Blog Layout

US Cyber-Attack: What Are the Consequences?

Alexander Gale

21 December 2020

An alleged Russian cyberattack has caught Washington off-guard. What does this mean for the future of US cybersecurity?


What is the scale of the cyberattack?



The United States security establishment is reeling from the shock of a massive cyberespionage operation which was discovered just this month, but may have been active since before March, this year.


The cyber operation primarily targeted software made by SolarWinds, an American firm headquartered in Austin, Texas. The cyberattack has Washington worried because SolarWinds provides software for all five branches of the military and several important government departments, including the Treasury, Department of Energy, and the Department of Homeland Security. 


The full extent of the hacking operation is not yet known, but several high-profile government departments are known to have been compromised. The hackers were able to access parts of the Pentagon, State Department and Homeland Security among others, according to an alert issued by the Cybersecurity and Infrastructure Security Agency (CISA) on 17 December.


At least four SolarWinds Orion software products are believed to have been compromised by the hackers, putting an estimated 18,000 of SolarWinds’ 300,000 customers at risk. Organisations in other countries were also targeted in the UK, Israel, and Canada. 


The cybersecurity firm FireEye was the first to detect the cyberattack. FireEye’s CEO, Kevin Mandia, has said that of the 18,000 affected, about 50 organisations have been seriously compromised by the hack.


According to CISA, the hackers are likely to have had access to the emails of IT and cybersecurity staff and may have posed as their colleagues to gather further information.


The nature of the cyber operation suggests that the hackers were seeking information and intelligence, rather than to disrupt or destroy cyberspace infrastructure. The hackers may have been able to access sensitive information from US and allied governments, as well as the private sector.



Who is behind the cyberattack?



Most US officials have blamed Russia for the attack. US Secretary of State Mike Pompeo has said, ‘we can say pretty clearly that it was the Russians that engaged in this activity.’ 


The Kremlin have denied playing any part in the cyberattack.


Despite cross-party consensus that the Kremlin is to blame for the attack, President Donald Trump has expressed doubts. On Saturday, Trump tweeted that, ‘it may be China’ behind the cyber operation.



However, broad consensus remains that Russian hackers are behind the breach. Democrat Senator Dick Durbin, speaking on Wednesday to CNN, said that the cyberattack was ‘virtually a declaration of war by Russia on the United States, and we should take it that seriously.’


Durbin criticised Trump on Twitter for dismissing Russian involvement.



The Republican Chair of the Senate intelligence committee, Marco Rubio, has also blamed the Kremlin for the cyberattack, stating on Twitter that it is ‘increasingly clear that Russian intelligence conducted the gravest cyber intrusion in our history’.



How will Washington respond?


Trump’s near-silence on the issue and reluctancy to pin firm blame on the Kremlin likely means that any response will be left to the incoming administration of President-elect Joe Biden.


In a statement issued on Thursday, Biden said: ‘we need to disrupt and deter our adversaries from undertaking significant cyber attacks in the first place. We will do that by, among other things, imposing substantial costs on those responsible for such malicious attacks, including in coordination with our allies and partners.’


Based on Biden’s statement, the incoming administration looks set to pursue a strategy of deterrence by punishment. For this strategy to be affective, the costs imposed on the perpetrator must be both sufficiently harmful and credible.


According to insiders, Biden’s team are considering a retaliatory cyberattack against Russian infrastructure. Sanctions are among other options being considered, which may be used in conjunction with a retaliatory cyberattack.


Sanctions have also been proposed by Republicans, like Congressman and former Navy SEAL Dan Crenshaw.




More broadly, the strategic shock imposed by the massive hacking operation may prompt the US to transform the way it conducts cybersecurity, cyberwarfare, and cyber espionage.


Republicans and Democrats are asking Trump to sign the national defence policy bill and approve measures to strengthen American cybersecurity apparatus.


Significant changes in the future may include the establishment of a Joint Cyber Planning Office under CISA to organise cyberspace activities across the public and private sectors. A Senate-confirmed national cyber director would be appointed to provide leadership in the cyberspace domain.


The Department of Homeland Security may adopt a more aggressive stance on cyberspace if recommendations by the Cyberspace Solarium Commission are put into place. This would include the Cybersecurity and Infrastructure Security Agency being authorised to track down threats on federal networks.


Hezbollah drone
by SDAFA Editorial 2 July 2024
Members of the Arab League have collectively agreed to no longer label Hezbollah a terrorist organisation.
by Alexander Gale 27 June 2024
The beginning of EU accession talks for Ukraine and Moldova poses consequences for strategic competition between Russia and the West.
Cyprus satellite image
by Alexander Gale 26 June 2024
Hezbollah's leader has threatened Cyprus, raising the possibility of a widening of the Israel-Hezbollah conflict to the Mediterranean.
by Alexander Gale 17 June 2024
The failure of a controversial Coca-Cola advertising campaign in Bangladesh demonstrates the need for companies to be aware of the growing relationship between geopolitical risk and consumer choice.
by Alexander Gale 12 June 2024
Military exchanges between the IDF and Hezbollah across the Israel-Lebanon border threaten to lead to further escalation but both sides have incentives to avoid full-scale war.
Israeli military aircraft
by SITREP Team 20 April 2024
Following several tense days, de-escalation between Israel and Iran is now a more distinct possibility.
Israel Iran SITREP
by SITREP Team 15 April 2024
Iran's attack against Israel on 13 April poses significant potential risks for the wider region.
by Alexander Gale 4 April 2024
Consumer activists are increasingly motivated by geopolitics, necessitating the adoption of a new strategic approach by companies.
by Irene Ivanaj 22 May 2023
As the world order shifts towards multipolarity and the Polar ice caps continue to melt, the Arctic could become an increasingly important geostrategic space.
by Alexander Gale 15 May 2023
A resumption of 'earthquake diplomacy' has eased tensions between Greece and Turkey since February, but can any improvements in bilateral relations be sustained?
Share by: