CIO Executive Programs
The Leader in Face-to-Face Education for Senior ExecutivesOffering regional and national programs, CIO (and CSO) events bring together some of the most respected names and thought leaders in information technology and security. Presented by CIOs and other senior level executives, these invitation-only programs offer timely topics and strong networking. Learn More »
CIO Executive Council
Public TeleconferencesJoin CIO Executive Council members and participate in the following live teleconferences:
* Planning for Succession:
Models for IT Leadership Development, June 23
* Youth in IT: How CIOs Can Engage the Next Generation
June 10
* Change Leadership at General Growth Properties: A
Pathways Leadership Development Seminar, June 25
Are you involved in setting the direction for your company's IT budget or strategy?
Apply today for a FREE subscription to CIO Magazine!
Subscription Services »
Reprints »
News Feature
CYBERSECURITY - The Truth About Cyberterrorism
March 15, 2002 — CIO — It is a crisp winter morning. The sun rising over Boston Harbor blinds as it strikes the white oil drums on the industrial edge of Chelsea. Marcus Kempe, director of operations support at the Massachusetts Water
Resource Authority (MWRA), is showing off the crescent-shaped bank of computers that control the flow of water pumped into 2.5 million faucets across eastern Massachusetts every day.
These are the computers that would have to be hacked in order to carry out a cyberattack. And these days, most of Kempe’s job involves planning against such an eventuality. But he is not particularly worried about it.
"You’re talking about ridiculous barriers," says Kempe, who is a 25-year veteran of the MWRA and oversees its computer infrastructure. "Could a computer attack get us to a high-consequence event? Probably not."
First, Kempe says, a hacker would have to worm into the IT infrastructure. Then, he’d have to hop over a firewall and slip into the MWRA’s SCADA (supervisory control and data acquisition) system (the crescent-shaped bank of computers) through one of two very narrow access points. Finally, he would have to plant surreptitious code that would allow remote control of the chemical distribution or even the flow of water itself. (To learn more about the obstacles a hacker would have to hurdle at the MWRA, read "Debunking the Cyberterrorist Threat to Water Utilities," at www.cio.com/printlinks.)
"You’re talking about three hacks," says Kempe. "To us, cyberterrorism is a lower-level threat."
Since Sept. 11, it’s been almost unpatriotic to suggest that the threat of cyberterrorism is anything other than dire. But CIOs and security experts are beginning to challenge the assumption that a hack on the nation’s critical infrastructure will be the next big terrorist outrage. In fact, cyberterrorism may not be nearly as worrisome as some would make it. That’s because it is utterly defensible. And CIOs can play a crucial role in the defense.
DEFINING THE THREAT
As was the case with so many New Yorkers, Sept. 11 inspired Ed Cannon to get involved. Within a couple of weeks of the attack, Cannon, executive vice president and CIO of the global marketing communications company Grey Global Group in New York City, had formed the Information Civil Defense Group (ICDG). He envisions ICDG as a sort of neighborhood watch group, where the neighborhood is the private sector’s critical infrastructure and the residents are concerned CIOs. ICDG will stage seminars for CIOs and work with Washington on security standards around critical infrastructure.
| RELATED SOLUTIONS |
BPM Done Right: 15 Ways to Succeed Where Others have Failed
The New Growth Paradigm: Multi-Enterprise SOA
Strategies for centralizing data backup
ITCi White Paper: Challenges and Opportunities of PCI
Tripwire PCI DSS Solutions: Automated, Continuous Compliance
Tuning ERP and the Supply Chain for Profitable Growth
Protect your network and reap the benefits of wireless
IT productivity challenges: Google surveyed IT professionals to find out more
Get Rich or Get Thin: The Secure Client Webcast
Automation: Improving Business Services
Protect yourself against internal threats: Reduce risk and liability of data breaches in test and production
Five things the legacy ERP vendors don't want you to know about on-demand ERP
Resource Alerts
Get instant email notifications by topic when white papers, webcasts, and case studies are added to our library.
TOP 10 - HP-EDS Buy, Icahn Strikes Again, China Quakes
Bender Forms Group to Promote OLPC's Sugar UI
VM Sprawl: Just How Much Does It Cost IT?
Kenya ICT Board Faces More Conflict Allegations
Ericsson Partners with Zain
Zambian Court Blocks International Mobile Company Bid
Qualcomm Will Trial Future Wireless Broadband in UK
Kenya Moves to Thwart Mobile-Phone Crimes
Former Tech Executive Found Guilty of Securities Fraud
Vodafone Acquires Social-Networking Platform Company
Good News From Sprint, Covad WiMax Trials
Windows Coming on Dual-Boot OLPC
Yahoo Tells Icahn That Its Own Board Knows Best
Does Icahn have a Backup Plan?
Wall Street Beat: M&a Stirs 'trendless Market'
Facebook to Google: Friend Disconnect
US Agency to Investigate Semiconductor Patent Complaints
WORLDBEAT - the Connected Home -- While on the Move
Burkina Faso Shea Butter Producers Go High Tech
After 'treasure Hunt,' Hacker Releases IE Attack Code
Study: Comcast, Cox Slowing P2P Traffic Around the Clock
Microsoft Seeks Alternatives to Low-Cost Laptops
U.S. Online Ad Revenue Hit $21.2B in 2007
Developers Target XP over Vista by Wide Margin
Microsoft to Deliver Mac Office File Converters in June
AMD Goes After the Enterprise with New Business Push
DNS Trouble Knocks NSA Off Internet
AOL to Open Its Mail Sites to Third-Party Applications
Yahoo Search Monkey Opens to All Developers
EBay Seller Pleads Guilty to Software Piracy Charges
Text of Carl Icahn's Letter to Roy Bostock
Icahn Takes on Yahoo Board
Telecom: Nice to have Or Basic Necessity?
EU Raises Privacy Issue for Google Street View
CBS to Buy CNET Networks for $1.8 Billion
Did Twitter Beat Media with Earthquake News?
Intel to Develop E-Commerce PC with China's Alibaba
Pictures of Asustek's Atom-Based Eee PC 901 Appear Online
Twitter Restored After Outage
Comcast to Buy Plaxo for Social Networking
IBM Boosts BlackBerry Access to Cognos, Lotus Software
NATO to Set Up Cyber Warfare Center
Report: Icahn to Launch Proxy Fight Against Yahoo
Philly Won't Fight to Save Wi-Fi Network
Virgin USA in Talks Over Mobile Operator Helio
Hackers Hijack a Half-Million Sites in Latest Attack
SEC Charges Former Broadcom Executives with Backdating
Glitch Mars Launch of Wi-Fi on High-Speed Trains
ITU AFRICA - Africa has Outsourcing in Its Sights
FCC Takes First Step Toward Spectrum Re-Auction
More News »
How To Do Nearly Anything
Just the basics, please. Sometimes we all need a refresher or we need to make sure our team and our colleagues are all on the same page.
Over 25 tutorials on everything from business intelligence to virtualization.
