Connect with us

Intelligence

India’s Hybrid / Cyber threats and its regional implications

Published

on

Hybrid threats are designated as a swing from a traditional force model to an approach which combines kinetic and non-kinetic tools in a deliberate and synchronized campaign to destabilize and gain political leverage over an opponent. However, Hybrid warfare is widely understood as a blend of regular, irregular, information and cyber warfare. After the nuclearization of South Asian region, there has been a growing realization within the Indian military that a conventional war could be both untenable and cost prohibitive. Such conception gave rise to hybrid war under the rubric of nuclear weapons as the preferred strategy by India.

One can observe the evident growth of hybrid warfare in the Indian strategy of pressuring Pakistan through media, subversion, cyber warfare and diplomatic maneuvers aimed at its isolation. Doval doctrine is the clear evidence that India has already strategize against Pakistan. India’s hybrid warfare strategy against Pakistan is built on five major fronts around Pakistan’s perceived weaknesses to achieve the “3D Objectives”. 3D indicates the Destabilization, Demoralization and Disintegration of Pakistan. This doctrine furthermore includes five more fronts under the regime of hybrid threats which are proxies, information war, cyber warfare, economic war and political war. The stipulated objective is weakening of Pakistan to the extent that it accepts Indian hegemony in the region.

India is proficiently using hybrid-warfare capabilities to pursue its objectives in South Asian region since the end of Cold War. Nevertheless, Islamabad has been resisting New Delhi’s endeavors to establish its hegemony in the region. India has been frequently violating the Line of Control. Within the military domain it is against the law and not allowed to launch fire on the civilians’ working or moving near the border during the peacetime. India always tries to defame and malign the image of Pakistan by manipulating and misguiding international media. By the end of March 2020, a RAW funded group caught in Karachi University fueling anti-state activities including terrorism and anti-state narrative propagation against Pakistan. Although Pakistan very efficiently embarks upon curbing India generated conspiracies, such type of activities being carried out, increasing hybrid threats pose serious security concerns for Pakistan. 

As stated above, hybrid threat involves cyber warfare techniques as assisting tools of hybrid techniques. Cyber threat is another hazard in South Asian region to be handled and manipulated to win advantages over enemy. New technologies are quickly integrated into both nations’ strategies; utilizing cyberspace has become a useful tool for both India and Pakistan. Cyberspace has become a space where hacktivists and patriotic hackers from both sides can express their patriotic feelings and denigrate the adversary. Cyberspace also acts as a means for Advanced Persistent Threats (APTs), which are groups that hold highly probable links to state institutions, to spy and gain information on their opponent. Technologically number of the cyber-activities observed in the India-Pakistan rivalry showed that even with relatively unsophisticated cyber-tools, APTs managed to steal information and achieve their strategic goals. Actors involved in the cyber activities and operations carried out between India and Pakistan in cyberspace used a variety of cyber tools and techniques to achieve their aims. Hacktivists and patriotic hackers used specific tools to find vulnerabilities in websites, and then exploited them to deface the site. APTs tended to use spear phishing to get access to their victim’s network and then infect them with spying malware.

Rising Security Research Institute in 2019 has captured the attack launched by the internationally renowned Advanced Persistent Threat (APT) organization “Rattlesnake” through the Rising Threat Intelligence System. This time, the organization had targeted the Pakistani Navy via Target collision hijacking method. Specifically targeting the Pakistan Naval Public Relations Bureau, the attempt was aimed at stealing vital information from secure military networks while planting misleading documents masquerading as official statements from the Pakistan Navy regarding its regional neighbors such as China and India. Based on such threats, Pakistan must be readily prepared for any kind of cyber espionage and take steps towards establishing a strong national cyber policy to protect its civilian and military infrastructure.

Hybrid/cyber threats operates below the threshold and it has deepen it’s in roots in South Asian region especially in Pakistan. War had never been smooth since its early times but hybrid war threats employ different tools in engaging low intensity conflicts which mainly include cyber threats along social disintegration, political and economic subversion. Senator Mian Raza Rabbani stated in 2019, that ‘this is a hybrid war. We need to understand it correctly.’ In hybrid warfare, the purpose is not to always achieve an immediate victory; sometimes the purpose is to demoralize it over time. Pakistan is already having a deteriorating economy and it needs to steadily address the causes that are providing leverages to conduct hybrid operations in Pakistan and leaving long term hazardous effects in form of weak economic conditions, political and social instability. Pakistan must formulate a national hybrid threats response policy to tackle and dissolve the hybrid threats posed by India. Whereas in the cyber domain Pakistan should emphasize more on indigenously developing its own cyber security industry so that in the near future it could benefit both its civilian and military infrastructure in the long run. Hence, while Pakistan may be limited in its ability to wage a strong offensive campaign within the realm of cyber warfare at the moment, such steps would go a long way in helping lay the foundations to build something greater on.

