Iran Could Answer US Sanctions With Cyberattacks: Experts - NBC4 Washington
National & International News
The day’s top national and international news

Iran Could Answer US Sanctions With Cyberattacks: Experts

U.S. intelligence agencies have singled out Iran as one of the main foreign cyber threats facing America, along with Russia, China and North Korea

    processing...

    NEWSLETTERS

    The Power of a Positive Attitude
    Iranian Presidency Office via AP
    In this photo released by official website of the office of the Iranian Presidency, President Hassan Rouhani addresses the nation in a televised speech in Tehran, Iran, Monday, Aug. 6, 2018. Iranian President Hassan Rouhani struck a hard line Monday as the U.S. restored some sanctions that had been lifted under the 2015 nuclear deal.

    What to Know

    • The Trump administration this week reimposed sanctions on Iran starting Tuesday. which target Iran's automotive sector, among others

    • Cybersecurity experts say Iran could hit back at the US for the sanctions with cyberattacks

    • The Trump administration says it re-imposed sanctions on Iran to prevent its aggression

    The U.S. is bracing for cyberattacks Iran could launch in retaliation for the re-imposition of sanctions this week by President Donald Trump, cybersecurity and intelligence experts say.

    Concern over that cyber threat has been rising since May, when Trump pulled out of the 2015 nuclear deal, under which the U.S. and other world powers eased economic sanctions in exchange for curbs on Iran's nuclear program. The experts say the threat would intensify following Washington's move Tuesday to re-impose economic restrictions on Tehran.

    "While we have no specific threats, we have seen an increase in chatter related to Iranian threat activity over the past several weeks," said Priscilla Moriuchi, director of strategic threat development at Recorded Future, a global real-time cyber threat intelligence company. The Massachusetts-based company predicted back in May that the U.S. withdrawal from the nuclear agreement would provoke a cyber response from the Iranian government within two to four months.

    U.S. intelligence agencies have singled out Iran as one of the main foreign cyber threats facing America, along with Russia, China and North Korea. A wave of attacks that U.S. authorities blamed on Iran between 2012 and 2014 targeted banks and caused tens of millions of dollars in damage. They also targeted but failed to penetrate critical infrastructure.

    Trump Advises Iran Not to Restart Nuclear Program

    [NATL] Trump Advises Iran Not to Restart Nuclear Program

    President Donald Trump sent a stern message to Iran a day after announcing he was pulling the U.S. out of the Iran nuclear deal.

    (Published Wednesday, May 9, 2018)

    Iran denies using its cyber capabilities for offensive purposes, and accuses the U.S. of targeting Iran. Several years ago, the top-secret Stuxnet computer virus destroyed centrifuges involved in Iran's contested nuclear program. Stuxnet, which is widely believed to be an American and Israeli creation, caused thousands of centrifuges at Iran's Natanz nuclear facility to spin themselves to destruction at the height of the West's fears over Iran's program.

    "The United States has been the most aggressive country in the world in offensive cyber activity and publicly boasted about attacking targets across the world," said Alireza Miryousefi, spokesman for Iran's diplomatic mission at the United Nations, contending that Iran's cyber capabilities are "exclusively for defensive purposes."

    Gen. Qassem Soleimani, who heads the elite Quds Force of Iran's hard-line paramilitary Revolutionary Guard, has sounded more ominous, warning late last month about Iran's capabilities in "asymmetric war," a veiled reference to nontraditional warfare that could include cyber attacks.

    Trump Willing to Meet With Iran President Without Preconditions

    [NATL] Trump Willing to Meet With Iran President Without Preconditions

    President Donald Trump said Monday during a press conference he’d be willing to meet with Iranian President Hassan Rouhani without any preconditions.

    (Published Monday, July 30, 2018)

    The Trump administration says it re-imposed sanctions on Iran to prevent its aggression — denying it the funds it needs to finance terrorism, its missile program and forces in conflicts in Yemen and Syria.

    The sanctions restarted Tuesday target U.S. dollar financial transactions, Iran's automotive sector and the purchase of commercial planes and metals, including gold. Even stronger sanctions targeting Iran's oil sector and central bank are to be re-imposed in early November. European leaders have expressed deep regret about the U.S. actions. They hit Iran at a time when its unemployment is rising, the country's currency has collapsed and demonstrators are taking to the streets to protest social issues and labor unrest.

