every time some sergeant's Windows XP laptop got infected with crimeware and brought it on base, we'd be at war.
Without supporting details, this is just posturing.
Fortunately, the Russians didn't find the WOPR on those unclassified networks.
1. Re:Retaliate, really? by Anonymous Coward · 2015-04-24 06:26 · Score: 0
  
  ... we'd be at war.
  You are.
2. Re:Retaliate, really? by Anonymous Coward · 2015-04-24 07:31 · Score: 0
  
  We are.
  The term "cyberwar" is truly happening, and we are not on the winning side because most US companies don't give a rat's ass about security ("Security has no ROI... and we can get Tata/InfoSys/Geek Squad to fix anything if we get hacked.")
  It only is a matter of time before there is loss of life on a large scale due to a deliberate action done by a remote party.
Don't block by phorm · 2015-04-24 04:45 · Score: 1

If you're know they're in, wouldn't it be better to turn the "breach" into a honeypot?
Let them into a secured system which looks useful, but in reality feeds them bad data.
1. Re:Don't block by gstoddart · 2015-04-24 04:48 · Score: 3, Insightful
  
  You're attributing far more skill and competence than they deserve.
  If they couldn't keep them out, no way in hell they could come up with a working deception in a short amount of time.
  Kicking them out in "less than 24 hours"? Wow, way to go there guys.
  
  --
  Lost at C:>. Found at C.
2. Re:Don't block by Anonymous Coward · 2015-04-24 05:14 · Score: 0
  
  http://en.wikipedia.org/wiki/ATF_gunwalking_scandal
Cyber Options by Trepidity · 2015-04-24 04:52 · Score: 2

Sounds like an R-rated 1990s film.

--
10 PRINT CHR$(205.5+RND(1)); : GOTO 10
im sure the operation was a great success. by nimbius · 2015-04-24 04:54 · Score: 4, Interesting

Russian hackers: we've successfully infiltrated the pentagons secret networks and have accessed their innermost classified projects. With this information we can plan accordingly our first strikes, retaliatory actions, and offensive as well as defensive capabilities in response to the scourge of american aggression
Russian political scientists: We've successfully modelled American capitalism over the last 40 years and have concluded that following two failed wars, two government shutdowns, rampant unemployment, gridlocked congress and senate, unsustainable student loan markets, widespread racism and fascism in local law enforcement, unfunded social security and public highways fund and an unchecked unenforceable labor and investment sector the united states will itself collapse into Mad Max style ruin after about 15 years.
Kremlin: Then it is decided. Cancel our hacking teams budget, slash defense, and clear my schedule for the next decade. Oh and get some popcorn.

--
Good people go to bed earlier.
1. Re:im sure the operation was a great success. by Anonymous Coward · 2015-04-24 05:10 · Score: 0
  
  Yeah, because the Russian system of fascist oligarchic cleptocratia works so much better ...
2. Re:im sure the operation was a great success. by Anonymous Coward · 2015-04-24 05:49 · Score: 1
  
  Yeah, because the Russian system of fascist oligarchic cleptocratia works so much better ...
  It's looking more and more like the American system of fascist oligarchic cleptocratia. Capitalism lost, because it created too much complacency.
3. Re:im sure the operation was a great success. by Anonymous Coward · 2015-04-24 06:25 · Score: 0
  
  We will bury you.
4. Re:im sure the operation was a great success. by CaptainDork · 2015-04-24 06:42 · Score: 1
  
  Cleopatra was ogled in archaic times.
  
  --
  It little behooves the best of us to comment on the rest of us.
5. Re:im sure the operation was a great success. by Anonymous Coward · 2015-04-26 04:34 · Score: 0
  
  Yeah, because the Russian system of fascist oligarchic cleptocratia works so much better ...
  The Russians are communist NOT! fascist. WE! are the fucking fascist. Dude using non-words like oligarchic and cleptocratia Don't make you look smart. Cleptocratia isn't even a real word. Spell check doesn't have it. WE are the fascist look up the fucking word and then compare the definition to our actions and you will clearly see it fit. You really show stupid here saying the Russians are fascist. They aren't and never have been. I'm not saying their government is any better or worse just correcting your stupid here. They're communist always have been. (Where you been living under a fuckin rock?).
  You're just helping the US cover up their own shit by not calling what it really is. It isn'r poo poo or feces If it is brown and stinks and came out of your ass it is shit! The US is not democratic, or even any of your non-words (oligarchic cleptocratia) The US is a fascist state plain and simple. So call it so. Accept the truth and own up to it. We are the new Nazis of the world.
  BTW buy a fucking dictionary read it and learn to use the right words when you talk. God damn English isn't even my native language and I have a better grasp on it than you.
defend? by Gravis+Zero · 2015-04-24 04:55 · Score: 2

Carter cited the newly declassified incident during an address at Stanford University, in which he also warned the Pentagon was ready to help defend America's networks and to use cyber weaponry, if needed.
so instead of hoarding exploits you are going to patch them? or will you hold companies liable for poorly written software? or maybe require CS students learn how to write secure software? or publish a free OS that is secure by default?
the Department of Defense was previously named the Department of War for a good reason.

--
Anons need not reply. Questions end with a question mark.
1. Re:defend? by Anonymous Coward · 2015-04-24 05:02 · Score: 0
  
  hAOrrrrrDGNI XpL01ts 1$ h4RM-FuLl fR0 @Ll POalpE.
2. Re:defend? by rtb61 · 2015-04-24 14:10 · Score: 2
  
  Don't you get it, it works the American way. Eye for an Eye. One person from a country attacks me, then I am allowed to attack anyone from that country for any reason and in any way, as well as attack all those from that country who would try to stop be attacking some one in that country.
  So in computer parlance, let's all play the electromagnetic pulse game because that is really going to work so well for everyone.
  
