As a result of my radio show and investigative work both online and offline I have had many people either write or approach me is some way asking my opinion about either the “War of Terror” or this “Info War” that seems to be concurrently raging globally.
Here is a recent rant of sort that came out in a recent talk with colleagues. Since I have many readers, friends and contacts here who are in both fields, I would love to hear your thoughts about this and what can be done in response.
Despite our technological advances in cyber security and even physical security people in general often remain first line of defense in both cyber and terrorist attacks against an organization, corporation or even governments….and often the first attack point for both groups. Though sadly very few see that until after the fact when they fell victim to social engineering attacks. A potent tool also used by both groups.
Both groups are essentially guerrilla groups which mean both use asymmetrical warfare strategies. All effective asymmetrical warfare attacks first require the same thing, good reconnaissance and good intelligence.
When you are out manned and underfunded then social engineering is the way to get it done and to make sure the enemy is carrying the costs and doing most of the labor for you.
I wish more security organizations, Infosec groups, corporations and even governments spent more time and money offering more conferences, articles, discussions and even outright training (even if only in the form of regular published tips in Social Engineering) because is seems clear to me that even the most minimal of training can go along way in cutting off an attack plan when it is at its most vulnerable and identifying the culprits when they are at their most visible.