    Norm Roule, former Iran manager for the office of the Director of National Intelligence, said he thinks Tehran will muster its cyber forces in response.

    Reported Plan Targeting Transgender People Sparks Fury

    [NATL] Reported Trump Administration Plan Targeting Transgender People Sparks Fury

    The Trump administration may be considering redefining gender as an unchangeable condition determined solely by a person's biology, according to a leaked memo draft obtained by The New York Times.

    (Published Monday, Oct. 22, 2018)

    "I think there is a good chance Iran will use cyber, probably not an attack that is so destructive that it would fragment its remaining relationship with Europe, but I just don't think the Iranians will think there is much cost to doing this," Roule said. "And it's a good way to show their capacity to inflict economic cost against the United States."

    "Iran's cyber activities against the world have been the most consequential, costly and aggressive in the history of the internet, more so than Russia. ... The Iranians are destructive cyber operators," Roule said, adding that Iranian hackers have, at times, impersonated Israeli and Western cyber security firm websites to harvest log-in information.

    The office of Director of National Intelligence Dan Coats declined to comment Tuesday on the likelihood that Iran will answer the sanctions with cyber operations against the U.S. When the U.S. pulled out of the nuclear deal, the FBI issued a warning saying that hackers in Iran "could potentially use a range of computer network operations — from scanning networks for potential vulnerabilities to data-deletion attacks — against U.S.-based networks in response to the U.S. government's withdrawal" from the nuclear pact.

    Senators Vow to Act If Khashoggi Killed by Saudis

    [NATL] Senators Vow to Act If Khashoggi Killed by Saudis

    Some members of Congress say the U.S. must act against Saudi Arabia if the country's leaders are responsible for the killing of journalist Jamal Khashoggi, but they differ on exactly what that action would entail.

    (Published Thursday, Oct. 18, 2018)

    Accenture Security, a global consulting, managing and technology company, also warned Tuesday that the new sanctions would "likely to push that country to intensify state-sponsored cyber threat activities," particularly if Iran fails to keep its European counterparts committed to the nuclear pact.

    Josh Ray, the firm's managing director for cyber defense, said it hasn't seen any evidence that Iran has launched any new cyber operations, but he said Iran has the capability to do it and has historically operated in a retaliatory manner.

    "This still remains a highly capable, espionage-related type threat," Ray said. "Organizations need to take this threat seriously. They need to understand how their business could potentially be impacted."

    The Opioid Crisis: By the Numbers

    [NATL] The Opioid Crisis: By the Numbers

    A study of the opioid epidemic reveals some disturbing numbers.

    (Published Wednesday, Oct. 17, 2018)

    Recorded Future's Moriuchi anticipated that businesses most at risk were those victimized in Iranian cyberattacks between 2012 and 2014 — they include banks and financial services, government departments, critical infrastructure providers, and oil and energy.

    Those cyberattacks cost nearly 50 financial institutions tens of millions of dollars. The repeated attacks disabled bank websites and kept hundreds of thousands of customers from accessing their online accounts. U.S. prosecutors indicted several Iranians, alleging they worked at the behest of the Iranian government.

    One defendant allegedly targeted the computer systems of the Bowman Dam in Rye, New York. No access was gained, but prosecutors said the breach underscored the potential vulnerabilities of the nation's critical infrastructure.

    Pompeo Visits Saudi Arabia With Concerns Over Missing Writer

    [NATL] Pompeo Visits Saudi Arabia With Concerns Over Missing Journalist

    Secretary of State Mike Pompeo visited Saudi Arabia's crown prince on Tuesday after concerns of missing journalist Jamal Kashoggi prompted calls for an investigation into the Saudi consulate in Istanbul, where Kashoggi was last seen. Kashoggi, a columnist for The Washington Post, was a frequent critic of the prince. 

    (Published Tuesday, Oct. 16, 2018)

    In March, the Justice Department also announced charges against nine Iranians accused of working at the behest of the Islamic Revolutionary Guard Corps to steal large quantities of academic data from hundreds of universities in the United States and abroad as well as email accounts belonging to employees of government agencies and private companies.

    Associated Press writer Edith M. Lederer contributed to this report.