WASHINGTON: Cyberattacks and cyber espionage have supplanted terrorism as the top threats to the United States in an annual “worldwide threat” assessment released Tuesday by the U.S. intelligence community.
However, in testimony prepared for a Senate Intelligence Committee hearing, James Clapper, the director of National Intelligence, played down the likelihood of catastrophic attacks on the United States by either cyberattackers or foreign or domestic militants in the immediate future.
In what has become an annual ritual, Clapper presented to the Senate panel a 34-page paper that ran through a wide variety of threats covered by U.S. intelligence agencies.
These included high-profile issues such as North Korea’s belligerence and the proliferation of nuclear weapons, as well as regional and economic issues like continuing instability in the wake of the Arab Spring uprisings. Also covered was a potential transition in Cuba and what is predicted to be China’s continuing domination of the world’s supply of rare earth elements.
On two of the most volatile global crisis points, the U.S. spy agencies’ assessment was restrained.
While Iran is improving its expertise in technologies, including uranium enrichment and ballistic missiles, that could be used in a nuclear weapons program, the intelligence community does not believe Iran’s leadership has decided to build a nuclear weapon and does not know if or when it might do so.
This assessment is consistent with a controversial 2007 finding, known as a National Intelligence Estimate, which declared Tehran had “halted its nuclear weapons program” in autumn 2003 and had not restarted it as of mid-2007, although it was keeping open the option of building nuclear weapons.
The listing of cyber-related attacks as the top item in the annual threat assessment is a departure from assessments offered in the previous two years. In both 2011 and 2012, the first threat listed in the agencies’ annual assessment to Congress was “terrorism.”
One factor that appeared to have boosted cyberattacks and cyber espionage to the top of the threat list is the worry that computer technology is evolving so quickly that it is hard for security experts to keep up.
“In some cases, the world is applying digital technologies faster than our ability to understand the security implications and mitigate potential risks,” Clapper said.
Nonetheless, he said, U.S. agencies judge that there is only a “remote chance” over the next two years of a “major cyberattack against U.S. critical infrastructure” such as a regional power grid. Less sophisticated attacks, such as denial-of-service attacks against bank websites, could be more likely, he said.
On terrorism, Clapper said al Qaeda’s Yemen-based affiliate, known as Al-Qaeda in the Arabian Peninsula, still has ambitions to launch attacks on the U.S. mainland. However, he said, the practicalities of success will be problematic and the group has a history of launching failed attacks with sophisticated devices such as underwear bombs.
While “homegrown violent extremists” will continue to be recruited and motivated by inflammatory material on the Internet, Clapper said U.S. agencies assess that such militants will “continue to be involved in fewer than 10 domestic plots per year.”
Moreover, the “core Al-Qaeda” group founded by the late Osama bin Laden and now led by his deputy, Ayman al Zawahri, has been “degraded ... to a point that the group is probably unable to carry out complex, large-scale attacks in the west,” Clapper said.
On Afghanistan, Clapper noted that the United States and other Western partners were proceeding with plans to pull troops out of the country, but the Taliban insurgency “remains resilient and capable of challenging U.S. and international goals.”