Continue Reading
Comments

Intelligence

USA and Australia Worry About Cyber Attacks from China Amidst Pegasus Spyware

Published

on

Pegasus Spyware Scandal has shaken whole India and several other countries. What will be its fallout no one knows as we know only tip of iceberg. Amidst Pegasus Spyware Scandal USA and Australia both have shown serious concerns about Cyber Attacks on US and Australian interests. Both say that China is hub of malware software and both face millions of such attacks daily.

I am trying to understand why a software is needed to spy on a particular individual when all calls, messages, data, emails are easily accessible from server. In most of cases these servers are located in USA and some cases these are located in host country. In certain sensitive cases Government Agencies have their own server like Central Intelligence Agency and hundreds of other agencies and military establishment world over including India. Now point is who installs those servers.

A couple of years back I had talked to Mr Mike Molloy who is Chief Executive Officer of Orion Global Technologies previously known as Orion SAS. He had explained me how his company installs servers in host countries on request of private or gov bodies. He talks about contract and trust. That means even when a company or Gov buys a server or software for designated uses the “Secrecy” Factor remain on discretion of company which has supplied server or software.

Now  if all data, e-mail, chat, messages, calls are accessible to Gov as per law and technology (Through Server all components of Communication are accessible and thats why  me and you see start seeing call recording of a person even after many years later), I am unable to understand why a Gov will be needing a software to Spy on any one.

Now coming to where Australia and USA wants to carry the whole debate.

Australian Foreign Minister Sen Marise Payne said, “Australian Government joins international partners in expressing serious concerns about malicious cyber activities by China’s Ministry of State Security.

“In consultation with our partners, the Australian Government has determined that China’s Ministry of State Security exploited vulnerabilities in the Microsoft Exchange software to affect thousands of computers and networks worldwide, including in Australia. These actions have undermined international stability and security by opening the door to a range of other actors, including cybercriminals, who continue to exploit this vulnerability for illicit gain”, She further added.

She opined, ”The Australian Government is also seriously concerned about reports from our international partners that China’s Ministry of State Security is engaging contract hackers who have carried out cyber-enabled intellectual property theft for personal gain and to provide commercial advantage to the Chinese Government”.

She warned China by saying, “Australia calls on all countries – including China – to act responsibly in cyberspace.  China must adhere to the commitments it has made in the G20, and bilaterally, to refrain from cyber-enabled theft of intellectual property, trade secrets and confidential business information with the intent of obtaining competitive advantage”.

On other hand USA’s The National Security Agency (NSA), Cybersecurity and Infrastructure Security Agency (CISA) and Federal Bureau of Investigation (FBI) released a Cybersecurity Advisory on Chinese State-Sponsored Cyber Operations. National Security Advisor said, ”Chinese state-sponsored cyber activity poses a major threat to U.S. and allied systems. These actors aggressively target political, economic, military, educational, and critical infrastructure personnel and organizations to access valuable, sensitive data. These cyber operations support China’s long-term economic and military objectives”.

The information in this advisory builds on NSA’s previous release “Chinese State-Sponsored Actors Exploit Publicly Known Vulnerabilities.” The NSA, CISA, and FBI recommended mitigations empower our customers to reduce the risk of Chinese malicious cyber activity, and increase the defensive posture of their critical networks. 