  --
  Chaos - everything, everywhere, everywhen
The Rocky and Bullwinkle Show by MagickalMyst · 2015-04-24 05:08 · Score: 2

Rocky: "Hey, what's the meaning of this?"

Agent: "Military intelligence. That phrase mean anything to you?"

Rocky: "It sounds like a contradiction of terms."

--
Political correctness is really just herd psychology pushed by insecure people who desperately seek social conformity.
Help the civillians! by DraconPern · 2015-04-24 05:20 · Score: 1

Come on, so tell us (small US biz) how we can also prevent these attacks. Between virus (expensive to clean up) and anti-virus (expensive to buy), small biz in the US are under a lot of pressure.
1. Re:Help the civillians! by Anonymous Coward · 2015-04-24 05:46 · Score: 0
  
  Use an MSP like most Small US Biz, then patching and anti-virus are quite a bit cheaper than trying to deploy it yourself. They also help running security audits and a whole host of other features depending on the company.
2. Re:Help the civillians! by Coren22 · 2015-04-24 06:00 · Score: 1
  
  It seems pretty obvious how they protected themselves in this case, but if you find AV expensive, you won't like it.
  They use IDS and IPS systems.
  http://en.wikipedia.org/wiki/I...
  http://en.wikipedia.org/wiki/I...
  
  --
  APK likes to ask for responses to the same things over and over. Maybe he just likes the responses?
Help the civillians? by Anonymous Coward · 2015-04-24 05:41 · Score: 1

The U.S. Joint Cyber-Security Cyber-warfare Cyber Task Force Command Center recommends the following action:
Unplug your computer.
1. Re:Help the civillians? by Anonymous Coward · 2015-04-24 09:24 · Score: 0
  
  The U.S. Joint Cyber-Security Cyber-warfare Cyber Task Force Command Center recommends the following action:
  Unplug your computer.
  Definitely NOT!!!! OMG, if you do that how are they going to spy on you?
Re:Pentagon Penetrated in Backdoor by GayWAD by davester666 · 2015-04-24 06:28 · Score: 1

Sorry, but the Soviet Gulag found you.
And it's great that you finally came out of the closet. Now we all know, for sure, that Anonymous Coward is gay. Sure, we all just assumed it was true all along, but now we know.

--
Sleep your way to a whiter smile...date a dentist!
Money ... by CaptainDork · 2015-04-24 06:44 · Score: 1

... is the root of all solutions.

--
It little behooves the best of us to comment on the rest of us.
Meatspace by Anonymous Coward · 2015-04-24 06:56 · Score: 0

Until there are consequences in meatspace, this behavior is not going to stop. Whether this was by organized crime elements in Russia or ordered by Putin himself (although, today, what's really the difference?), cyber-for-cyber is simply not going to cut it.
dem haxx0rz by Anonymous Coward · 2015-04-24 07:34 · Score: 0

de new pinko commie ruskies
In the meantime by Anonymous Coward · 2015-04-24 07:45 · Score: 0

while we make this out as unacceptable and hoping to draw ire towards the whole Russian people, we will just continue to attack the networks of every other country on the planet, as if it's our right.
Because "We tell the truth" by thebes · 2015-04-24 08:25 · Score: 1

Trademark of USG.
Within 24 hours? by Anonymous Coward · 2015-04-24 08:35 · Score: 0

You mean within 24 hours of us doing something to purposely alert you to our presence so we could test your reaction? Yeah. That's what I thought.
Sensors guarding the Pentagon's networks? by DougPaulson · 2015-04-24 08:38 · Score: 1

"Carter said that sensors guarding the Pentagon's unclassified networks detected the intrusion by Russian hackers, who discovered an old vulnerability that had not been patched."

Maybe they were looking for evidence of the UFO coverup and the intrusion consisted of logging into a passwordless WindowsNT box. ref

"On Thursday, Carter stressed the U.S. military needed closer cooperation with California's Silicon Valley, particularly after high-profile attacks on companies like Sony Pictures Entertainment."

How is putting backdoors into 'computers' going to make them more secure from hacking?
Propaganda by MrL0G1C · 2015-04-24 09:51 · Score: 1

Yawn, Pentagon gets hacked regularly I'm sure. This isn't news - it's been made news because some bigwig wants to demonise Russia, hence scary Russian hackers story.
NSA, CIA of course never hack anybody.

--
Waterfox - a Firefox fork with legacy extension support, security updates and better privacy by default.
Why months to notify public? by Anonymous Coward · 2015-04-24 14:02 · Score: 0

So months ago Russian's penetrated secure pentagon computer systems which the pentagon identified the breach right away. But took months to come out and admit it? What were they waiting for? Everyone says the government is years behind in technology defense and offense. Another one of the US weaknesses as if we did not have enough of them. Obama probably needs more money for his worthless green projects because we know the worst threat is not ISIS, Russia, Iran but rather climate change. You think climate problems are bad now. Wait till Iran goes nuclear and drops a bomb somewhere because some nut head in Iran wants to wipe them off the map.
Excuse to target Russia by Anonymous Coward · 2015-04-25 17:52 · Score: 0

It seems to me that an unknown person(s) from Russia accessed a US honeypot. This would provide a perfect excuse for America to "respond" against any party in Russia and point to this if they get caught.