December 1, 2008
The backbone of the global economy is exposed.
A few months ago, I returned from a trip overseas to find a startling e-mail from my credit card company in my inbox. It wanted to confirm that I had called recently to obtain a PIN, which would allow me to withdraw cash advances, and that I had put a new password on my account.
I called the company and assured the operator at the security center that I had been out of the country, without access to a phone. As it turned out, someone had called in with my password-how he found it, I still don't know-which gave him full access to my account. During the course of a few days, the thief made about $900 in purchases and cash advances. The bank promised to cover the charges, as well as the cost of a credit fraud protection service.
About a week later, a package arrived in the mail from Kaspersky Lab, a computer security software maker. It contained a CD of its Internet security program, a package of antivirus software and other tools meant to keep people from remotely snooping through my computer and removing information, such as my credit card account numbers. Later, I examined my credit card statement and saw that one of the fraudulent purchases was to Kaspersky. Whoever stole my account information, it now seemed, might have obtained it from my computer and wanted to send a message:
You really ought to be more careful.
I told this story to several security professionals, particularly those knowledgeable about online fraud and identity theft. The tale struck them as all too familiar.
The rate of online crime is increasing at a frightening pace, by a number of measures. Criminals are targeting their attacks more often at individuals, stealing their identities or "hijacking" their accounts, which is what happened to me. And it's not only credit cards. Cyber thieves are siphoning money out of individual checking accounts and moving the money overseas.
Due to the pernicious nature of the threat, cybercrime will be an issue of national and economic security for the new administration. That's the growing consensus of intelligence and security officials in government, experts in the private sector, and, undoubtedly, the perpetrators of these crimes who enrich themselves in a vast underground economy.
The Bush administration has launched an ambitious cybersecurity initiative to shore up the defenses of government networks. But officials in charge of this plan are more concerned about the online threat to banks and individual consumers, and the potential for cybercrime to destabilize the global economy, which runs on information networks. Intelligence officials are so concerned about the security of financial data that they say a hacker, terrorist or a foreign government could undermine the U.S. economy by electronically altering the price of stocks or falsifying-maybe even erasing-troves of financial information.
The global financial crisis has revealed the inherent fragility of interconnected markets. At a time of extraordinary instability, the backbone of the world's economy cannot remain exposed. The new administration has little choice but to view cybersecurity as an essential pillar of economic security.
Shane Harris, a staff correspondent for National Journal, wrote about intelligence and technology at Government Executive for five years.
December 1, 2008