Feeds

At least 100 countries building cyber weapons – expert

Excess of evil...

  • alert
  • submit to reddit

Beginner's guide to SSL certificates

Cyberterrorism hyping has reached new heights - according to a report in the Melbourne Herald Sun, at least. The Herald quotes expert Matthew Devost, speaking at a meeting at the US consulate there recently, as claiming the CIA believes at least 100 countries are investigating waging war by computer, or cyberterror.

Mr Devost is proprietor of terrorism.com, incidentally, which is something of a misnomer, as he's in the counter-terrorism game. Should any bona fide terrorist take him to the ICANN disputes panel we fear he'd be on difficult ground. But 100 countries? Could the CIA possibly believe this? Who are these countries?

"How many do we need to worry about - six? Twelve?," Devost is quoted as saying. "What are the capabilities of number 100 on the list?" Disappointingly, it turns out that "a lot of questions haven't been answered." So we've no idea what the point of saying 100 countries are working on it is, aside from trying to grab headlines.

The CIA itself, in the shape of its most excellent World Fact Book, reveals (as of July 1st 2001) that the top 100 countries by GDP per capita is headed by Luxembourg, with Gabon coming in at number 100. Per capita GDP is however clearly a hopeless yardstick to try to estimate cyberterror capability against. There are a lot of names in the top 100 (San Marino? Aruba?) that sound improbable proprietors of cyberwarefare development programmes, and some obvious suspects who are just to poor to make it. Yugoslavia, for example, is there way down at 160, and we seem to recall the locals nevertheless being pretty handy when it comes to the deployment of cyber weapons.

So GDP doesn't really work. How about Internet connections? One can of course wreak a deal of havoc with just one Internet connection, but the number of them in a country ought to provide some kind of measure of the potential raw expertise. This chart here isn't ordered, nor is it weighted by population, and the figures are a tad old. But there are somewhere in excess of 30 countries with more than a million people connected. Again, it's a very rough yardstick, and our friends in Yugoslavia are still nowhere near the cut. However, the more you look at the list, the less probable it seems that you can drag out 100 with even the capability for a stupid, futile and laughable stab at a cyberweapons development programme.

So maybe you just go anecdotal. Start with major, rich economies with developed IT businesses. Add other economies known to have expertise and/or strategic plans in that area (so India definitely qualifies on expertise, China on both). Cross out the ones who don't have serious armies (e.g. Andorra). Add in a couple of mad dictators. Add in those with money and known agendas. Add in anybody you don't like. Add anybody whose justice minister has pissed-off the White House recently. On our turn through the whole list on this basis, we come to a total of approximately 60, many of whom are barely credible and who would only be counted by the most paranoid and drug-addled CIA operative.

For example, we included the Vatican on the basis of money and known agenda, and Finland and Estonia on the basis of sheer cleverness (nothing personal people, we mean to flatter). We offer our services to the CIA should it wish to recruit a research capability willing to try to justify future ludicrous claims in exchange for money.

Mr Devost himself seems an intriguing cove. He is co-author of "Information terrorism - can you trust your toaster?", which won the 1996 Sun Tzu Art of War Research Award (disappointingly, we are unable to identify any other winners of this award, which in any event seems to be no more). This document includes the phrase "digital Pearl Harbor," which may be one of the first recorded uses of the expression. ®

Security for virtualized datacentres

More from The Register

next story
Phones 4u slips into administration after EE cuts ties with Brit mobe retailer
More than 5,500 jobs could be axed if rescue mission fails
Apple CEO Tim Cook: TV is TERRIBLE and stuck in the 1970s
The iKing thinks telly is far too fiddly and ugly – basically, iTunes
Israeli spies rebel over mass-snooping on innocent Palestinians
'Disciplinary treatment will be sharp and clear' vow spy-chiefs
Huawei ditches new Windows Phone mobe plans, blames poor sales
Giganto mobe firm slams door shut on Microsoft. OH DEAR
Phones 4u website DIES as wounded mobe retailer struggles to stay above water
Founder blames 'ruthless network partners' for implosion
Found inside ISIS terror chap's laptop: CELINE DION tunes
REPORT: Stash of terrorist material found in Syria Dell box
OECD lashes out at tax avoiding globocorps' location-flipping antics
You hear that, Amazon, Google, Microsoft et al?
Show us your Five-Eyes SECRETS says Privacy International
Refusal to disclose GCHQ canteen menus and prices triggers Euro Human Rights Court action
prev story

Whitepapers

Providing a secure and efficient Helpdesk
A single remote control platform for user support is be key to providing an efficient helpdesk. Retain full control over the way in which screen and keystroke data is transmitted.
Saudi Petroleum chooses Tegile storage solution
A storage solution that addresses company growth and performance for business-critical applications of caseware archive and search along with other key operational systems.
Security and trust: The backbone of doing business over the internet
Explores the current state of website security and the contributions Symantec is making to help organizations protect critical data and build trust with customers.
Reg Reader Research: SaaS based Email and Office Productivity Tools
Read this Reg reader report which provides advice and guidance for SMBs towards the use of SaaS based email and Office productivity tools.
Security for virtualized datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.