Governments' Favorite Cyberweapons Don't Look Anything Like Stuxnet

Brian Fung

April 23, 2013 at 4:27 AM

The term “cyberwarfare” conjures images of hackers developing nasty scripts and viruses to be used by state militaries as an instrument of foreign policy. Stuxnet, the malware that disabled thousands of Iranian nuclear centrifuges, was all but confirmed as the product of U.S. and Israeli information warriors. But these kinds of sophisticated weapons are hard to cover up, harder to build and still harder to keep from getting out of control. Sexy as they are, tools like Stuxnet only make sense some of the time.

The rest of the time, according to an annual study of data breaches released today, state-affiliated attacks draw inspiration from a more common, though no less effective, source: the criminal world. The weapon of choice for most governments? Phishing, or the sending of fake emails that try to get targets to click malware-laden links or attachments.

Ninety-five percent of all data breaches that can be connected to a government IP address involve phishing attacks, per the study, which was conducted by Verizon’s RISK team. The yearly report looks at tens of thousands of reported attacks and examines the subsequent investigations by law enforcement and private cybersecurity firms.

How do we know that governments are deploying phishing attacks? A lot of it is based on educated guesswork, Ostertag admitted. Still, the RISK team doesn't make a determination on the culprit unless the circumstantial evidence is fairly strong.

“When we’re able to make a conclusion as to attribution,” he said, “it’s more through the use of MD5 hashing, and looking for a hard-coded IP address inside a piece of malware that’s affiliated with a known IP.” Known IP addresses often come in via government authorities who’ve been monitoring the addresses themselves. In all, Verizon’s partnered with 18 agencies around the world to gather its data, from the U.S. Secret Service to the Australian Federal Police.

Since the project began nearly a decade ago, Verizon’s data breach investigations report has tallied 2,500 confirmed penetrations that resulted in a loss of data. Over a billion personal records have been compromised. Not all of those were the result of government actions. But state-affiliated hacking attempts last year accounted for almost a fifth of all data breaches. Good thing some companies have started phishing their own employees to practice their defense.

