06/02/99 - 08:30 CDT
Netwar: F0rpaxe Claims Credit For Government/Corporate Computer Attacks
By: C. L. Staten, ERRI Sr. National
Security AnalystA person or group calling itself "F0rpaxe" is today claiming credit for more than seventy-five (75) attacks on government and corporate computer systems in the United States and abroad. The attacks are allegedly being carried out in retaliation for recent Federal Bureau of Investigation (FBI) raids on suspected "crackers" in several U.S. cities.
According to government sources in Washington, the official website for the U.S. Department of the Interior and a national super-computer center in Idaho suffered from "graffiti attacks" over the Memorial Day weekend. Additionally, an officially unconfirmed report says that the National Infrastructure Protection Center, which is responsible for monitoring, preventing, and investigating computer attacks on the United States, has reportedly been taken off-line following denial-of-service attacks.(1)
The alleged perpetrator(s) in the most recent set of attacks have threatened to badly damage government systems unless the FBI discontinues its pursuit of "crackers" within the United States. In a statement purportedly issued by FOrpaxe, they are quoted as saying, "In fact, we could have done worse like destroying completely all servers. We can do it if we want but hackers are waiting for justice. If FBI doesn't stop...we won't and we can start destroying."
F0rpaxe explains the motivation for their attacks by saying, "We also take this chance to show our support with people who are now facing legal troubles, like I-L, dk, Zyklon...Kevin and all the others who will face them in the future...gH has also our support." The names given are those believed to have been raided or under investigation by federal authorities for computer-related crimes.
The "Kevin" mentioned in the FOrpaxe statement is believed to be convicted cracker Kevin Mitnick, who is currently serving time for computer crimes. "Zyklon" is alleged to be a member of a shadowy group called "Masterz of Downloading (MOD)," who claimed responsibility for the earlier attacks on White House and Senate sites. He is identified as Eric Burns, age 19, who was indicted in Virginia on three counts of computer intrusion.
The Debate Goes On: "Cyber-Terrorism"?
As previously discussed by this author in EmergencyNet News special report(2), a debate continues as to whether or the United States is under attack in the opening battles of a coming "Netwar,"(3) or if the problem only involves "a bunch of kids." People with divergent and viable viewpoints have weighed in on both sides of the issue and the seriousness of the question continues to be hotly debated in both government and corporate computer security circles.(4)
In light of this debate, let's examine, for a moment, whether or not these latest alleged attacks by F0rpaxe could constitute "terrorism" " as commonly defined by federal law.(5) Allegedly, these intrusions are being undertaken by a "foreign national" (M1crochip from Portugal). They are purportedly being carried out in an attempt to use fear and intimidation to halt a government investigation and/or change U.S. government policy towards a group of individuals. The intrusions are being directed at/on U.S. government property (computer systems) and are disrupting government services to the U.S. public. Some experts might disagree and suggest that it is necessary for violence to be associated with a computer attack,(6) before it can be considered "terrorism." But, given the available evidence, at least some counter-terrorist experts might agree that this current pattern meets most of the legal criteria necessary to call the F0rpaxe effort "a terrorist attack."
The Larger Issue
The more serious question at issue, some experts would suggest, is probably not the current nuisance attacks being perpetrated by individuals or small group of youthful disgruntled "crackers" with grandiose attitudes and limited personal motivations, but the possibility of serious asymmetric attacks(7) on a potentially vulnerable American infrastructure by ideological or religious zealots, military adversaries, or computer "mercenaries."(3) In the near term, the greater problem probably lies in the use of "disruption" computer attacks used as a force multiplier or diversional tactic... simultaneously with conventional explosives or other weapons.(4,7)
A number of computer analysts and anti- and counter-terrorists say that never in the history of the United States has it been as easy as it is now for an individual or small group of individuals to cause disproportionate damage to the vital underpinnings of a major democracy. They point to this latest series of attacks on government and corporate networks as merely the "tip of the iceberg" of potential vulnerability.(8)
Countering This New "Netwar"
According to Arquilla, Ronfeldt, Zanini, the best way to counter this asymmetric paradigm is to develop more innovative and adaptable networks than those of the adversary.(9) A valid example and discussion of such a non-traditional, multi-jurisdictional, and multi-agency networking strategy was presented by Robert J. Bunker in his 1998 article entitled "Defending Against the Non-State (Criminal) Soldier."(10)
Undoubtedly, other similar strategies and tactics will need to be explored in the foreseeable future, if we are to effectively defend against the constantly changing face of criminals, terrorists, ideologues and other malcontents. That is the challenge that lies before government, law enforcement, and counter-terrorist operatives and analysts is an age-old problem...to gather intelligence and adopt defensive strategies more rapidly than adversaries can develop new methods of attack.
References:
1. "Insurgency on the Internet; Hackers Target More Federal Computers," CNN, on the internet at: http://www.cnn.com/TECH/computing/9906/01/hackers/index.html
2. "Pentagon Computers Under Attack??" on the internet at: http://www.emergency.com/1999/iw-atk99.htm
3. "Countering the New Terrorism, Chap. 3, Networks, Netwar, and Information-Age Terrorism," by John Arquilla, David Ronfeldt, and Michele Zanini, Pg. 41, Rand Corporation, on the internet at: http://www.rand.org/publications/MR/MR989/MR989.pdf/
4. "Countering the New Terrorism, Chap. 4: Countering the New Terrorism: Implications for Strategy," by Ian O. Lesser, Pg. 91, Rand Corporation, on the Internet at: http://www.rand.org/publications/MR/MR989/MR989.pdf/
5. 18 U.S.C. sec. 921(a)(22)(C)(ii), on the internet at: http://www.itn.is/~edavid/law/intlaw07.html
6. Information Warfare and Security, by Dorothy E. Denning, published by Addison, Wesley, Longman, Inc., Pg. 69, definition of "cyberterrorism" by FBI Agent Mark Pollitt
7. "Asymmetric Warfare, the Evolution and Devolution of Terrorism; The Coming Challenge For Emergency and National Security Forces," Journal of Counterterrorism and Security International, Winter, 1999 edition, Vol. 5, No. 4, Pg. 8-11 and on the internet at: http://www.emergency.com/asymetrc.htm
8. "Bracing for Guerrilla Warfare in Cyberspace," CNN, quote from Fred B. Schneider, professor of computer science at Cornell University, who calls the national infrastructure "inherently vulnerable." On the internet at: http://cnn.com/TECH/specials/hackers/cyberterror/
9. "Countering the New Terrorism, Chap. 3, Networks, Netwar, and Information-Age Terrorism," by John Arquilla, David Ronfeldt, and Michele Zanini, Pg. 55, Rand Corporation, on the internet at: http://www.rand.org/publications/MR/MR989/MR989.pdf/
10. "Defending Against the Non-State (Criminal) Soldier; Toward a Domestic Response Network, By Bunker, R., The Police Chief, Pg. 41-49, Nov, 1998
Emergency Response & Research Institute
EmergencyNet News Service
6348 N. Milwaukee Ave., #312
Chicago, IL, USA, 60646
(773) 631-3774 - Voice/Messages
(773) 631-4703 - Facsimile
webmaster@emergency.com - E-Mail
http://www.emergency.com - Main WWW page