Peak Oil is You
Donate Bitcoins ;-) or Paypal :-)
Page added on December 2, 2016
Destructive Hacks Strike Saudi Arabia
State-sponsored hackers have conducted a series of destructive attacks on Saudi Arabia over the last two weeks, erasing data and wreaking havoc in the computer banks of the agency running the country’s airports and hitting five additional targets, according to two people familiar with an investigation into the breach.
Saudi Arabia said after inquiries from Bloomberg News that “several” government agencies were targeted in attacks that came from outside the Kingdom, according to state media. No further details were provided.
Although a probe by Saudi authorities is still in its early stages, the people said digital evidence suggests the attacks emanated from Iran. That could present President-elect Donald Trump with a major national security challenge as he steps into the Oval Office.
The use of offensive cyber weapons by a nation is relatively rare and the scale of the latest attacks could trigger a tit-for-tat cyber war in a region where capabilities have mushroomed ever since an attack on Saudi Aramco in 2012.
Unlike the Aramco attack or the one by North Korea against Sony Pictures in 2014, the latest was perpetrated by detonating a cyber weapon inside the networks of several targets at once, the people said. Concerns over a broader campaign set off a search in computer networks throughout the Gulf for more traces of the digital bomb.
No one was available to comment at the Iranian foreign ministry or at the Iranian presidency’s media relations department. Wednesday was a public holiday and Thursday is the start of the Iranian week-end.
The ferocity of the attacks appear to have caught Saudi officials by surprise. Thousands of computers were destroyed at the headquarters of Saudi’s General Authority of Civil Aviation, erasing critical data and bringing operations there to a halt for several days, according to the people familiar with the investigation.
There have been no reports of widespread transportation interruptions at the King Khalid International Airport in Riyadh or the other major airports. A spokesman for the aviation authority in Riyadh didn’t immediately respond to phone calls and emails requesting comment.
The people familiar with the probe didn’t identify the other targets but one said they were all inside Saudi Arabia and included other government ministries in the kingdom, a country where information is highly controlled. Extensive damage occurred at four of the entities but the virus was halted by defensive measures at the other two.
The U.S. considers Iran a major cyberwar adversary, one that has repeatedly demonstrated a willingness to use digital attacks. U.S. officials have said Iran was behind months of strikes in 2012 against the websites of major U.S. banks and the infiltration of a small dam 20 miles north of New York City the following year. They said Iran was also behind the attack on Aramco, the world’s largest oil company, which destroyed 35,000 computers within hours.
Iran itself has been the victim of cyberstrikes, with experts saying that the U.S. and Israel were behind an attack that used the so-called Stuxnet virus to disable operations at an Iranian nuclear enrichment plant at the start of the decade.
Tensions appeared to ease after the Iranian government reached a nuclear-nonproliferation deal last year with five members of the United Nations Security Council, an accord shepherded by the U.S.
As a candidate, Trump said little about cyber security but he has taken a consistently hard line on relations with Iran, including saying he would tear up the nuclear deal.
Investigators piecing together the computer destruction are trying to determine a motive for the attacks, which occurred between Trump’s election and key OPEC meetings, the people said.
“Anyone who did this attack knows it has implications for the nuclear deal,” said James Lewis, director of the strategic technologies program at the Center for Strategic and International Studies in Washington.
Lewis was responding to a description of the incident but didn’t have direct knowledge of it. He said the attacks “could be a shot over the bow by Iran” or possibly the work of another country mimicking Iran in hopes of derailing the accord with a provocative act.
So far, investigators have found no evidence to suggest a country other than Iran was involved in the attacks, the people briefed on the probe say. However, it’s also possible that attacks of these kind can be mimicked to make them look like they come from a particular country.
“Some of these are signaling operations, testing the threshold. Is the response going to be just a speech or is it going to be something more?” asked Melissa Hathaway, a senior adviser at Harvard University’s Belfer Center and former cyber official in both the Obama and Bush administrations. Like Lewis, she spoke generally and without direct knowledge of the Saudi incident.
“The next president and his team will have to grapple with these questions probably in the first month, maybe even the first 72 hours,” she said.
The attacks were conducted with the same malware, known as Shamoon, that devastated Saudi Aramco in 2012. Although hackers usually add enhancements to malware to advance its capabilities and make it harder to detect, they used exactly the same file as in the Aramco incident, the people familiar with the investigation said.
Shamoon overwrites files and renders the infected computers inoperable by destroying the master boot record. It spreads quickly throughout a network, causing destruction like the digital version of a wildfire.
In a similar move in 2014, Iranian hackers managed to destroy most of the computer network of Sheldon Adelson’s Sands Corp., after the casino magnate angered Iranian leaders by publicly suggesting the use nuclear weapons against the country. The U.S. publicly cited Iran as the culprit.
Concerned there might be additional targets, investigators working the latest case began alerting governments and companies last week. They quietly distributed digital indicators that can be used to determine if the Iranian malware is hiding in other networks. The first samples of the malware used in the latest attack were uploaded on Nov. 16, likely indicating the date of the first attack, according to records from VirusTotal, a malware library.
Though he in not involved in the investigation, Tony Lawrence, chief executive officer of VOR Technology, a Hanover, Maryland-based cyber-security firm, said the attacks, as described, sounded like display of power by Iran.”They’re saying, ‘We’re not here to be messed with, and if you do, we’ll retaliate.'”
