American Infighting Creates Opening for Cyberspies

The United States has the most powerful military in the world, with nearly 1.5 million active service members. We are prepared to meet threats delivered by land, air or sea – but not threats delivered by computer code.

Yet a bill that would have asked operators of vital infrastructure systems, such as power grids and water-treatment plants, to comply with voluntary cybersecurity standards recently died in the Senate.

In its original version, the bill, backed by President Barack Obama, would have implemented mandatory standards. The bill’s sponsors, Sens. Joseph I. Lieberman, I-Conn., and Susan Collins, R-Maine, backed down only when it became clear they would not be able to muster enough votes, offering a voluntary program instead. Still, Senate Republicans saw the voluntary program as little more than a stepping stone on a path that would eventually lead back to the sponsors’ initial vision.

The proposed compromise bill would have at least given us a start on efforts to improve cybersecurity. I wish it had passed. But I understand why Senate Republicans were reluctant to help the current president gain more authority to tell businesses what to do. Another president might have spent his time in office building the ties and trust with the business community that would justify taking a leadership role in the face of an emerging threat that should concern practically every business manager. Obama has not.

Now, rather than attempting to assuage critics’ fears, Obama has moved in the opposite direction, suggesting that he may just implement the voluntary standards, as best he can, through executive order. The message is obvious: The president is set on getting his way. “An executive order makes clear the administration’s intent to put a mandatory program into place to regulate businesses,” Matthew Eggers, senior director of national security at the Chamber of Commerce, said in an emailed statement reported by Bloomberg.

The price of this infighting is that we are unlikely to get a substantive legislative response to the threat of cyberterrorism any time soon.

Many people still think of hackers as rogue individuals, bent on wreaking destruction for destruction’s sake or on hijacking passwords for personal gain. Those sorts of hackers do exist and are a threat. Just earlier this year, the anarchist hacker group Anonymous claimed responsibility for a second attack on the CIA website. Meanwhile, the Conficker worm, which recruits computers into a botnet, a network potentially capable of being used remotely by hackers, infects around 7 million computers. The botnet could be used to crash particular websites by flooding servers with requests, or it could be used as a supercomputer to break encryption systems and steal financial data. So far, the creators of the network seem more interested in the second purpose. “The people behind [the botnet] apparently want to use it for criminal reasons – to make money,” said Mark Bowden, an expert on Conficker. Last year, officials in Ukraine arrested a group of people using a portion of the Conficker botnet to drain millions from American bank accounts.

Hacking, however, is no longer the sole province of individual rogue programmers. Foreign nations and corporations are increasingly turning to computer-aided espionage as well, C. Frank Figliuzzi, who heads the FBI’s counterintelligence division, recently told Congress.

In one of the most striking examples, the Chinese company Sinovel converted itself from Massachusetts-based turbine manufacturer AMSC’s largest customer to one of that company’s biggest competitors by appropriating its proprietary software, with the aid of a bribed employee. It also recently came to light that one of the Russian spies arrested in the well-publicized bust in 2010 spent some of his time in the U.S. working as an in-house computer expert for a high-profile consulting firm, a position that was likely intended to give him access to proprietary information.

So far, the cyberspies have apparently focused primarily on stealing intellectual property from private companies for the benefit of their own industries, but similar methods could be used for more sinister purposes as well. Four years ago, the public got a glimpse of how cyberwarfare might function when cyberattacks played a minor role in the Russian attack on Georgia, crippling government websites before the military advance. Around the same time, the U.S. was itself secretly advancing the role of cyberwarfare with its coordinated attacks on the Iranian nuclear program.

To prevent a similar attack on American infrastructure, we first need to push CTRL+ALT+DEL on our political conversation on cyberterrorism and cyberwarfare. For that to happen, the president must show more respect for the business community and Republican senators must show renewed willingness to work with Obama and his administration, despite its less-than-business-friendly record. It won’t be easy, but it will be easier than rebooting infrastructure networks if we continue to leave them open to attack.

About Larry M. Elkin 564 Articles

Affiliation: Palisades Hudson Financial Group

Larry M. Elkin, CPA, CFP®, has provided personal financial and tax counseling to a sophisticated client base since 1986. After six years with Arthur Andersen, where he was a senior manager for personal financial planning and family wealth planning, he founded his own firm in Hastings on Hudson, New York in 1992. That firm grew steadily and became the Palisades Hudson organization, which moved to Scarsdale, New York in 2002. The firm expanded to Fort Lauderdale, Florida, in 2005, and to Atlanta, Georgia, in 2008.

Larry received his B.A. in journalism from the University of Montana in 1978, and his M.B.A. in accounting from New York University in 1986. Larry was a reporter and editor for The Associated Press from 1978 to 1986. He covered government, business and legal affairs for the wire service, with assignments in Helena, Montana; Albany, New York; Washington, D.C.; and New York City’s federal courts in Brooklyn and Manhattan.

Larry established the organization’s investment advisory business, which now manages more than $800 million, in 1997. As president of Palisades Hudson, Larry maintains individual professional relationships with many of the firm’s clients, who reside in more than 25 states from Maine to California as well as in several foreign countries. He is the author of Financial Self-Defense for Unmarried Couples (Currency Doubleday, 1995), which was the first comprehensive financial planning guide for unmarried couples. He also is the editor and publisher of Sentinel, a quarterly newsletter on personal financial planning.

Larry has written many Sentinel articles, including several that anticipated future events. In “The Economic Case Against Tobacco Stocks” (February 1995), he forecast that litigation losses would eventually undermine cigarette manufacturers’ financial position. He concluded in “Is This the Beginning Of The End?” (May 1998) that there was a better-than-even chance that estate taxes would be repealed by 2010, three years before Congress enacted legislation to repeal the tax in 2010. In “IRS Takes A Shot At Split-Dollar Life” (June 1996), Larry predicted that the IRS would be able to treat split dollar arrangements as below-market loans, which came to pass with new rules issued by the Service in 2001 and 2002.

More recently, Larry has addressed the causes and consequences of the “Panic of 2008″ in his Sentinel articles. In “Have We Learned Our Lending Lesson At Last” (October 2007) and “Mortgage Lending Lessons Remain Unlearned” (October 2008), Larry questioned whether or not America has learned any lessons from the savings and loan crisis of the 1980s. In addition, he offered some practical changes that should have been made to amend the situation. In “Take Advantage Of The Panic Of 2008” (January 2009), Larry offered ways to capitalize on the wealth of opportunity that the panic presented.

Larry served as president of the Estate Planning Council of New York City, Inc., in 2005-2006. In 2009 the Council presented Larry with its first-ever Lifetime Achievement Award, citing his service to the organization and “his tireless efforts in promoting our industry by word and by personal example as a consummate estate planning professional.” He is regularly interviewed by national and regional publications, and has made nearly 100 radio and television appearances.

Visit: Palisades Hudson

Be the first to comment

Leave a Reply

Your email address will not be published.


*

This site uses Akismet to reduce spam. Learn how your comment data is processed.