On 4 October 2023 the International Committee of the Red Cross published rules of engagement for civilian hackers involved in conflicts. [1] [2] The rules had been described as a "Geneva Code of cyber-war". [3]
Since 2013 there has been a rise in hacking associated with conflicts, such as the Syrian civil war, which led to attacks on Western media. [1] [2] This has significantly accelerated after the Russian invasion of Ukraine. [1] [2]
The rules are:
The ICRC has also asked governments to restrain hackers and enforce existing laws against cybercrime. [1] [2]
The IT Army of Ukraine has said they will "make best efforts to follow the rules" even if it puts them at a disadvantage with their enemies. [1] They also said that attacks on healthcare facilities had already been ruled out by them. [1] [3]
Killnet initially refused to follow the rules, but a couple of days later agreed to abide by them. [1] [3]
A high-ranking member of Anonymous said they had "always operated based on several principles, including rules cited by the ICRC" but had become disillusioned with the organisation and would not follow the rules. [1]
A representative of Anonymous Sudan said the rules were "not viable and that breaking them for the group's cause is unavoidable". [1]
The organized International Red Cross and Red Crescent Movement is a humanitarian movement with approximately 16 million volunteers, members, and staff worldwide. It was founded to protect human life and health, to ensure respect for all human beings, and to prevent and alleviate human suffering. Within it there are three distinct organisations that are legally independent from each other, but are united within the movement through common basic principles, objectives, symbols, statutes, and governing organisations.
The Geneva Convention relative to the Protection of Civilian Persons in Time of War, more commonly referred to as the Fourth Geneva Convention and abbreviated as GCIV, is one of the four treaties of the Geneva Conventions. It was adopted in August 1949, and came into force in October 1950. While the first three conventions dealt with combatants, the Fourth Geneva Convention was the first to deal with humanitarian protections for civilians in a war zone. There are currently 196 countries party to the 1949 Geneva Conventions, including this and the other three treaties.
A civilian is a person not a member of an armed force nor a person engaged in hostilities.
The law of war is the component of international law that regulates the conditions for initiating war and the conduct of hostilities. Laws of war define sovereignty and nationhood, states and territories, occupation, and other critical terms of law.
Combatant is the legal status of a person entitled to directly participate in hostilities during an armed conflict, and may be intentionally targeted by an adverse party for their participation in the armed conflict. Combatants are not afforded immunity from being directly targeted in situations of armed conflict and can be attacked regardless of the specific circumstances simply due to their status, so as to deprive their side of their support.
Non-combatant is a term of art in the law of war and international humanitarian law to refer to civilians who are not taking a direct part in hostilities; persons, such as combat medics and military chaplains, who are members of the belligerent armed forces but are protected because of their specific duties ; combatants who are placed hors de combat; and neutral persons, such as peacekeepers, who are not involved in fighting for one of the belligerents involved in a war. This particular status was first recognized under the Geneva Conventions with the First Geneva Convention of 1864.
International humanitarian law (IHL), also referred to as the laws of armed conflict, is the law that regulates the conduct of war. It is a branch of international law that seeks to limit the effects of armed conflict by protecting persons who are not participating in hostilities and by restricting and regulating the means and methods of warfare available to combatants.
Protocol I is a 1977 amendment protocol to the Geneva Conventions concerning the protection of civilian victims of international war, such as "armed conflicts in which peoples are fighting against colonial domination, alien occupation or racist regimes". In practice, Additional Protocol I updated and reaffirmed the international laws of war stipulated in the Geneva Conventions of 1949 to accommodate developments of warfare since the Second World War (1937–1945).
The International Committee of the Red Cross is a humanitarian organization based in Geneva, Switzerland, and is a three-time Nobel Prize Laureate. The organization has played an instrumental role in the development of rules of war and promoting humanitarian norms.
