Cyberwar Timeline

The roots of this increasingly menacing challenge facing nations and businesses

by Beth Rowen

A cyberattack is the deliberate breaching of an entity's computer system with the intent of stealing intellectual property or financial resources; disabling, wiping out, or manipulating a computer or network; or causing other damage or disruption to a computer-driven system. The threat of a cyberattack is a serious concern for governmental, military, and business leaders. In fact, President Obama has called such a threat, "one of the most serious economic and national security challenges we face as a nation."

Below is a timeline tracing the roots of this increasingly menacing challenge facing nations and businesses all over the world. As the timeline that follows illustrates, China appears to be the biggest aggressor when it comes to cyber attacks. This timeline covers cyberattacks on government and military computers; it does not include attacks on corporations or individuals. However, events are included if they were carried out by foreign governments or militant groups.

1980 1990 2000 2010
1969
December
ARPA (Advanced Research Projects Agency) goes online and connects four major U.S. universities. Designed for research, education, and government organizations, it provides a communications network linking the country in the event that a military attack destroys conventional communications systems.
1982
June
After learning that the Soviet Union planned to steal software from a Canadian company to control its Trans-Siberian Pipeline, the CIA alters the software to cause the pipeline to explode. It is considered the first cyberattack.

1986
Over the course of 10 months beginning in August, Clifford Stoll, a physics researcher at the University of California at Berkeley, tracks down a hacker who had broken into computers at the Lawrence Berkeley National Laboratory, a U.S. Department of Energy facility, and other military computers in the U.S. He traced the hacker to Germany. It is the first such investigation.
1988
November
An Internet worm temporarily shuts down about 10% of the world's Internet servers. It is the first occurrence of an Internet worm. Robert Tappan Morris, a student at Cornell University, released the worm. Morris is the first person tried and convicted under the computer fraud and abuse act.
1994
March and April
Computers at the Rome Air Development Center at Griffiss Air Force Base in New York are attacked 150 times by anonymous hackers, who use a "sniffer" program to steal login credentials and sensitive information from the lab, which conducts research on artificial intelligence systems, radar guidance systems, and target detection and tracking systems. The hackers then use the login information to access the computers of other military and government facilities, including NASA's Goddard Space Flight Center and the Wright-Patterson Air Force Base.

