cyber security

There has been understandable outrage at the creation of “Fake News” by a multitude of different actors.  However, this is not a new phenomenon for many.  Most professional sectors have some form of false reporting, whether it be short sellers that “deliberately spread false but plausible rumors” of a company’s performance[1], the spreading of unqualified opinion on disease to push new medicine[2] or the reporting of fictitious casualties during military offensives so as to present false strength and support propaganda[3].

Whilst the wider world considers the injustice of being lied to, security professionals must drill down into the implications.  When considering “malign foreign influence” in elections the paradigm shifts somewhat.  Russia’s now well-known Internet Research Agency (“IRA”) is likely not concerned, in the first instance, with the discovery of their interventions but rather how often blatant lies cause real life issues.  It is, in fact, all about effect.

The US Election interference and Mueller’s subsequent report highlight several instances where “Fake News” has provided real and sometimes tragic news[4].  In one instance where both sides of a protest were reported to have been mobilized by clandestine Russian Troll factories[5], the IRA manipulated sentiment through factious action groups and falsified events, which in turn mobilized real people who believed they were part of legitimate action groups.  Fake News in this sense is not the ultimate output but rather an incubator to promote anger, hatred and counter-conflict.  The hacking of Jeff Bezos’ phone demonstrates that these types of operations are not exclusive to politics but, rather, consider the value of discrediting influential business and thought leaders.

After Mueller’s revelations security practitioners should be alive to monitoring sentiment prior to public events to understand how emotions may have been leveraged by third party actors.

Corporate users of security should consider the implications of this new threat angle and determine if they are, in fact, protected from becoming an unintended proxy for malign foreign actors.  As government intelligence services recognize the cyber sphere as a very real battleground, so should the corporate security sector.  As in any other security planning, the environment needs to be assessed prior to deployment.

ETS Risk Management Inc. and Quintel have recognized this need and partnered to develop the unique Cyber Advance Party (“CAP”) on security operations.  The CAP allows security teams to identify negative sentiment, pre-screen likely threat actors, scale team to expected demonstration numbers and provide the client with pre-warning of reputational hot topics.  CAP prevents the security team setting out on a purely responsive footing and ultimately mitigates the risks for the principle.

Quintel Intelligence Limited is a highly respected litigation support company based in London.  Quintel provides investigative services in cases ranging from Sports Corruption through to multibillion-dollar civil disputes working alongside international law firms, multinational conglomerates and private clients across the globe.  ETS Risk Management is a protective services company supporting multinational organizations and Ultra HNWIs across the globe.

[1] https://www.cityam.com/the-rising-abuse-of-short-selling-tactics-could-have-severe-consequences-on-healthy-businesses/

[2] https://www.forbes.com/sites/johnlamattina/2018/06/20/there-go-those-drug-companies-inventing-new-diseases-again/#365676bb34bb

[3] https://www.theguardian.com/world/2020/jan/08/false-claims-spread-online-after-iran-missile-attack-on-iraqi-airbase

[4] https://www.buzzfeednews.com/article/peteraldhous/russia-twitter-trolls-charlottesville

[5] https://www.businessinsider.com/russia-trolls-senate-intelligence-committee-hearing-2017-11?r=US&IR=T