14 Comments on "Destructive Hacks Strike Saudi Arabia"
Anonymous on Fri, 2nd Dec 2016 6:16 pm
‘Stars and stripes’ huh? Reporting on an ‘alleged state sponsored’ hack. On a loyal uS colony. The state sponsoring this so-called ‘attack’?
Why that would be Iran of course (former uS colony).
Some quick facts
-These guys have no way of knowing if a ‘hack’ was ‘state sponsored’ or not.
-‘Hacking’ is not an ‘attack’. Punching someone in the head, is an attack. Invading or attempting to overthrow a soverign peoples gov’t, is an attack.
“Though he in not involved in the investigation, Tony Lawrence, chief executive officer of VOR Technology, a Hanover, Maryland-based cyber-security firm, said the attacks, as described, sounded like display of power by Iran.”They’re saying, ‘We’re not here to be messed with, and if you do, we’ll retaliate.’”
Iran has made no such statement to my knowledge, and it is unlikely they would. Nor has one iota of evidence been provided they were involved in any way.
Statements from distant(really distant) 3rd parties like this, are Boat-tard level useless. And stupid. Really.
Dis-information, false flag, full of speculation, leading statements and hearsay. IoW, all the hallmarks of amerikan ‘journalism’.
makati1 on Fri, 2nd Dec 2016 7:40 pm
First: “Gee! We don’t know how much oil we shipped! The “terrorists” destroyed our shipping record!
Second: The S&S is a government political propaganda rag. good only for selling weapons or wiping your butt.
penury on Fri, 2nd Dec 2016 9:39 pm
As I remember Mak wiping your butt with the S and S was not something you did twice.
makati1 on Fri, 2nd Dec 2016 11:05 pm
Thanks Penury, I needed a laugh. The dyes used in the flags are probably toxic and the material definitely rough. Maybe that’s why they burn so easily? ^_^
GregT on Sat, 3rd Dec 2016 12:25 am
“Ninety-four percent or $3.6 million worth of the flags imported into the U.S. last year came from China, according to data from the U.S. Census Bureau.”
“Foreign-made flags present “a serious threat,” to the industry Chris Binner, the vice president of marketing and sales for flagmaker Valley Forge, told The Huffington Post.”
http://www.huffingtonpost.com/2013/07/03/american-flags-china_n_3540287.html
makati1 on Sat, 3rd Dec 2016 3:51 am
When Valley Forge employees will work for $1 per hour, 12+ hours a day, no benefits, the jobs will come back. Not before.
Boat on Sat, 3rd Dec 2016 5:15 am
Annoyness,
Iran is on a path to be spanked like N Korea. They have yet to learn the rules of the game. That’s what globalization is all about. This is bigger than hating Jews.
Anonymous on Sat, 3rd Dec 2016 7:29 am
lol…
joe on Sat, 3rd Dec 2016 10:04 am
The neocons told Bush after the Iraq occupation ‘real men, go to Tehran’. Phase one of genocide is grouping your target people (all shia now under the same umbrella from Damascus to the Oxus), the next phase is to isolate and weaken them (US attacks justified by a major false flag somewhere), then create the conditions of poor access to victims by withdrawing or blocking anyone that could do anything. This almost worked when Isis drove out the Iraqi army and isolated Syrias Allawites but they just wouldnt die, now the US HAS to step in. Energy independence sheilds the US from the coming horror, the US has to pin down Russia and Turkey has to destroy Syria, then somehow
Iran must be weakened. A major war is the only way to do it. It would also have to sudden and quick, like in WW2.
https://en.m.wikipedia.org/wiki/Anglo-Soviet_invasion_of_Iran
Iran will be broken up in a civil war type scenario, then it will be picked apart over decades.
Eleo on Sat, 3rd Dec 2016 7:13 pm
Here we go – US getting ready to unleash it’s storm trooper, boot bullying dogs of war. False flags propaganda commences just in time for the new ‘mad dog’ Secretary of Defence to foam at the mouth and inform the new imbecile in the White House it’s time to make America great again.
makati1 on Sat, 3rd Dec 2016 7:20 pm
“In September, the Atlantic Council, a mainstream US geopolitical thinktank, published a report that predicted a Hobbesian world “marked by the breakdown of order, violent extremism [and] an era of perpetual war”. The new enemies were a “resurgent” Russia and an “increasingly aggressive” China. Only heroic America can save us.
There is a demented quality about this war mongering. It is as if the “American Century” — proclaimed in 1941 by the American imperialist Henry Luce, owner of Time magazine — has ended without notice and no one has had the courage to tell the emperor to take his guns and go home.”
http://www.globalresearch.ca/the-coming-war-on-china-nuclear-war-is-no-longer-a-shadow/5560156
What the emperor seems to forget is that Russia is China’s partner in commerce AND war. I see radioactive glass where American cities used to be, if this goes ahead.
Boat on Sat, 3rd Dec 2016 7:50 pm
mak,
You predict war results like you count barrels. A very poor track record.
Hey Trump and your prez talked. Trump wished the killer good luck with his war on drugs. Now the prez is a US lover. See how that worked. A little killing amount friends makes the world go round.
makati1 on Sat, 3rd Dec 2016 8:19 pm
Boat, you are still trying for the Biggest Asshole of America award? Good luck. Some on here are way ahead of you. LMAO
GregT on Sat, 3rd Dec 2016 8:29 pm
To be an asshole requires some semblance of intelligence Makati. Something that Kevin completely lacks.