Cyber Attack Scenario Memorandum

Scenario:
A recent cyber attack occurred where a botnet type attack targeted a major US defense firm. No physical damage occurred to the firms network, but significant technological secrets about a new surveillance and targeting system from the firm, Defense Applications International (DAI), appear to have been compromised. Incidental, but nonetheless as a result of the attack, the virus also infected a software program that DAI was testing at electrical plant in Pennsylvania. The plant had to be shut down for 12 hours while repairs were made. The NSA believes it has credible evidence that the attack had a direct connection to the elite cyber unit Department 2112, of the country of Redistan, an adversary of the United States, although the attack itself appears to include private citizens of Redistan. The attack, however, was routed through several third countries including Bluelandia, an ally of the United States.

You are a new cyber desk officer working for the National Security Council. The Deputy National Security Advisor has asked you to write a memorandum addressing key issues of cyber policy. In the memorandum you have been asked to address the following issues:

1. Based off of the facts we know, should the attack be considered a crime, espionage or act of war? What should the US response be? How can the US best defend itself from future attacks such as the one that just occurred?

In answering this question, this is not espionage as that is a spying tactic and this botnet attack was deliberate and controlling. I believe that this was a crime as acts of war in the cyber realm are still not yet defined nor are they dealt with as acts of war still in today’s cyber domain.

2. Should the United States assign US Cyber Command with the responsibility of protecting certain private companies and if so, what should the general standard be for determining what companies the government should be responsible for defending?

Absolutely, US Cyber Command is already protecting certain private computers within the DoD.

3. Should the United States lead the effort at an international cyber agreement? Why or why not? What challenges would the President face in trying to get an agreement? Are there any alternatives?

I believe so. Please answer this as you see fit.

4. Are there any substantive changes that should be made to the current US cyber policy?

Please answer this as you see fit.

You may allocate the content according to the importance of the issue. For example, you can allocate several pages to one issue if you believe it deserves more attention than the others; however, ensure that each question specified by the Deputy National Security Advisor is addressed.

Please use Times New Roman, 12 point and double space.

***Please use at least 8 of the references attached, outside sources are permitted for support but should not be used as this is more of a personal take on the situation to leadership.****

Please let me know if there’s anything I can do to assist.