In Homeland Security
By J. Thompson
Special Contributor for In Homeland Security
Black Hand’s assassination of Archduke Ferdinand and his wife triggered World War I. Pearl Harbor thrust the U.S. from isolationism into World War II. The Gulf of Tonkin catalyzed U.S. military intervention in Vietnam. Is it possible that the Rogen-Franco hackneyed Hollywood comedy The Interview (in the vein of 1985’s Chase-Akroyd, Spies Like Us) will become the flashpoint for The Great Cyberwar in the chronicles of history?
The Sony hack is already bad, but according to CNN, worse is coming. And while bruised egos and geopolitical consequences are being sorted out, the truth is the West has prepared for cataclysmic cyber-attacks by enemy states for years now. In fact, it was around the time of Stuxnet while touring DC’s International Spy Museum that I recall the strong emphasis placed on potential cybersecurity warfare in the museum’s 21st century exhibit:
If cyber spies break America’s security codes—could power lines turn into battle lines? …On your final stop—Weapons of Mass Disruption— hear from some of today’s top experts on the new intelligence battlefield of cyberspace. Explore what would happen if a cyber attack hit the electrical grid.”
Power grids, transportation systems, Wall Street—those were the priority “hard targets” topping our nation’s must-protect list—but Hollywood? Not only was the movie industry a relatively “soft target,” few probably considered “Tinseltown” a target at all considering it was a malware program with splapdash code that broke the levee of embarrassing executive emails, unreleased film content and overwritten data. Federal and private-industry cybersecurity experts have been on high alert for years, but now that the FBI officially linked North Korea to the Sony hack, some Americans who were either unaware or thought cyberwar was an abstract or clandestine concept, may now realize this was only a preview for more disruptive attacks that will hit closer to home. While cyberwar may sound tame in the context of comparing it to actual warfare, most press descriptions and federal agencies leverage warfare terminology to describe the potency of this global threat (Read The Associated Press, “Inside North Korea’s cyberarmy”).
What have we learned?
By most accounts, North Korea amassed a potent cyber-attack wing consisting of thousands of hackers with no signs of abatement. Combine this with the key global players that Forbes described as a cybewarfare arms race with Iran, China and Russia, and you’ll see there are numerous vulnerabilities facing the U.S. And to confront the threat, U.S. Secretary of Defense Chuck Hagel announced in March that DoD is tripling its cybersecurity force with the goal of hiring 6,000 cybersecurity professionals by 2016.
We’ve also learned that cybersecurity is not only an information technology issue, which until recently, was a blind spot in how some corporations and agencies were tackling the threat. I recently talked with American Military University’s Cybersecurity Program Director Dr. Clay Wilson and learned that cybersecurity cannot be viewed solely as a tech issue:
A broader approach is required, which includes sound enterprise strategy planning at the highest management levels including the CEO and the board. It’s not just about antiviral firewalls and intrusion detection. The future of cybersecurity calls for highly-trained technical experts and managing leaders from multiple disciplines who understand how to bulletproof enterprise networks and train a workforce that is aware of the best policies and practices for preventing future hacks.
With bigger cyber threats reportedly on the horizon, perhaps an unreleased comedic film will ultimately not go down as the salvo that started The Great Cyberwar—but the Sony hack by North Korea certainly represents a new front of escalation in this ongoing and global conflict.