This piece is a couple of months old now but still it strikes me as being very important:
Information as a Weapon of Mass Destruction
By pdp
Date: Oct 5, 2007
Information is the single most important thing that moves the global economy, influences political regimes, and constructs human behavior. It is a tool of our trade and a powerful ally, but is mainly a weapon of mass destruction. Information management and manipulation, social engineering, and traffic shaping are the black crafts of the digital age. Petko D. Petkov, a.k.a. pdp, discusses just a few of the many disciplines that largely involve information as a tool to spread false beliefs and fears (and influence the masses, too).
Information is the single most important thing that moves the world economy, influences political regimes, and constructs human behavior. Information is a sequence of bits and pieces that, when put together, defines meaningful thoughts.
Meaningful to whom? Strings, numbers, records—these are the things that our reasonable mind relies on. Our lives are based on facts, which can be manipulated for our own good or bad.
Being a security expert, I see more of the latter. Information has become the equivalent of gold in today’s electronic age. It is a tool of our trade and a powerful ally, but mainly a weapon of mass destruction. There are countless real-life examples in which information is used to cause harm and even more real-life cases of information terrorism, which has reached a size beyond our imagination.
Call it Black PR, industrial espionage, information warfare…all make use of the latest information-gathering techniques to stay ahead in the black information market. Information management and manipulation, social engineering, and traffic shaping are the black crafts of the digital age.
In this article I discuss just a few of the many disciplines that largely involve information as a tool to spread false beliefs and fears (and influence the masses, too).
The knowledge of these disciplines was acquired by performing information security audits for the government sector and big financial organizations during the last four years of my life and also by participating in various discussion forums on the topic of modern Black PR practices.
Black Public Relations (Black PR)
Those who control the information flow now govern the world. New technologies and web applications have changed the entire communication blueprint. The big corporations have realized that they might lose control over the masses by letting normal people produce and share their own content—a trend that is already happening with the growth of Web 2.0 social technologies.
Getting into a person’s mind and maintaining a good reputation is becoming more and more difficult than ever before. Companies are being forced to compete under different sets of rules and exposed practices that were unthinkable years ago.
There are many evidences that Black PR (the process of harming someone’s identity and repute) leaves its eastern roots and is being chosen as a main communication tool by many western industries. According to Ivana Kalay (founder of SpinHunters, the first PR security company in the world), the tendencies show that many highly skilled black-hats (skilled information security hackers who pursue their interests illegally) will be hired by large enterprises to get into internal rival’s network and steal sensitive information.
This information includes employee names, data with consumer complaints, and shareholder’ details. After profound professional analysis, this information will be used to create various communication plans to be used against the former owner.
Of course, none of the companies will make this type of confession, but the CEO of one of the most influential PR firms (Burson-Marsteller) and present chief strategist for the Hillary Clinton election campaign was recently accused of wire-tapping his ex-associates.
Black PR leads not only to the collapse of small/middle-sized business but also to the birth of a new black-hat hacker elite, which will be well funded and politically protected.
Black-Hat Hacking (the Dark Tangent of the Internet)
Black-hat is a term that is mainly used to describe individuals who have a superior understanding of IT technology and who use their skills for illegal purposes. Black-hats are not born; they are made because of necessity.
IT professionals turn to black-hat hacking mainly because of the lack of career opportunities where they live, as shown by security company F-Secure in its latest revolutionary YouTube video titled “F-Secure Re: Solution.” F-Secure points out that countries that do not have well-developed information technology industries are more likely to become hosts for illegal black-hat hacking activities.
It is important to understand that the clear division between black-hats and white-hats that exists today is primary based on the separation of ethical principles among hackers. While white-hats are willing to share the information they possess for the good of society, black-hats are most keen on selling it to highest bidder.
The background of the organizations who buy black-hat–generated content varies from military institutions to the local Mafia. Information is the most powerful trade in the digital world.
In 2001, eWeek reported that there is a significant raise of black-hat attacks against critical U.S. government, banking and e-commerce websites—all sponsored by the Russian Mafia.
Since then the number of Russian Mafia hacker syndicates has risen dramatically. eWeek commented further:
Authorities said the Russian Mafia members gain access to a company’s computer systems, download proprietary information—such as trade secrets, customer databases, and credit card information—and then demand money to patch the system against other hackers.
Where does all this information go? Who is the end consumer? It is hard to say. However, the truth is that hacking has turned into a 24/7 high-demand business, essential for both sides of the fence.
In 2007, the IT security industry has put a formal face among many countries in the developed world. On the other hand, black-hats are still underground and their number is significantly greater.
In the digital world, hacking is a way to get access to sensitive information that usually costs loads of money, depending on whom they are selling it to. Irresponsible disclosure of private information might lead to the rise and fall of nations.
Information Warfare (0 or 1, Dead or Alive)
Information has a different meaning when it comes to waging wars: It means survival and successful outcome. Given the fact that every country relies on machines in order to function, it is no wonder why the battles of today started on the Internet.
In the digital age, enemies convey well-planned propaganda against each other with the purpose of convincing the opposition to give up. This is achieved though a set of strategically delivered information that could be misleading but is also primarily designed to dis-inform.
This information is also very often designed to promote specific objectives and attack the internal information system of the opposition.
Information warfare is also about securing information flows and the systems that rely on it. Any glitch in the information streams could lead to disaster. The unavailability of the banking system could lead to panic, which easily might turn into civil wars within the opposing countries.
This is where Black Public Relation practices combine with the power of the black-hat hacker elite and turn into the cleverest tools for conducting wars without loss.
Summary
To sum up, information is the most essential primitive we have to learn to live with. But we must also be very careful when dealing with it.
Information is sometimes designed to dis-inform; it is sometimes designed to manipulate our thinking. It is a tool and an expansive asset. It can be used for good and bad, although as a security expert I see more of the latter.
© 2007 Pearson Education, Inc. Informit. All rights reserved.
800 East 96th Street Indianapolis, Indiana 46240