Election hacking in Florida, municipality hacking in Baltimore, and President Donald Trump’s handing of classification authorities to Attorney General William Barr share some characteristics. Our strategies lag behind the realities of dealing with information in the age of the internet. We need to start thinking differently about how we handle information; when to withhold it and when to share it.
I’ll write three posts on ways to think about those situations. We have to find better ways to deal with information and its misuses. Read More
Over the weekend, I went to a reading of Michael Frayn’s “Copenhagen.” When I came home, I saw this long Twitter thread.
I’ve long been annoyed with what I often refer to as “Silicon Valley boys.” It’s becoming more acceptable to say that out loud, and I occasionally do on Twitter. The shallowness of their exhortations for everyone to learn coding, their ignorance of human relations, and their belief that they can change the world for the better with code alone are at best naïve.
Revelations of Facebook’s ethics-free policies in taking advertising and manipulating its users have been dribbling out for over a year. Christopher Wylie’s insider view of Cambridge Analytica and Britain’s Channel 4 investigation have made questions of responsibility impossible to ignore. Read More
Big hack of pretty much everything in Ukraine this morning: internet, power plants, government. I wrote this post before that happened, but it applies.
The Obama administration was in an extremely difficult position after learning about Russian hacking of last year’s election. Several factors came into play: the difficulty of dealing with international cyber attacks, intransigent Republican partisanship, and the decaying relationship with Russia. I’m going to break down those factors into at least two posts.
Cyber attacks present a national security problem different from any encountered before. Lumping them into a designation of “cyberwar” projects assumptions of conventional war onto them and distorts the difficulties and possibilities. I haven’t seen much analysis of these differences and how they affect strategy. Please point me to them, if they exist. Most punditry assumes that cyber attacks can be equated to war, and numerous opinion articles have referred to the Russian hacks as a form of war. In this post, I will consider only that part of last fall’s situation. A later post will consider the political ramifications. Read More
Two men were arrestedon Wednesday, January 25 in December by Russia’s FSB on charges of treason. The men are Sergei Mikhailov, a senior officer of the Federal Security Service, or FSB, and Ruslan Stoyanov, the head of computer incident response investigations at Kaspersky Lab, which makes antivirus programs. [Update: The arrest was just announced; it appears the men were arrested in December.] Earlier, the firing of the director of the Center for Information Security, Andrei Gerasimov, was announced, reportedly related to an investigation into the agency’s cooperation with Kaspersky on criminal hacking cases. Moscow Times is now reporting that two more men have been arrested: Dmitry Dokuchaev, who worked in the same FSB unit as Mikhailov, and another whose name has not been released. Read More
A very overhyped article on nuclear smuggling. A few things to put this in perspective: A market requires buyers and sellers. Typically these articles report on sting buyers from various law-enforcement organizations. They do not count as a market. Only one “real” possible buyer is mentioned in the article. Also, more and more of these materials are locked up every year. Russia, after the dissolution of the Soviet Union, was the largest potential source of illicit nuclear materials. In 24 years, there has been no serious incident of nuclear material getting loose. And Russia’s security has improved greatly. I commented further on Twitter: start here and here and follow the linked tweets. Read More