Categories
Artificial Intelligence Cyberinfrastructure Education Reading

Latest Read: Cybersecurity: The Insights You Need

Cybersecurity: The Insights You Need from Harvard Business Review.

Cybersecurity: The Insights You Need from Harvard Business Review

So let’s start with the end in mind to avoid all misunderstandings: this is targeted to every leader and board member regardless of market or industry. They simply must fully comprehend why cybersecurity has been and always will be an ongoing risk.

This is a well written, high level and most importantly a non-technical overview of cybersecurity. This risk can no longer be overlooked by organizations and delegated like it was 1994. Today more than ever before cybersecurity impacts your bottom line, including non-technology based organizations.

And in 2024 we can simply cut to the chase. If your organization’s cybersecurity service is not AI based, it is time to pivot to a vendor that deploys machine learning services to protect your organization, your data and most importantly, your customer data. Just query your insurance carrier for a list of approved vendors that deploy AI cybersecurity services. For the most part the pandemic made this pivot mandatory.

In fact, cyber risk management can no longer be isolated to your organization’s CIO and CISO. This is simply an organization-wide issue. Today every organization’s technology services group have become the key component for organizational success.

Categories
Cyberinfrastructure Education Reading Technology

Latest Read: Click Here to Kill Everybody

Click Here to Kill Everybody, Security and Survival in a Hyper-connected World by Bruce Schneier. He is a fellow at the Berkman Klein Center for Internet & Society at Harvard University, lecturer in Public Policy at the Harvard Kennedy School, and board member of the Electronic Frontier Foundation, AccessNow, and the Tor Project. He is also an Advisory Board Member of the Electronic Privacy Information Center and VerifiedVoting.org.

Click Here to Kill Everybody Security and Survival in a Hyper-connected World by Bruce Schneier

Consequently, Bruce details many key issues in computer security that require the leadership and legislative pen of Congress. I certainly could not have picked a better time to read this book. My review is certainly just scratching the surface of his book. Bruce has communicated a much needed story for every consumer.

Above all, consider the 2021 Colonial Pipeline ransomware attack, the 2016 attacks upon our voting infrastructure, or even China’s digital espionage stealing almost every aspect of American innovation.

Do you think the internet is still growing in size? It is not the number of people, but rather the millions of new devices that pose increased risks. Therefore Bruce is calling for policies to protect these devices, knows as the Internet of Things (IoT). Examples of cyber attacks upon automobiles, electric and nuclear plants, medical devices and even airplanes is certainly proof that we are at greater risk.

A different era of industrial controls

Above all, cyber risk originates from different time in history. Besides, in the 1950s did consumers in South America have access to the internet? Any talented programmer in South America had no means to hack conventional hydroelectric dam controllers. However, today this is a reality. So then, the programmatic controls for any damn in American could not have envisioned this threat:

former National Cybersecurity Center director Rod Beckstrom summarized it this way: (1) anything connected to the Internet can be hacked; (2) everything is being connected to the Internet; (3) as a result, everything is becoming vulnerable.
p. 27

At the same time, we really don’t have to look forward, but rather back at the innovations created in the 1950s and 1960s that launched the connected internet.

Categories
Cyberinfrastructure Education Network Ransomware Reading Technology

HBO’s The Perfect Weapon

In 2020 HBO released the documentary The Perfect Weapon based upon the best-selling book by David Sanger a New York Times national security correspondent. The book was a fantastic review of cyber attacks conducted by Russia, China and other countries deemed hostile to the US and the West. Accordingly, this documentary reveals how cyber war began. This is certainly the primary strategy today for nation state attacks. This documentary is also available on Amazon Prime.

Stuxnet, known as the cyber attack “Olympic Games” was an original US/Israel joint cyber attack. The concern was understanding the risk to a nuclear war in the Middle East in supporting Israel’s defense. The Bush Administration chose to invoke a new type of warfare.

Categories
Cyberinfrastructure Education Globalization Innovation Network Reading Technology

Latest Read: This Is How They Tell Me the World Ends

This Is How They Tell Me the World Ends: The Cyberweapons Arms Race by Nicole Perlroth. Nicole covers cybersecurity and digital espionage for The New York Times. Certainly this is one of the more anticipated books addressing a new cyber arms race. More than ever before, it is imperative to understand how a global market for Zero Day exploits began and today how it is certainly tipping the scales.

This Is How They Tell Me the World Ends The Cyberweapons Arms Race

Quite frankly, Nicole’s reporting will stun readers. This book will also surprise long time IT professionals.

As it seems so often in life, by chance, a ‘stumbling’ idea took hold. Initially a company in 2003 began buying exploits from hackers for as little as $75. Fast forward to today, a good iOS zero day commands over $3 million dollars.

Nicole begins her reporting role at the NYTimes by reviewing secret documents leaked by Edward Snowden and Glen Greenwald.

This of course revealing the illegal spying on American citizens by the Bush Administration. At the same time, this project was tapping phone calls of German Chancellor Angela Merkel. The Guardian obtained copies via Greenwald who passed a copy to the NYTimes. This proved to be her introduction to the cyber world.

In addition, Nicole retells the hard lessons from Soviet spying (actually from within the US embassy) in Moscow back in the 1950s. This reveals a good baseline to today’s advanced attacks including the resources and dedication necessary to carry them out.

Cyber weapons for Board rooms

Chapter One’s Closet of Secrets is certainly mandatory reading for organizational leaders. It will become very apparent that organizations must reconsider their outdated understanding of information security. One cannot walk away from this book ignoring an often repeated message: your organization has already been hacked, or your organization does not yet realize it has been hacked. Thus, Nicole makes the case in her interviews with hackers that every computer, phone, network, or storage drive has been compromised.

Categories
Cyberinfrastructure Education Google Network Reading Technology Vietnam War

Latest Read: Surveillance Valley

Surveillance Valley: The Secret Military History of the Internet by Yasha Levine. This book is an amazing and enlightening deep dive into the history of the US military-driven internet. Google and Facebook have become today the major players of a corporate DARPA.

Surveillance Valley

The message of Surveillance Valley is twofold: the US military has held the key, foundational role of today’s internet. After all, ARPANet, the initial ‘internet’ went into production in 1966.

The second message is the evolution of counterinsurgency from signals intelligence to Google Chrome. This will surprise many. This can be a very interesting read for our times.

At first glance this story is about Google and law enforcement surveillance within the City of Oakland. Yet, Yasha takes the reader all the way back to the Vietnam War. For instance, he lays the foundation for today’s internet to Project AGILE, an early clandestine effort to aid the French to recolonize Indochina after World War II. Likewise we did not learn from their failures.

This highly secret project launched under Truman as the Advanced Research Projects Agency (ARPA), and rebranded Defense Advanced Research Projects Agency (DARPA). Those early cyclical electronic counterinsurgency efforts in the mid-1950s failed.

In other words, the opening chapters actually provide a very detailed history lesson regarding Presidents Truman and Eisenhower. Data harvesting, aka “counterinsurgency” was flourishing in the Cold War. The impact of Sputnik and French defeats in Vietnam drove counterinsurgency efforts.