Experts: Nation-state behind IMF cyber attack

/ Source: msnbc.com news services

The International Monetary Fund has become the latest known target of a significant cyber attack.

A cybersecurity expert who has worked for both the Washington-headquartered IMF and the World Bank, its sister institution, said the intruders' goal had been to install software that would give a nation-state a "digital insider presence" on the IMF network.

Such a presence could yield a trove of non-public economic data used by the fund to promote exchange rate stability, support balanced international trade and provide resources to remedy members' balance-of-payments crises. The intergovernmental group oversees the global financial system and brings together 187 member nations.

"It was a targeted attack," said Tom Kellerman, who has worked for both international financial institutions and who serves on the board of a group known as the International Cyber Security Protection Alliance.

The code used in the IMF incident was developed specifically for the attack on the institution, said Kellerman, formerly responsible for cyber-intelligence within the World Bank's treasury team and now chief technology officer at AirPatrol, a cyber consultancy.

Jeff Moss, a self-described computer hacker and member of the Department of Homeland Security Advisory Committee, also said he believed the attack was conducted on behalf of a nation-state looking to either steal sensitive information about key IMF strategies or embarrass the organization to undermine its clout.

'IT incident'IMF spokesman David Hawley said the organization is fully functional. He declined to provide further details on what he termed an "IT incident," including its scope or nature and whether any sensitive data were taken.

He also declined to respond to requests for comment on Kellerman's conclusion about the intruders' goal.

The New York Times cited unnamed IMF officials as saying the attack was sophisticated and serious. The assault reportedly lasted several months.

The Federal Bureau of Investigation is helping to investigate the incident, according to a Defense Department spokeswoman.

The IMF told staffers about the attack on Wednesday.

Cybersecurity experts cautioned it might be difficult for investigators to prove which nation was behind the attack.

"Even developing nations are able to leverage the Internet in order to change their standing and ability to influence," said Jeffrey Carr, author of the book, "Inside Cyber Warfare."

"It's something they never could have done before without gold or without military might," Carr said.

Computer link cutThe IMF is already facing a public-relations headache after the arrest of Dominique Strauss-Kahn, who resigned as IMF chief last month after being accused of sexually assaulting a maid in a New York hotel.

Concerns about the IMF attack were great enough that the World Bank cut a computer link that allows the two organizations to share non-sensitive information, according to a bank official. The move was taken out of "an abundance of caution," said the official, who spoke on condition of because of the security issues around the incident.

The IMF attack follows a string of major data breaches.

In recent months, hackers have penetrated 100 million Sony PlayStation accounts and the customer email databases of a company that does marketing for Best Buy and Target stores.

Google has accused Chinese hackers of targeting the Gmail accounts of U.S. government officials.

About 200,000 Citibank credit card customers in North America had their names, account numbers and email addresses stolen.

'The next Pearl Harbor'
Lockheed Martin Corp, the Pentagon's No. 1 supplier by sales and the biggest information technology provider to the U.S. government, also disclosed two weeks ago that it had thwarted a "significant" cyber attack. It said it had become a "frequent target of adversaries around the world."

Experts say cyber threats are increasing worldwide. CIA Director Leon Panetta told the U.S. Congress this week the United States faced the "real possibility" of a crippling cyber attack.

"The next Pearl Harbor that we confront," he said, could be a cyber attack that "cripples our power systems, our grid, our security systems, our financial systems, our governmental systems."

"This is a real possibility in today's world," Panetta told a June 9 confirmation hearing in his bid to become the next U.S. defense secretary.