Continue Reading

Intelligence

Afghan issue can not be understood from the simplistic lens of geopolitical blocs

Published

on

pakistan-terrorism

Authors: Tridivesh Singh Maini  and Varundeep Singh*

On July 14, 2021 a terror attack was carried out in Khyber Pakhtunkhwa (KPK) province in which a number of Chinese engineers, working on the Dasu hydropower project (a project which is part of the China Pakistan Economic Corridor) were killed. The attack predictably evinced a strong response from China. The Chinese foreign minister, Wang Yi speaking before a Shanghai Cooperation Organisation (SCO) Foreign Minister’s meeting asked the Taliban to disassociate itself from ‘terrorist elements’ and in a meeting with Pakistan Foreign Minister, Shah Mehmood Qureshi, asked Pakistan to bring the perpetrators to book. Earlier in April 2021, a car bomb attack took place at Serena hotel in Quetta which was hosting China’s Ambassador to Pakistan (four people were killed and twelve were injured)

Wang Yi significantly praised the Ashraf Ghani government, for its attempts towards building national unity and providing effective governance. Beijing clearly realizes that its economic investments in the country as well as big ticket infrastructural projects can not remain safe if there is no security. Afghanistan also criticized Pakistan for its role in sending 10000 Jihadis to Taliban, this is important in the context of the region’s geopolitics.

 Like all other countries, Beijing and Islamabad, would have expected uncertainty after the US withdrawal of troops but perhaps over estimated their capabilities in dealing with the turbulence which had been predicted by many.

Importance of Chinese Foreign Minister’s statements

Wang Yi’s statements are important because days earlier a Taliban spokesman, Suhail Shaheen had praised China and welcomed its role in the country’s reconstruction. He had also assured China that those involved in the insurgency in Xinjiang would not be given refuge in Afghanistan (one of China’s major concerns has been the support provided by Taliban to the East Turkmenistan movement)

While Beijing may have opened back channels with the Taliban and realized that it needs to adapt to the changing geopolitics, recent developments would have increased its skepticism vis-à-vis the Taliban. On the other hand, Russia has been more favorable towards the Taliban. Russia’s Deputy Chief of Mission in India, Roman Babushkin argued that the Taliban are a reality which needs to be accepted, and also that any military activities without a political process are insufficient.

Babushkin did make the point that for successful negotiations, Taliban needed to end violence.

‘that Taliban should deal with the problem of terrorism and other related issues in order to become legitimate, in order to [get] delisted [at the UN Security Council], in order to go ahead with the future Afghanistan and creation of the inclusive government

It would be pertinent to point out, that Zamir Kabulov, Russian President’s Afghanistan envoy went a step further and said that the Afghan government was not doing enough to make talks with Taliban a success.

China’s statements subtle warning to the Taliban, indicating its reservations, and praise of Ghani indicate a possibility of greater understanding between Washington and Beijing (even though Beijing has repeatedly attributed the current troubles in Afghanistan to Washington’s decision to withdraw troops).

Can US and China find common ground

 It remains to be seen if Biden who has exhibited dexterity on a number of complex issues reaches out to Xi Jinping to find common ground with regard to Afghanistan. Significantly, while US-Turkey relations had witnessed a downward trajectory and Biden has been critical of Turkish President Recep Tayyip Erdogan’s authoritarian tendencies and Human rights record, both leaders met on the sidelines of the NATO Summit in June 2021. During the meeting Turkey agreed to secure Kabul Airport. US National Security Advisor Jake Sullivan while commenting on Turkey’s assurance said

‘The clear commitment from the leaders was established that Turkey would play a lead role in securing Hamid Karzai International Airport, and we are now working through how to execute to get to that,’

Taliban earlier this week warned Turkey of ‘consequences’ if the Middle Eastern nation increased its troop presence in Afghanistan.

Conclusion

Russia’s statements with regard to the Taliban indicate that it is not totally on the same page as China (its prior experience in Afghanistan has made it more cautious and circumspect), and that the Afghan issue can not be understood from the simplistic lens of geo-political blocs and traditional lenses. All major stakeholders in Afghanistan, both within the region and outside, seem to be understandably befuddled by the turn of events. It is not just the US, but even China which would be worried not just from an economic stand point but the overall security implications of the turmoil in Afghanistan. The terror attack in KPK indicates that other CPEC related projects could also face threats from militant groups. Beijing would thus need to be quick to react to the overtures from the Taliban in order to secure its economic assets and lives of Chinese workers in neighbouring Pakistan.

 It is especially important for Washington, Beijing and other important stakeholders in the region to work together for dealing with the near term turbulence as well as long term challenges Afghanistan is likely to face.

*Varundeep Singh is an Independent Policy Analyst.

Continue Reading

Intelligence

Pegasus: Human rights-compliant laws needed to regulate spyware

Published

on

The UN human rights chief on Monday said the apparent widespread use of Pegasus spy software to illegally undermine the rights of those under surveillance, including journalists and politicians, was “extremely alarming” and confirmed “some of the worst fears” surrounding the potential misuse of such technology. 