Yahoo Sports
Broncos, Jets, Lions and Texans have new uniforms. Let's rank them
Which new uniforms are winners this season?
1d ago
Yahoo Sports
Based on the odds, here's what the top 10 picks of the NFL Draft will be
What would a mock draft look like using just betting odds?
3d ago
Yahoo Finance
Jamie Dimon is worried the US economy is headed back to the 1970s
JPMorgan's CEO is concerned the US economy could be in for a repeat of the stagflation that hampered the country during the 1970s.
2d ago
Yahoo Sports
Luka makes Clippers look old, Suns are in big trouble & a funeral for Lakers | Good Word with Goodwill
Vincent Goodwill and Tom Haberstroh break down last night’s NBA Playoffs action and preview several games for tonight and tomorrow.
1d ago
Yahoo Sports
Dave McCarty, player on 2004 Red Sox championship team, dies 1 week after team's reunion
The Red Sox were already mourning the loss of Tim Wakefield from that 2004 team.
5d ago
Autoblog
These are the cars being discontinued for 2024 and beyond
As automakers shift to EVs, trim the fat on their lineups and cull slow-selling models, these are the vehicles we expect to die off soon.
2d ago
Yahoo TV
Everyone's still talking about the 'SNL' Beavis and Butt-Head sketch. Cast members and experts explain why it's an instant classic.
Ryan Gosling, who starred in the skit, couldn't keep a straight face — and neither could some of the "Saturday Night Live" cast.
2d ago
Yahoo Sports
Ryan Garcia drops Devin Haney 3 times en route to stunning upset
The 25-year-old labeled "mentally fragile" by many delivered the upset for the ages.
5d ago
Yahoo Sports
Arch Manning dominates in the Texas spring game, and Jaden Rashada enters the transfer portal
Dan Wetzel, Ross Dellenger & SI’s Pat Forde react to the huge performance this weekend by Texas QB Arch Manning, Michigan and Notre Dame's spring games, Jaden Rashada entering the transfer portal, and more
3d ago
Yahoo Sports
Chiefs make Andy Reid NFL's highest-paid coach, sign president Mark Donovan, GM Brett Veach to extensions
Reid's deal reportedly runs through 2029 and makes him the highest-paid coach in the NFL.
3d ago
Yahoo Sports
Yankees' Nestor Cortés told by MLB his pump-fake pitch is illegal
Cortés' attempt didn't fool Andrés Giménez, who fouled off the pitch.
5d ago
Yahoo Life
Here’s when people think old age begins — and why experts think it’s starting later
People's definition of "old age" is older than it used to be, new research suggests.
3d ago
Yahoo Sports
NBA playoffs: Who's had the most impressive start to the postseason? Most surprising?
Our NBA writers weigh in on the first week of the playoffs and look ahead to what they're watching as the series shift to crucial Game 3s.
4h ago
Autoblog
UPS and FedEx find it harder to replace gas guzzlers than expected
Shipping companies like UPS and FedEx are facing uncertainty in U.S. supplies of big, boxy electric step vans they need to replace their gas guzzlers.
8h ago
Yahoo Finance
Retirement confidence in the US ticks up; new rule for financial advisers is set to start
Two-thirds of Americans reported that they feel confident they have enough money for a comfortable retirement, up a notch from last year.
10h ago
Yahoo Finance
Donald Trump nabs additional $1.2 billion 'earnout' bonus from DJT stock
Trump is entitled to an additional 36 million shares if the company's share price trades above $17.50 "for twenty out of any thirty trading days" over the next three years.
2d ago
Yahoo Sports
Lions' new uniforms get leaked early, and they find some humor in it
The Lions' new uniforms got released prematurely.
7d ago
Yahoo Sports
2024 NFL mock draft: With one major trade-up, it's a QB party in the top 5
Our final 2024 mock draft projects four quarterbacks in the first five picks, but the Cardinals at No. 4 might represent the key pivot point of the entire board.
4d ago
Yahoo Sports
Dylan Edwards set to be latest Colorado running back to enter transfer portal
All four rushers who had more than 10 carries in 2023 for the Buffaloes are transferring.
2d ago
Yahoo Sports
NBA Playoffs: Lillard sinks the Pacers, Celtics-Heat controversy, plus injury concerns for Kawhi & Embiid
Vincent Goodwill and Amin Elhassan react to (just about) every Round 1 game of the NBA Playoffs after the first games have been played over the weekend.
3d ago

News

Life

Entertainment

Finance

Sports

New on Yahoo

David Pecker returns to witness stand in Trump's hush money trial

Governments' Favorite Cyberweapons Don't Look Anything Like Stuxnet

Recommended Stories

Broncos, Jets, Lions and Texans have new uniforms. Let's rank them

Based on the odds, here's what the top 10 picks of the NFL Draft will be

Jamie Dimon is worried the US economy is headed back to the 1970s

Luka makes Clippers look old, Suns are in big trouble & a funeral for Lakers | Good Word with Goodwill

Dave McCarty, player on 2004 Red Sox championship team, dies 1 week after team's reunion

These are the cars being discontinued for 2024 and beyond

Everyone's still talking about the 'SNL' Beavis and Butt-Head sketch. Cast members and experts explain why it's an instant classic.

Ryan Garcia drops Devin Haney 3 times en route to stunning upset

Arch Manning dominates in the Texas spring game, and Jaden Rashada enters the transfer portal

Chiefs make Andy Reid NFL's highest-paid coach, sign president Mark Donovan, GM Brett Veach to extensions

Yankees' Nestor Cortés told by MLB his pump-fake pitch is illegal

Here’s when people think old age begins — and why experts think it’s starting later

NBA playoffs: Who's had the most impressive start to the postseason? Most surprising?

UPS and FedEx find it harder to replace gas guzzlers than expected

Retirement confidence in the US ticks up; new rule for financial advisers is set to start

Donald Trump nabs additional $1.2 billion 'earnout' bonus from DJT stock

Lions' new uniforms get leaked early, and they find some humor in it

2024 NFL mock draft: With one major trade-up, it's a QB party in the top 5

Dylan Edwards set to be latest Colorado running back to enter transfer portal

NBA Playoffs: Lillard sinks the Pacers, Celtics-Heat controversy, plus injury concerns for Kawhi & Embiid