How to Stop Putin Hacking the White House

White House
A woman takes pictures of the snow in front of the White House on February 17 in Washington, D.C. Jonathan Ernst/Reuters

Russian hackers, fresh from breaching the State Department's unclassified networks in recent months, have managed to sneak into "sensitive but unclassified" White House networks, CNN reported on April 7. The perpetrators gained access to real-time non-public details of the president's schedule, precisely the type of information foreign intelligence services prioritize for collection.

The White House has downplayed the story. But other U.S. officials have confirmed that Russia was indeed the source of the White House hack, according to NBC News. Former FBI Assistant Executive Director Shawn Henry has stated categorically, "I have no doubt that the Russians and the Chinese are in all of these White House networks."

Russia is undoubtedly a sophisticated and determined adversary in cyberspace, arguably more capable than China. Russia also has proxies to do its bidding, as it demonstrated with the cyberattacks on Estonia in 2007. For years, Russia has "integrated cyber operations into its military doctrine," as well as into the larger tool kit it employs for economic and political purposes.

Russia is getting better at it. The ongoing campaign against Ukraine shows that Moscow has upped its game since the 2008 conflict with Georgia. Recent Russian maneuvers have included cyberattacks to disrupt Ukraine's communications systems and undermine Ukrainian authorities. Using a mix of old-style propaganda and advanced information operations, Russia has succeeded in blending cybercomponents with other ways of warfighting. NATO has acknowledged this threat and recognizes the pressing need to address it.

Russia's cyberspies do more than spy. They have penetrated the U.S. electrical grid and engaged in such extensive computer network exploitation against U.S. research and development efforts that the Office of the National Counterintelligence Executive has labeled Russia "a national long-term strategic threat to the United States."

This menacing cyberactivity is all the more concerning because the line between computer network exploitation and computer network attack is thin, turning only on the matter of intent. Hackers and criminals based in Russia have also made their mark, and the country has a long history of blending crime, business and politics. The stakes are high, too: Russia's slice of the global cybercrime market has been estimated to range into the billions—over $2.3 billion in 2011.

One could be forgiven for looking at Russian President Vladimir Putin's behavior and recalling the Cold War. The incursion into Ukraine, seizure of the Crimean peninsula, violations of NATO airspace, amped-up propaganda efforts and sharply worded anti-Western rhetoric are the tip of a very large iceberg.

This broader context matters because Putin's Russia seeks to craft an alternative world order in which the shadowy practices of what some have called hybrid warfare—which includes a significant cybercomponent—hold sway over rules-based institutions and agreements.

Russia's actions have come at a cost, however. The country's economy has felt the pinch, particularly against the backdrop of declining worldwide oil prices. Sanctions imposed by the U.S. and the European Union in response to Russia's moves against Ukraine took their toll, targeting major banks and principal energy concerns in Russia.

Cyberspace, as well as U.S.-Russian relations within it, must be understood and appreciated in conjunction with all of these other developments. Like land, sea, air and space, cyber is a critical dimension for the formulation and execution of strategy and tactics—not only for our adversaries but also for our response to them. In each of these domains, Russia has employed cyberstrategies to probe the target, including the Baltic countries and Ukraine.

Attribution is always a challenge in the cyber context. What is certain, though, is the need for the U.S. government and the private sector to be ready for attempts to pull off new exploits and to possess the resilience to cope with them effectively, even if we cannot prevent them from happening in the first place. As we have argued elsewhere, we must drive home to Russia that actions have consequences, even as we take urgent measures to inoculate ourselves against this growing danger.

The evidence of disturbing Russian cyberactivity is clear. Consider, for example, the so-called "Energetic Bear" (aka "Dragonfly/Crouching Yeti") campaign to infect energy and industrial firms around the world with malicious software. The perpetrators of this attack, ongoing since 2010 and identified by researchers as being linked to the Russian government, have hit a number of European countries, as well as the United States—by stealing data and mapping the infrastructure of the targeted networks.

A new executive order that imposes material costs, including economic sanctions, on "persons engaging in significant malicious cyber-enabled activities" is an important instrument that will help drive home to cyberadversaries that their actions have consequences.

At the same time, congressional leadership is needed. Legislation to facilitate information-sharing between the public and private sectors, enact liability protections and incentivize desired behaviors is long overdue.

In turn, the Obama administration should articulate a clear cyber-deterrence strategy, designed to influence the behavior of adversaries and actors, including but not limited to Russia. The strategy must encompass working with allies and organizations such as NATO.

No further wake-up calls are needed. The alarm has been ringing for far too long already.

Frank J. Cilluffo is director of the George Washington University Center for Cyber and Homeland Security and previously served as special assistant to the president for homeland security. Sharon L. Cardash is associate director of the George Washington University Center for Cyber and Homeland Security and previously served as security policy adviser to Canada's minister of foreign affairs. This article first appeared on the Atlantic Council site.

How to Stop Putin Hacking the White House | Opinion
{{label}}
{{title}}
EDITOR'S PICK