NATO Prepares For Cyber Warfare

Uploaded on 2022-12-20 in INTELLIGENCE--Europe, GOVERNMENT-Defence, FREE TO VIEW

This month, NATO engaged its cyber forces in Cyber Coalition 2022, a cyber exercise in Estonia simulating a cyber attack on a fictional island to prepare for anticipated cyberwar.  As conflicts have morphed from traditional military methods into the complex domain of cyberspace, around 150 NATO cyber security experts convened in Tallin to prepare for an anticipated cyberwar. 

The Cyber Coalition 2020 exercise involved more than 40 member states, allies and other organisations working  together to respond to and recover from, simulated cyber attacks on critical infrastructure like power grids and ships. The exercise spanned the globe, with nearly 1,000 cyber professionals participating remotely from their home countries.

In particular, NATO is closely monitoring the war in Ukraine, to help Ukraine and make it harder for Russia and other adversaries to hack into infrastructure in NATO member states and their allies.

Recently, hackers affiliated with Russian military intelligence launched destructive malware attacks against energy, water, and other critical infrastructure in Ukraine, simultaneously with missile strikes aimed at destroying power and water supplies to civilians across the country.  Russian hackers have also attacked in Poland, targeting a critical logistics hub, in a possible attempt to disrupt the movement of weapons and supplies.

On the information warfare front, Russia has increased the intensity of popular dissent over energy and inflation across Europe by boosting select narratives online through state-affiliated media outlets and social media accounts to undermine elected officials and democratic institutions.  So far this propaganda has had only limited public impact, but they foreshadow what may become broadening tactics during the winter ahead.

The world has never experienced an all-out cyberwar in which cyber attacks are used to the same devastating effect as physical strikes, such as shutting off critical services like power and water and preventing their restoration. 

NATO has been intentionally ambiguous about what level of cyber attack it would take for members to respond with either force or devastating cyber strikes of their own. The coalition’s cyber experts have been closely monitoring the war to learn lessons to prepare member states against cyber attacks carried out by adversaries. 

NATO is also reviewing how vulnerable their critical networks in NATO states are to cyber attacks. Those can run from sophisticated operations to plant malware on software updates to more common ransomware attacks.

The intensified pressure on cyber professionals within NATO countries and allied nations has made the ability to coordinate and test communication protocols essential. Both Finland and Sweden, have discarded their previous neutrality to apply for NATO membership and were included in the exercise. However, separate reports suggest that, despite the unprecedented intensity of cyber-attacks launched by Russia over the past few months, Ukrainians have defended remarkably well – learning the lessons from previous attacks on critical infrastructure in December 2015 and 2016.

What has not been so well analysed are the implications of the war in Ukraine for NATO force's preparations for fighting a future “great-power war.” Moscow’s major invasion of Ukraine is the first open war of this era and, like the Spanish Civil War which preceded World War 2, may prove to be a testing ground of operations and tactics for future conflicts. 

Politico:      Al Mayadeen:      Microsoft:      Infosecurity Magazine:    Just Security:    Yahoo:  

You Might Also Read: 

Denmark Wins 2022 European Cyber Security Challenge:
 

« Deploying NDR To Transform Threat Detection
Cyber Threats & Nuclear Fears »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

ITpreneurs

ITpreneurs

ITpreneurs provides IT training content, Instructors, Learning Infrastructure and services to IT Training providers.

Direct Recruiters Inc

Direct Recruiters Inc

Direct Recruiters is a relationship-focused search firm that assists IT Security and Cybersecurity companies with recruiting high-impact talent.

eco

eco

eco, with more than 950 member organizations, is the largest Internet industry association in Europe.

Axis Capital

Axis Capital

AXIS Insurance’s Professional Lines Division is a leading underwriter of technology/cyber coverage and other specialty products around the globe.

Harel Mallac Technologies

Harel Mallac Technologies

Harel Mallac Technologies is a Mauritian organisation that has developed a strong network of ICT specialists with nodes across the African continent.

Idaptive

Idaptive

Idaptive delivers Next-Gen Access through a zero trust approach. Idaptive secures access everywhere with single sign-on, adaptive MFA, EMM and analytics.

Armorblox

Armorblox

Armorblox stops targeted email attacks such as 0-day credential phishing, payroll fraud, vendor fraud, and other threats that get past legacy security controls.

VIQU Recruitment

VIQU Recruitment

VIQU Recruitment was formed with the primary focus of providing 'Smarter People Solutions' to the UK’s professional IT & Cyber Security markets.

DMARC360

DMARC360

DMARC360 analyzes your email traffic patterns and sources, rapidly deploys email authentication protocols and monitors your email domains with automated recommendations and incident response.

Aristi Labs

Aristi Labs

Aristi Labs provides comprehensive security solutions to help businesses protect data and intellectual property, minimizing downtime and maximizing productivity.

Kindus

Kindus

Kindus is an IT security, assurance and cyber security risk management consultancy.

OriginalMy

OriginalMy

OriginalMy is a cybersecurity startup, focussed on digital governance and information authentication. Its mission is to prove authenticity using state-of-the-art cryptography and blockchain technology

West Midlands Cyber Resilience Centre (WMCRC)

West Midlands Cyber Resilience Centre (WMCRC)

The East Midlands Cyber Resilience Centre supports and helps protect SMEs and supply chain businesses and third sector organisations in the region against cyber crime.

Kobalt.io

Kobalt.io

Kobalt are bringing the monitoring capabilities of enterprise-class security teams to smaller organizations.

Zama

Zama

Zama - pioneering homomorphic encryption. We believe people shouldn't care about privacy. Not because it doesn't matter, but because it shouldn't be an issue!

Oak9

Oak9

Oak9's Security as Code platform dynamically secures Infrastructure as Code (IaC) and deployed cloud workloads, automatically.