UK Launches Cyber Attack On Islamic State

The UK has conducted a "major offensive cyber-campaign" against the Islamic State group, the director of the intelligence agency GCHQ has revealed.

The operation hindered the group's ability to co-ordinate attacks and suppressed its propaganda, former MI5 agent Jeremy Fleming said.

It is the first time the UK has systematically degraded an adversary's online efforts in a military campaign.

Mr Fleming made the remarks in his first public speech as GCHQ director. "The outcomes of these operations are wide-ranging," he told the Cyber UK conference in Manchester.

"In 2017 there were times when Daesh [an alternative name for Islamic State] found it almost impossible to spread their hate online, to use their normal channels to spread their rhetoric, or trust their publications."

Mr Fleming said much of the cyber-operation was "too sensitive to talk about", but had disrupted the group's online activities and even destroyed equipment and networks. "This campaign shows how targeted and effective offensive cyber can be," he added.

But Mr Fleming said the fight against IS was not over, because the group continued to "seek to carry out or inspire further attacks in the UK" and find new "ungoverned spaces to base their operations".

'Blurring boundaries'

Mr Fleming also criticised Russia over what he called "unacceptable cyber-behaviour" that was a "growing threat" to the UK and its allies.

He recalled the NotPetya ransomware attack on Ukraine last year, which eventually spread across the world. The UK and US later said the Russian military were behind the attack, a claim that Moscow denied.

"They're not playing to the same rules," Mr Fleming said. "They're blurring the boundaries between criminal and state activity."

He said the use of a nerve agent on Sergei and Yulia Skripal in Salisbury was "stark and shocking", and demonstrated "how reckless Russia is prepared to be".

The UK has said Moscow was "culpable" for the attack, but Russia denies any involvement.

"The robust response from the UK and from the international community shows the Kremlin that illegal acts have consequences. And it looks like our expertise on Russia will be in increasing demand," he said.

Following the speech, the chief executive of the National Cyber Security Centre, Ciaran Martin, told the BBC the Notpetya case was also an example of the Russian recklessness mentioned by Mr Fleming.

Asked if the disclosures about offensive cyber-actions were a veiled warning to Russia, Mr Martin said sometimes the best form of defence is defence.

Mr Fleming went on to describe some of GCHQ's other goals, which include tracking down people who use the dark web to distribute child sex abuse images.

Cyber has created a new landscape for attackers and defenders, he said, and the challenges were "vast" but were being met by a strong and lawful GCHQ.

On Wednesday 11th April, Mr Fleming announced new GCHQ base is to open in Manchester hoping to draw "tech savvy recruits".

BBC

You Kight Also Read: 

Islamic State Likely To Switch To Cyber Warfare:

« Cyber Attacks Focus On Healthcare
Vigilante Hackers Attack Nation States »

CyberSecurity Jobsite
Check Point

Directory of Suppliers

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

Tines

Tines

The Tines security automation platform helps security teams automate manual tasks, making them more effective and efficient.

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

Cloud Foundry Foundation (CFF)

Cloud Foundry Foundation (CFF)

Cloud Foundry supports the full application development lifecycle, from inception, through all testing stages, to deployment.

JPCERT/CC

JPCERT/CC

JPCERT/CC is the first Computer Security Incident Response Team (CSIRT) established in Japan.

Airbus Cybersecurity

Airbus Cybersecurity

Airbus CyberSecurity is a European specialist in cyber security. Our mission is to protect governments, military and critical national infrastructure enterprises from cyber threats.

Advisen

Advisen

Advisen is the leading provider of data, media, and technology solutions for the commercial property and casualty insurance market including cyber risk.

Waratek

Waratek

Waratek is a pioneer in the next generation of application security solutions known as Runtime Application Self-Protection or RASP.

Circadence

Circadence

Circadence offer the only fully immersive, AI-powered, patent-pending, proprietary cybersecurity training platform in the market today.

Momentum Cyber

Momentum Cyber

Momentum Cyber provides world-class M&A and strategic advice combined with unparalleled senior-level access to the Cybersecurity ecosystem.

Commonwealth Cybercrime Initiative (CCI)

Commonwealth Cybercrime Initiative (CCI)

The CCI unites 35 international organisations contributing to multidisciplinary programmes in Commonwealth countries. These organisations form the CCI Consortium.

Center for Infrastructure Assurance and Security (CIAS)

Center for Infrastructure Assurance and Security (CIAS)

CIAS is developing the world's foremost center for multidisciplinary education and development of operational capabilities in the areas of infrastructure assurance and security.

SecureData

SecureData

SecureData provide professional data recovery services, digital forensics, data recovery software and FIPS 140-2 Level 3 Validated hardware encrypted drives.

Jericho Security

Jericho Security

Jericho Security is on a mission to defend the world from the new threats of generative AI cyber attacks.

Reach Security

Reach Security

Reach is the first generative AI platform purpose-built to empower enterprise security teams. With Reach, organizations measure, manage, and improve their enterprise security posture at scale.

Alvacomm

Alvacomm

Alvacomm offers holistic VIP cybersecurity services, providing comprehensive protection against cyber threats. Our solutions include risk assessment, threat detection, incident response.

Cyberagentur (Cyber Agency)

Cyberagentur (Cyber Agency)

Cyberagentur is the Federal Agency in Germany for innovation in cybersecurity. Our mission is to advance research and groundbreaking innovations in the field of cybersecurity and related technologies.

Idenhaus Consulting

Idenhaus Consulting

Idenhaus specializes in Cybersecurity and Identity Management (IAM) Consulting.

Cyberus

Cyberus

Cyberus brings together industry, business, and government to collaboratively create a secure digital future for Russia and the world.