During the 2006 Lebanon War, allegations of war crimes were made by various groups and individuals, including Amnesty International, Human Rights Watch, and United Nations officials, who accused both Hezbollah and Israel of violating international humanitarian law. These have included allegations of intentional attacks on civilian populations or infrastructure, disproportionate or indiscriminate attacks, the use of human shields, and the use of prohibited weapons.
The Geneva Conventions are international humanitarian laws consisting of four treaties and three additional protocols that establish international legal standards for humanitarian treatment in war. The singular term Geneva Convention colloquially denotes the agreements of 1949, negotiated in the aftermath of the Second World War (1939–1945), which updated the terms of the two 1929 treaties and added two new conventions. The Geneva Conventions extensively define the basic rights of wartime prisoners, civilians and military personnel; establish protections for the wounded and sick; and provide protections for the civilians in and around a war-zone.
Customary international humanitarian law is a body of unwritten rules of public international law, which govern conduct during armed conflict.
A cyberattack is any offensive maneuver that targets computer information systems, computer networks, infrastructures, personal computer devices, or smartphones. An attacker is a person or process that attempts to access data, functions, or other restricted areas of the system without authorization, potentially with malicious intent. Depending on the context, cyberattacks can be part of cyber warfare or cyberterrorism. A cyberattack can be employed by sovereign states, individuals, groups, societies or organizations and it may originate from an anonymous source. A product that facilitates a cyberattack is sometimes called a cyber weapon. Cyberattacks have increased over the last few years. A well-known example of a cyberattack is a distributed denial of service attack (DDoS).
During the ongoing Russo-Ukrainian War between the Ukrainian government forces and pro-Russian separatists in the Donbas region of Ukraine that began in April 2014, many international organisations and states noted a deteriorating humanitarian situation in the conflict zone.
The Protocol on Prohibitions or Restrictions on the use of Incendiary Weapons is a United Nations treaty that restricts the use of incendiary weapons. It is Protocol III to the 1980 Convention on Certain Conventional Weapons Which May Be Deemed To Be Excessively Injurious Or To Have Indiscriminate Effects. Concluded in 1981, it entered into force on 2 December 1983. As of January 2023, it had been ratified by 126 state parties.
The IT Army of Ukraine is a volunteer cyberwarfare organisation created at the end of February 2022 to fight against digital intrusion of Ukrainian information and cyberspace after the beginning of the Russian invasion of Ukraine on February 24, 2022. The group also conducts offensive cyberwarfare operations, and Chief of Head of State Special Communications Service of Ukraine Victor Zhora said its enlisted hackers would only attack military targets.
Killnet is a pro-Russia hacker group known for its DoS and DDoS attacks towards government institutions and private companies in several countries during the 2022 Russian invasion of Ukraine. The group is thought to have been formed sometime around March 2022.
In international humanitarian law and international criminal law, an indiscriminate attack is a military attack that fails to distinguish between legitimate military targets and protected persons. Indiscriminate attacks strike both legitimate military and protected objects alike, thus violating the principle of distinction between combatants and protected civilians. They differ from direct attacks against protected civilians and encompass cases in which the perpetrators are indifferent as to the nature of the target, cases in which the perpetrators use tactics or weapons that are inherently indiscriminate, and cases in which the attack is disproportionate, because it is likely to cause excessive protected civilian casualties and damages to protected objects.
Anonymous Sudan is a hacker group that has been active since mid-January 2023 and believed to be originated from Russia with no links to Sudan or Anonymous. They have launched a variety of distributed denial-of-service (DDoS) attacks against targets.
Humanitarian aid in conflict zones is the provision of emergency assistance and support to individuals and communities affected by armed conflict, with the aim of alleviating suffering, maintaining human dignity, and preserving life. This type of aid encompasses a wide range of services, including but not limited to, the delivery of food, water, shelter, medical care, and protection services, and is delivered amidst challenging and often dangerous conditions, with the goal of reaching those most in need regardless of their location, political affiliation, or status.