1997
June
The NSA conducts a test, known as Eligible Receiver, to assess the vulnerability of government and military computers to a cyberattack. The exercise reveals that systems throughout the country could be hacked and disrupted with relative ease using commercial computers and software.
1998
February
Analysts with the Air Force Computer Emergency Response Team in San Antonio, Texas, notice intrusions into their computer networks from several academic institutions, including Harvard. The hackers, who turned out to be three teenagers, exploited a weakness in the network's operating system. The event is a wake-up call to the government and prompted President Bill Clinton to develop a cyber-security plan.
December
The Department of Defense establishes the Joint Task Force on Computer Network Defense to defend the department's networks and systems "from intruders and other attacks."
2001
July
The worm named Code Red affects computer networks running a Microsoft operating system. Some websites, including the White House site, are disabled.
2003
Anonymous, the group of hackers who refer to themselves as "Internet activists" and attack government, corporate, and religious websites, is organized. While the group avoids adhering to a strict philosophy, its members seem united in their opposition to censorship.
February
President George Bush announces the creation of a new office under the Department of Homeland Security, the National CyberSecurity Division, and lays out a National Strategy to Secure Cyberspace to protect the nation's computer and information systems from a cyberattack.
November
Hackers, believed by U.S. officials to be backed by the Chinese military, search to find vulnerable computers in the military's computer network and steal sensitive information. The attacks continued for about three years and were given the name Titan Rain by U.S. officials.
2006
December
NASA begins to block emails with attachments prior to the launch of space shuttles to prevent hackers from sabotaging launch plans by gaining unauthorized access to the agency's computer network.
2007
April–May
Estonia's government websites are hacked by distributed-denial-of-service-attacks and are compromised for 22 days. The hackers are believed to be backed by the Russian government. Targets include the president's office, Parliament, law enforcement officials, and Estonia's two biggest banks.
June
The email account of U.S. Secretary of Defense Robert Gates is hacked. Officials blame China's People's Liberation Army.
September
British government officials announce that hackers have breached the computers of the Foreign Office and other government agencies. The hackers are believed to be members of China's People's Liberation Army.
2008
July
In the weeks before the war between Russia and Georgia, Georgia is hit by distributed-denial-of-service-attacks and many of the government's computer networks are disabled, including that of President Mikheil Saakashvili. Media and transportation companies are also affected. Georgian officials accused Russia of launching the attack.
October
Pentagon officials discover that a flash drive containing a covert program was inserted into a laptop at a base in the Middle East. The program collected data from a classified Department of Defense computer network and transferred it to computers overseas. Government officials say the hack was carried out by a foreign intelligence agency and called the intrusion, "most significant breach of US military computers ever."
2009
January
Israel's government Internet sites are attacked during the conflict with Hamas in the Gaza Strip. Government computers are barraged with as many as 15 million junk emails per second, and the computers are temporarily paralyzed. Israel suspects Hamas financed the hack.
March
Canadian researchers at the Munk Center for International Studies at the University of Toronto, announce that hackers based in China had penetrated almost 1,300 computers in 103 countries, including those belonging to embassies, government offices, and the Dalai Lama, and stole documents and other information.
December
News reports say that Iraqi insurgents had hacked into live feeds being sent by U.S. drones to military officials on the ground.
2010
April
University of Toronto researchers report that hackers broke into India's Defense Ministry and stole classified information about the country's national security system. The report, which points the finger at China, also says that the computers of embassies throughout the world had been compromised.
June
Security experts discover Stuxnet, the world's first military-grade cyber weapon that can destroy pipelines and cause explosions at power plants and factories, as well as manipulate machinery. It is the first worm that corrupts industrial equipment and is also the first worm to include a PCL (programmable logic controller), software designed to hide its existence and progress. In August, security software company Symantec states that 60% of the computers infected with Stuxnet are in Iran.
August
The Pentagon declares cyberspace the "new domain of warfare."
November
Iranian president Mahmoud Ahmadinejad acknowledges that the Stuxnet worm destroyed about 1,000 of the country's 6,0000 centrifuges at its nuclear facility in Natanz. Israel and the U.S. are believed to be behind the attack in an attempt to slow Iran's progress toward obtaining nuclear weapons.
December
Anonymous attacks several businesses seen as "enemies" of WikiLeaks. The action was in response to the arrest of WikiLeaks founder, Julian Assange. In 2010, WikiLeaks provided several news organizations with hundreds of thousands of secret government and military documents about the wars in Iraq and Afghanistan, as well as cables that gave a behind-the-scenes look at American diplomacy from the perspective of high-level officials.
2011
June
Officials at the International Monetary Fund report that in the previous months it had been hit by "a very major breach" of its computer systems. The FBI announced evidence linking the Chinese government to the attack.
December
Malware, named Mahdi after the Messiah in Islam, infiltrates about 800 computers of government officials, embassy employees, and other businesspeople in Iran, Israel, Afghanistan, the United Arab Emirates, and South Africa. The malware was embedded in email attachments and users who opened the documents were susceptible to having their emails and instant messages read by hackers.
2012
May
Flame, malware that attacks computers using Microsoft Windows, is discovered. Its development is believed to have been state-sponsored. A report, released by Budapest University's CrySyS Lab, states that "arguably, it is the most complex malware ever found." Flame is capable of recording Skype conversations, audio, keyboard activity, network traffic and screenshots. It is spread over a local network or USB stick. Flame also has a kill command, wiping out all traces of it from the computer.
May
The U.S. Department of Homeland Security announces that spear fishers have penetrated the computer systems of U.S. gas pipeline systems.
August
Hackers, who say they are Islamic and call themselves the Cutting Sword of Justice, infiltrate the computer networks of Saudi Aramaco, a Saudi Arabian oil company, and wipe out the hard drives of about 30,000 computers. Hackers left their calling card on each affected computer, displaying an image of an American flag on fire.
September
Nine banks in the U.S., including the Bank of America, Wells Fargo, and JP Morgan Chase, were hit by a distributed-denial-of-service attack that denied customers access to the banks' websites for several days. The Islamic hacktivist group Izz ad-Din Al-Qassam Cyber Fighters (also called the Al-Qassam Brigades) takes responsibility for the attack. The group is linked to the military wing of Hamas.
October
U.S. Secretary of Defense Leon Panetta warns that the U.S. must protect itself against a "cyber Pearl Harbor."
2012–2013
The New York Times is hacked several times between late 2012 and early 2013 after publishing an article that investigated how members of former Prime Minister Wen Jiabao's family benefitted financially from state contracts. The hacking included gaining access to the paper's computer systems and acquiring employee's passwords. A day after The New York Times reported the incident, the Wall Street Journal reveals in a statement that hackers had infiltrated it, too, "for the apparent purpose of monitoring the newspaper's China coverage."
2013
August 27
The New York Times website is shut down for about 20 hours after being hacked, allegedly by the Syrian Electronic Army, a group of hackers who back Syrian president Bashar al-Assad. The attackers accessed the site through Melbourne IT, the vendor that registers domain names.
2014
May
The U.S. the Justice Department unsealed an indictment of five members of Unit 61398 of the Chinese People’s Liberation Army, charging them with hacking into the computer networks of Westinghouse Electric, U.S. Steel Corp., and other companies. Shanghai-based Unit 61398 is the cyber division of China's national army. The move is considered largely symbolic since there is little chance the men will surrender.
July
American officials announced that Chinese hackers had breached the computer network of the Office of Personnel Management in March. They said they believe the hackers were targeting employees applying for top security clearances.

Related Links

Information Please® Database, © 2007 Pearson Education, Inc. All rights reserved.

Did you know?
Steamboat, in Yellowstone National Park, is the largest active geyser in the world, sending water more than 300 ft. into the air for 3 to 20 minutes.

stay connected

Sign up for our free email newsletters and receive the latest advice and information on all things parenting.

Enter your email address to sign up or manage your account.

Facebook icon Twitter icon Follow Us on Pinterest

editor’s picks

highlights

Join BIC on our mission to save handwriting and Fight For Your Write! Writing helps kids become better readers, boosts their confidence and sparks their creativity. Visit BICFightForYourWrite.com to sign our petition to save handwriting!

7 Tips for Reading Aloud to Babies & Toddlers
The AAP advises reading aloud to babies and toddlers because it boosts brain power and has many other benefits. Get some tips for making the most of story time with your tot!

Kindergarten Readiness App Wins Gold
Our Kindergarten Readiness app won the Gold Award of Excellence in the educational category at the 2014 Communicator Awards. This valuable checklist comes with games and activities to help your child practice the essential skills she needs for kindergarten. Download the Kindergarten Readiness app today!

How to Survive Summer Boredom
When the kids are home all day, every day, summer boredom strikes hard and fast. Learn the best summer boredom busters and tips for surviving until September.

12 Birthday Party Favors that Won't Get Thrown Away
The next time you're planning a birthday, forgo the penny candy and cheap toys. Send your guests home with one of these fun and creative party favor ideas!