Cyberwarfare has been defined by government security expert Richard Clarke in his book Cyber War, as “actions by a nation-state to penetrate another nation’s computers or networks for the purposes of causing damage or disruption. “The Pentagon has formally recognized cyberspace as a new domain in warfare . . . one that has become just as critical to military operations as land, sea, air, and space.”
Last week Richard Clarke blasted the Obama administration for its failure to adequately protect “its own citizens when they are targeted for harm by a foreign government.” He goes on to say, “senior U.S. officials know well that the government of China is systematically attacking the computer networks of the U.S. government and American corporations. Beijing is successfully stealing research and development, software source code, manufacturing know-how and government plans. In a global competition among knowledge-based economies, Chinese cyber-operations are eroding America’s advantage.”
Mr. Clarke goes on to recount incidents over the past three years that should give us all reason to pause and think more seriously about this issue. The recent ones are quite onerous: RSA, Lockheed Martin, IMF and Citibank. Very few companies who have experienced the hacking, “come out” and publically talk about it…Google was one who publically accused China of hacking. Google continues its claims against China, noting that recently Gmail accounts of senior U.S. officials had been compromised from a server in China. The targeting of specific U.S. officials is not something that a mere hacker gang could do.
In addition to specific company or personal data being stolen, there is concern about safety of national infrastructure systems such as the electrical grid, the banking and trading systems and air traffic control. What would happen if a hacker accessed those systems…what havoc could they create?
The country and the world are heavily dependent on information stored on networks and connected through the Internet. Mr. Clarke clearly states that the government should be protecting not only its own networks, but public and private computer networks in the United States. As the definitions imply, there should be no difference in defending us in cyberwarfare as there is in traditional methods of warfare. Read his WSJ online and think about your organizations and your personal risks!