Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

AfterBites: Cyberwar Hypewatch

The article:

 --German Magazine Says Armed Forces Establishing Cyber Warfare unit
(February 9, 2009)
German magazine Der Spiegel Reports that the country's armed forces are
in the process of establishing a unit dedicated to cyber warfare. The
unit will take on responsibility for protecting German IT infrastructure
from attacks as well as conduct reconnaissance and interventions on
foreign and "enemy" computer networks.
http://www.heise-online.co.uk/news/Report-claims-German-armed-forces-setting-up-cyberwar-unit--/112595


I'm sure there are lots of countries setting up "cyberwar" units. Why? Because they're so very, very l33t!

Seriously, though, I suspect that a lot of the "cyberwar" units being set up around the world are just cheesy scams in which some clever person thought, "hey, maybe we can get a really cool NOC with lots of flat panel displays, new laptops, and a refrigerator full of RedBull!" Reading between the lines describing some of these cyberwar efforts, they'd be more accurately titled "incident response expertise centers" or something like that. I have no problem with that  but - please - guys, don't giving badly socialized cybergeeks the tools to initiate acts of war, OK?

Following the link, you read:
...will both protect the German IT infrastructure from attacks and carry out reconnaissance missions and interventions on foreign computers and "enemy networks."

What is an "enemy network" unless there is a declared state of war or the state has identified an enemy? I know I'm old-fashioned, but as a citizen of a democracy, I do not like the thought that political leaders (or military bureaucrats) are going to be arbitrarily deciding whose network is an "enemy network" or otherwise targeting government-sponsored military forces against other countries' civilian or government systems. Again, I'm old-fashioned, but in the absence of a state of war, I'd call that "state-sponsored cyberterrorism" not legitimate activity. That's distinct from cyber-espionage, by the way, which is non-offensive covert operations/intelligence-gathering.

It's absolutely critical for governments to be establishing competency centers surrounding computer security - it's going to be an important problem in the future - but I think it's dangerously silly to be spinning up offensive-sounding forces, while the world still has not sorted out decent definitions of what constitutes valid targets and clarified the line between cyberterror and cyberwar. Right now, it's a complete muddle and I'm afraid that a lot of people want it that way because it makes them feel like badass l33t warriors instead of deskjockeys who install patches and clean up malware for a living.

My "cyberwar is bullsh*t" talk at HITB ruffled a lot of feathers from true believers, and I'm (I promise!) eventually going to write the whole argument up a bit more formally, and post it here and elsewhere. The short form, though, is that it behooves the governments that are worried about coming under attack to help clarify and define now (before it happens!) what they consider an act of war, versus terrorism, and whether or not civilian infrastructure systems are "military targets" versus targets of opportunity for economic harrassment attacks. I do not believe our leaders are acting responsibly in this matter.

Related Posts

Subscribe to the Tenable Blog

Subscribe
Try for Free Buy Now

Try Tenable.io

FREE FOR 60 DAYS

Enjoy full access to a modern, cloud-based vulnerability management platform that enables you to see and track all of your assets with unmatched accuracy. Sign up now.

Buy Tenable.io

Enjoy full access to a modern, cloud-based vulnerability management platform that enables you to see and track all of your assets with unmatched accuracy. Purchase your annual subscription today.

65 assets

$2,275.00

Buy Now

Try for Free Buy Now

Try Nessus Professional Free

FREE FOR 7 DAYS

Nessus® is the most comprehensive vulnerability scanner on the market today. Nessus Professional will help automate the vulnerability scanning process, save time in your compliance cycles and allow you to engage your IT team.

Buy Nessus Professional

Nessus® is the most comprehensive vulnerability scanner on the market today. Nessus Professional will help automate the vulnerability scanning process, save time in your compliance cycles and allow you to engage your IT team.

Buy a multi-year license and save. Add Advanced Support for access to phone, email, community and chat support 24 hours a day, 365 days a year. Full details here.

Try for Free Buy Now

Try Tenable.io Web Application Scanning

FREE FOR 60 DAYS

Enjoy full access to our latest web application scanning offering designed for modern applications as part of the Tenable.io platform. Safely scan your entire online portfolio for vulnerabilities with a high degree of accuracy without heavy manual effort or disruption to critical web applications. Sign up now.

Buy Tenable.io Web Application Scanning

Enjoy full access to a modern, cloud-based vulnerability management platform that enables you to see and track all of your assets with unmatched accuracy. Purchase your annual subscription today.

5 FQDNs

$3,578.00

Buy Now

Try for Free Contact Sales

Try Tenable.io Container Security

FREE FOR 60 DAYS

Enjoy full access to the only container security offering integrated into a vulnerability management platform. Monitor container images for vulnerabilities, malware and policy violations. Integrate with continuous integration and continuous deployment (CI/CD) systems to support DevOps practices, strengthen security and support enterprise policy compliance.

Buy Tenable.io Container Security

Tenable.io Container Security seamlessly and securely enables DevOps processes by providing visibility into the security of container images – including vulnerabilities, malware and policy violations – through integration with the build process.

Learn More about Industrial Security

Get a Demo of Tenable.sc

Please fill out the form below with your contact information and a sales representative will contact you shortly to schedule a demo. You may also include a short comment (limited to 255 characters). Please note that fields with asterisks (*) are mandatory.