“Various parts of the UN Human Rights system, including my own Office, have repeatedly raised serious concerns about the dangers of authorities using surveillance tools from a variety of sources supposed to promote public safety in order to hack the phones and computers of people conducting legitimate journalistic activities, monitoring human rights or expressing dissent or political opposition”, said High Commissioner Michelle Bachelet in a statement

According to reports, the Pegasus data leak allegations which surfaced through a consortium of media organisations over the weekend, suggests widespread and continuing abuse of the software, which the manufacturers insist, is only intended for use against criminals and terrorists. 

The Pegasus malware infects electronic devices, enabling operators of the tool to obtain messages, photos and emails, record calls, and even activate microphones, according to the consortium’s reporting. The leak contains a list of more than 50,000 phone numbers which reportedly belong to those identified as people of interest, by clients of the company behind Pegasus, including some governments.  

‘Indispensable role’ 

Surveillance software has been linked to the arrest, intimidation and even killing of journalists and human rights defenders, according to the senior UN official.  

Reports of surveillance also trigger fear and cause people to censor themselves.   

“Journalists and human rights defenders play an indispensable role in our societies, and when they are silenced, we all suffer”, she said, reminding all States that surveillance measures can only be justified in narrowly defined circumstances when necessary and proportional to a legitimate goal.  

‘Deep intrusions’ 

Given that Pegasus spyware, “as well as that created by Candiru and others, enable extremely deep intrusions into people’s devices, resulting in insights into all aspects of their lives”, the UN rights chief underscored, “their use can only ever be justified in the context of investigations into serious crimes and grave security threats.” 

If recent allegations about the use of Pegasus are even partly true, she maintained that the “red line has been crossed again and again with total impunity”. 

‘Due diligence’ 

Companies developing and distributing surveillance technologies are responsible for avoiding human rights abuses, she said, and they must take immediate steps to mitigate and remedy the damage their products are causing, or contributing to, and carry out “human rights due diligence” to ensure that they no longer play a part in “such disastrous consequences” now, or in the future. 

States also have a duty to protect individuals from privacy rights abuses by companies, she added.  

One key step in this direction is for States to require by law that the businesses meet their human rights responsibilities by becoming more transparent in their design and use of products and by putting in place effective accountability mechanisms. 

Better regulation key 

Reports also confirm “the urgent need to better regulate the sale, transfer and use of surveillance technologies and ensure strict oversight and authorization.” 

Governments should not only immediately stop using surveillance technologies in ways that violate human rights, but also “take concrete actions” to protect against such invasions of privacy by “regulating the distribution, use and export of surveillance technology created by others”, the High Commissioner said.  

Without human rights-compliant regulatory frameworks, Ms. Bachelet upheld that there are “simply too many risks” that the tools could be used to intimidate critics and silence dissent.

Continue Reading

Publications

Latest

Americas32 mins ago

Biden Revises US Sanctions Policy

In the United States, a revision of the sanctions policy is in full swing. Joe Biden’s administration strives to make sanctions instruments more effective in achieving his...

South Asia3 hours ago

Unleashing India’s True Potential

As India strives to unleash its true potential to rise as a global powerhouse, it is tasked with a series...

New Social Compact5 hours ago

Demand for Investigation of COVID-19 gained momentum

Human history is full of natural disasters like Earthquakes, Floods, Fires, Vacanos, Drought, Famine, Pandemic, etc. Some of them were...

Central Asia7 hours ago

Power without Soft Power: China’s Outreach to Central Asia

The People’s Republic of China has become increasingly interested in the Central Asian countries—Kazakhstan, Kyrgyzstan, Tajikistan, Turkmenistan, and Uzbekistan—for both...

Americas9 hours ago

Sea Breeze 2021: U.S. is worryingly heading closer to conflict with Russia in the Black Sea

On July 10th, the 2021 iteration of the joint military exercise, Sea Breeze, concluded in the Black Sea. This exercise,...

Russia11 hours ago

Russian Foreign Ministry sees elements of show in “Navalny poisoning”

Russian Foreign Ministry’s press secretary Maria Zakharova has yet again dwelled with her usual sarcasm on last year’s reports about...

Africa Today21 hours ago

Partnership with Private Sector is Key in Closing Rwanda’s Infrastructure Gap

The COVID-19 (coronavirus) pandemic has pushed the Rwandan economy into recession in 2020 for the first time since 1994, according...

Trending