My geo-strategic take on the SolarWinds hack, published by the Hindustan Times: https://www.hindustantimes.com/analysis/solarwinds-cyber-strategists-are-back-to-the-drawing-board/story-L5QunVMY7vRa04isQlT1QL.html.
The SolarWinds hack – a cyber espionage campaign compromising critical organisations of the United States (US) – has fundamentally disrupted the power dynamics of cyberspace.
It is not only a major setback to the cyber statecraft initiatives of the US which took years to mature, but also challenges the basic assumptions upon which the West’s strategy for cyber dominance rests.
Continue reading “SolarWinds: Cyber strategists are back to the drawing board – Hindustan Times”
A very contrarian piece for The Quint: https://www.thequint.com/voices/opinion/facebook-politics-hate-speech-controversy-indian-government-modi-freedom-of-speech-activism.
The recent investigative reports by TIME and the Wall Street Journal on Facebook’s content handling and lobbying activities have triggered an intense political debate in India.
On the one hand, Facebook’s moderation of hateful content in India seems to have been influenced by business and political imperatives; on the other, it appears as if the relationship between its public policy team and the ruling political dispensation was too close for comfort.
Continue reading “It has nothing to do with Facebook – The Quint”
My opinion piece for Hindustan Times: https://www.hindustantimes.com/analysis/on-china-it-s-time-to-consider-cyber-operations/story-crMraUyDc64taDRHMhEnhP.html.
The recent border clashes between India and China have led analysts, habituated to conventional warfare, to compare the relative strengths of the two adversaries in terms of the number of tanks, aircraft and other military paraphernalia.
It appears that Indian strategic discourse has yet again discounted cyber operations as an instrument of power projection, which could have offered a degree of flexibility when it comes to coercing, compelling and imposing costs on the contentious neighbour. This is unfortunate considering how much Indian think-tanks have glamourised the cyber domain.
Continue reading “On China, it’s time to consider cyber operations – Hindustan Times”
Written for the SC Magazine. The original link seems to have died. Here’s an archived version: https://web.archive.org/web/20200730233821/https://www.scmagazineuk.com/understanding-strategic-threat-intelligence/article/1685804.
In March 2020, Booz Allen Hamilton released a fascinating dossier analysing the cyber operations of GRU, the Russian military intelligence agency, spanning 15 years. The dossier ran the traditional cyber threat intelligence (CTI) tradecraft through an impressive analytic process, thus credibly gluing the cyber operations of GRU to the doctrinal framework and geopolitical imperatives of the Russian state.
Continue reading “Understanding strategic (cyber) threat Intelligence – SC Magazine”
For the Infosecurity Mag: https://www.infosecurity-magazine.com/opinions/mssps-strive-detection-ninjas/.
I am having some strange epiphanies as I go knee-deep into SIEM engineering. While the MSSPs have existed in all flavors and sizes, there seems to be a broad consensus that they simply can’t mimic the capabilities of an in-house security operations function – especially when it comes to gaining context, visibility and speed.
Continue reading “How the MSSPs Can Strive to be Detection Ninjas – Infosecurity Mag”
My second op-ed on the Kudankulam-ISRO hack for Outlook. The first piece for HT laid bare the challenges. This one proposes some parameters for cyber deterrence. Deterrence in cyberspace could be extremely bizarre and challenging: https://www.outlookindia.com/website/story/opinion-a-post-kudankulam-roadmap-for-indias-cyber-deterrence/342174.
Continue reading “A Post-Kudankulam Roadmap For India’s Cyber Deterrence – Outlook”
My op-ed in the Hindustan Times, originally titled, “An act of war in the Indian cyberspace.” My every word is measured: https://m.hindustantimes.com/analysis/what-the-cyber-attacks-on-kudankulam-and-isro-show-analysis/story-OVlR5MO18yk7jQFrnRvTpM_amp.html.
On September 3, I notified the National Cyber Security Coordinator about network intrusions into the Kudankulam Nuclear Power Plant (KKNPP) and Indian Space Research Organisation (ISRO), after being tipped off by a third-party. It was right around the time of Chandrayaan-2’s final descent.
Continue reading “An act of war in the Indian cyberspace – Hindustan Times”