Cyber Attacks | 60 Minutes Full Episodes

()

Pegasus (00:00:11)

NSO Group, an Israeli technology company, developed Pegasus, a powerful spyware tool that can remotely access and extract data from smartphones.
Pegasus is licensed to intelligence and law enforcement agencies worldwide for legitimate purposes such as tracking criminals and terrorists.
Concerns have been raised about the potential misuse of Pegasus by governments to suppress dissent and engage in human rights abuses, particularly in countries with poor human rights records.
NSO Group claims to have strict controls in place to prevent misuse, but critics argue these measures are insufficient.
The use of Pegasus has sparked ethical debates about balancing national security and individual privacy.

North Korea launched a sophisticated cyber attack on Sony Pictures Entertainment in response to the release of a comedy film about their leader, Kim Jong-un.
The attack involved the theft of vast amounts of data, including business secrets, unreleased movies, and personal records of employees, forcing Sony to disconnect from the internet and revert to pre-digital communication methods.
The attack highlighted the growing threat of state-sponsored cyber warfare, with dozens of countries now possessing offensive cyber capabilities, and the low barrier to entry for cyber attacks, making it possible for terrorist groups to launch damaging attacks.
Cyber attacks have become increasingly sophisticated, with nation-states possessing advanced capabilities that are difficult to detect, and there is an active international underground market for cyber weapons.
Deterrence strategies against nation-states like China and Russia are possible, but responding to rogue states like North Korea poses significant challenges, and a technological breakthrough in cyber warfare defense is needed to address the problem.

The US has been warned about an impending cyber attack on critical infrastructure using the Stuxnet virus, which was previously used against an Iranian nuclear facility.
Stuxnet is a sophisticated virus that spreads through USB drives and targets specific industrial equipment, including programmable logic controllers (PLCs) used in various industries.
The virus was designed to collect information from infected computers and send it to two websites registered with a stolen credit card.
Stuxnet was likely carried out by a nation-state, with the United States and Israel considered the most likely suspects.
The attack was intended to sabotage Iran's nuclear program by targeting specific equipment in uranium enrichment facilities, causing damage and disrupting the process.
The full extent of the damage caused by Stuxnet remains unknown, as the attackers intended for the attack to remain covert.
The source code of Stuxnet is now publicly available, posing potential risks as it can be repurposed for cyber attacks against critical infrastructure by countries, terrorist groups, and cyber criminals.
The nation's critical infrastructure, mostly privately owned, is vulnerable to cyber attacks like Stuxnet, and there is debate over the federal government's role in requiring infrastructure owners to improve their security measures.