WASHINGTON â" A new wave of cyberattacks is striking American corporations, prompting warnings from federal officials, including a vague one issued last week by the Department of Homeland Security. This time, officials say, the attackersâ aim is not espionage but sabotage, and the source seems to be somewhere in the Middle East, David E. Sanger and Nicole Perlroth report in The New York Times on Monday.
The targets have primarily been energy companies, and the attacks appeared to be probes, looking for ways to seize control of their processing systems. The attacks are continuing, officials said. But two senior administration officials said on Sunday that they were still not certain exactly where the attacks were coming from, or whether they were state-sponsored or the work of hackers or criminals.
âWe are concerned by these intrusions, and we are trying to make sure they donât lead to something much bigger, as they did in the Saudi case,â said one senior American official. He was referring to the aggressive attack last summer that affected 30,000 computers at Saudi Aramco, one of the worldâs largest oil producers. After lengthy investigations, American officials concluded that Iran had been behind the Saudi Aramco attack.
Another official said that in the new wave of attacks, âmost everything we have seen is coming from the Middle East,â but he did not say whether Iran, or another country, appeared to be the source.
Last weekâs warning was unusual because most attacks against American companies â" especially those coming from China â" have been attempts to obtain confidential information, steal trade secrets and gain competitive advantage. By contrast, the new attacks seek to destroy data or to manipulate industrial machinery and take over or shut down the networks that deliver energy or run industrial processes.