So, the Indian National Defence University — along with HQ, Integrated Defence Staff (where the newly formed Defence Cyber Agency is located) — is conducting an international table-top cyber wargame. This is quite exciting. I was meant to execute one Red Land scenario, but won’t be able to participate due to other compulsions. I did send my recommendations. Here’s an excerpt:Continue reading “Table-top cyber wargames by INDU and HQ IDS”
Read the full piece: Asif Ghafoor: The Gerasimov of South Asia
Cyber analysts like me have been this envisioning this scenario since a decade: how the South Asian flashpoint would manifest itself in the cyber-enabled information battlespace.
If there’s one inter-services directorate that is as lethal as the Inter-Services Intelligence, it’s the Inter-Services Public Relations. I know, I know — most of you would balk at my comparison. Hear me out:Continue reading “Pakistan’s asymmetric advantage in the post-Pulwama information battlespace”
On January 31, 2019, Twitter released the second dataset on the ongoing cyber-enabled influence operations targeting various nations, including India.
It led me to write this Part II of my earlier report on the Iranian disinformation campaign which weaponised prevailing political polarisation in India. The Part I is here: Planet-scale influence operation strikes at the heart of polarised Indian polity.
TL;DR: In this piece, I will arrive at certain definitive conclusions on the actors’ intent as well as directly attribute parts of the operation to a soft war/propaganda arm of the Iranian government. This is not an attempt at domestic sabotage but a desperate bid to propagate a counter-narrative — as Iran feels suffocated by the Western media’s discourse, portraying it in a uni-dimensional way.Continue reading “Ayatollah Khomeini’s ‘soft war’ hits the Indian hinterland – Part II”
“In IT security, offensive problems are technical – but most defensive problems are political and organisational.” — Halvar Flake AKA Thomas Dullien
“We do not have a cybersecurity problem. We have a nation state problem.” — Dmitry Alperovitch
“Our choice is no longer between government regulation and no government regulation, but between smart government regulation and ill-advised government regulation.” — Bruce Schneier
The first rule of a national cyber shield is that there’s no cyber shield. There are no borders, fortresses or moats to be breached. It actually works a bit like the immune system. National cyber shields are situational awareness platforms operating at scale, but with an explicit political mandate.Continue reading “What does a ‘national cyber shield’ look like?”
I’m breaking two of my own rules for this post: I’m getting a wee bit personal and expressing outrage. For talk is cheap and outrage comes wholesale over the net.
The Centre for Internet & Society has just released the policy brief, “Leveraging the Coordinated Vulnerability Disclosure Process to Improve the State of Information Security in India.”Continue reading “CIS’s Coordinated Vulnerability Disclosure paper is a load of bull”
So, the think tank SOFWERX is backed by the US Special Operations Command. It organised, what could possibly be, the best event on cyber-enabled information warfare, influence operations and disinformation, ever — Radical Speaker Series: Countering Weaponized Information. It’s amazing that tacticians of the USSOCOM are thinking at that level!
I documented most of the conference videos in a Twitter thread, which is pasted below as a single article.👇 Also, here’s the Thread Reader link of the same coalesced thread.Continue reading “The most radical event on cyber-enabled information warfare, ever”
The time has now come for them to (wo)man up: Govt moves to access and trace all ‘unlawful’ content online.Continue reading “India’s second crypto-war should begin now”