- Source: CNN " data-fave-thumbnails="{"big": { "uri": "https://media.cnn.com/api/v1/images/stellar/prod/180717104539-gfx-russia-data-hack.jpg?q=x_0,y_371,h_2250,w_3999,c_crop/h_540,w_960" }, "small": { "uri": "https://media.cnn.com/api/v1/images/stellar/prod/180717104539-gfx-russia-data-hack.jpg?q=x_0,y_371,h_2250,w_3999,c_crop/h_540,w_960" } }" data-vr-video="false" data-show-html=" Situation Room " data-byline-html="
" data-timestamp-html="
Published 3:55 PM EDT, Tue September 18, 2018
" data-check-event-based-preview="" data-is-vertical-video-embed="false" data-network-id="" data-publish-date="2018-07-24T22:10:17Z" data-video-section="politics" data-canonical-url="https://www.cnn.com/videos/politics/2018/07/24/us-intel-warning-russia-cyberattack-threats-to-power-grid-sciutto-tsr-vpx.cnn" data-branding-key="situation-room" data-video-slug="US intel warning russia cyberattack threats to power grid sciutto tsr vpx" data-first-publish-slug="US intel warning russia cyberattack threats to power grid sciutto tsr vpx" data-video-tags="building planning and construction,business and industry sectors,business, economy and trade,construction trades,continents and regions,eastern europe,elections and campaigns,electric power industry,electricians,electricity production and distribution,energy and resources,energy and utilities,europe,government and public administration,government bodies and offices,government departments and authorities,intelligence services,international relations and national security,jim sciutto,misc people,national security,north america,politics,russia,the americas,united states,utilities industry,voters and voting" data-details="">
gfx russia data hack
US intel warns of Russian threat to power grid
02:47 - Source: CNN
CNN  — 

The US military is taking a more aggressive stance against foreign government hackers who are targeting the US and is being granted more authority to launch preventative cyberstrikes, according to a summary of the Department of Defense’s new Cyber Strategy.

The Pentagon is referring to the new stance as “defend forward,” and the strategy will allow the US military “to disrupt or halt malicious cyber activity at its source, including activity that falls below the level of armed conflict.”

The new military strategy, signed by Defense Secretary James Mattis, also emphasizes an intention to “build a more lethal force” of first-strike hackers.

The “defend forward” initiative wasn’t included in the 2015 strategy and further enables the United States to carry out offensive hacking operations to defend against cyberattacks on critical US infrastructure, such as election systems and the energy grid.

20180821-Russia-Microsoft-hacking
alberto mier/cnn

Related article Russians targeted Senate and conservative think tanks, Microsoft says

In effect, it gives the US military more authority to act on its own – even against computer networks based in friendly countries.

Normally, one nation’s hackers will establish a computer network in a second country before launching an attack on a third country. For example, Russia might use computers in Germany to attack the United States.

Until recently, if the US National Security Agency observed Russian hackers building a computer network in a Western European country, the president’s National Security Council would need to weigh in before any action is taken.

Now, the NSA won’t have to give its seal of approval, according to Jason Healey, a senior research scholar at Columbia University and former George W. Bush White House cyber official.

This new strategy provides a roadmap for the military to wipe out the enemy computer network in a friendly country, said Healey.

“It’s extremely risky to be doing this,” Healey told CNN on Tuesday. “If you loosen the rules of engagement, sometimes you’re going to mess that up.”

Director of National Intelligence Dan Coats testifies before the Senate Intelligence Committee in the Hart Senate Office Building on Capitol Hill February 13, 2018 in Washington, DC. (Chip Somodevilla/Getty Images)
Director of National Intelligence Dan Coats testifies before the Senate Intelligence Committee in the Hart Senate Office Building on Capitol Hill February 13, 2018 in Washington, DC. (Chip Somodevilla/Getty Images)
Chip Somodevilla/Getty Images

Related article US intelligence chief: 'The warning lights are blinking red again' on cyberattacks

There is a growing threat from government-sponsored cyberattacks that disrupt civilian life. There is a major focus on Russian efforts to disrupt the 2018 midterms and there is a concern they may target US infrastructure. In 2015, Moscow was formally accused of hacking Ukraine’s electric grid in an unprecedented cyberattack that led to widespread power outages.

In 2016 and 2017, North Korea stole $81 million from Bangladesh’s central bank and carried out a worldwide attack on Microsoft computers through a ransomware attack known as “WannaCry 2.0.”

However, under the new strategy, US offensive cyberattacks will not target civilian infrastructure, because the US must abide by a UN agreement that prohibits “damaging civilian critical infrastructure during peacetime.”

This is the Trump administration’s second move to give the US military more autonomy over cyberattacks. It follows the National Security Council’s recent replacement of an Obama-era directive with one that gives US Cyber Command – the military’s hackers – more freedom to conduct counteroffensive hacking.