Does Fake News Affect Threat Intelligence?

Uploaded on 2018-03-13 in FREE TO VIEW, NEWS-Cybersecurity News

The concept of ‘fake news’ has plagued media for the past couple of years, but what is its impact upon business-level cyber-security?

Recently a roundtable, hosted by the Threat Intelleigence experts at Anomali, on the concept of ‘Hybrid Threats’, which was chaired by former GCHQ director turned professor Sir David Omand, and attended by a selection of industry names.

The concept of Hybrid Threats, according to Omand, was not one he is keen on and he claimed that he preferred the “old fashioned term subversion, where one country tries to influence another.” He said that this usually involved three tactics: intimidation, propaganda and dirty tricks.

The use of these tactics, he claimed, leads to “erosion in confidence,” while propaganda “restricts free speech when government has to have a reputation for truth."

All of this may not seem to be too relevant to cyber-security, but in recent instances where arrests have been made over interference in the 2016 US election, the concept of what is real and what is not needs to be a serious factor, and in the case of threat intelligence, knowing what is a genuine alert and what is fake can paint a much clearer picture of a threat.

This moved the discussion on to the concept of fake news, as Omand said:

“Threat intelligence is needed to pull together different bits of information from different sectors and see the pattern, or if it is just a coincidence.”

Valentina Soria, head of intelligence at Morgan Stanley, said that as a threat intelligence practitioner, her job is to interpret threat intelligence and make sure that the difference between fake and real news is determined.

She claimed that hybrid threats have further complicated the ability to make sense of it all, as at the heart of threat intelligence is credibility of the information you rely on, and propagation of fake news has made it much more difficult.

“We can see the potential impact that the fake news phenomena can have,” she said, claiming that threat intelligence can help a business understand threats and form a strategy, but ‘false flags’ and threat actors using different tools mean it can be difficult for a business to focus on what is a genuine threat to the business.

In an open discussion on fake news, cyber psychologist Dr Mary Aiken said that there is not a way to legislate around this, but there is an opportunity for ‘cyber ethics’ in the social media models and for the social media platforms to become more responsible players.

“When we look to having fact checking, and false claims on what a politician said, there is an absence of critical thinking to the bombardment of young people with fake and false information and it becomes a modus operandi of ‘that’s ok, everything is fake’. When a group of people who will become the policy makers in time, what will their frame of reference be and what will be their critical thinking?”

Hugh Njemanze, CEO of Anomali, said that there was a responsibility for social media algorithms to be more transparent to see what has happened and investigate, and transparency will enable that.

Soria added that it is quite hard to demonstrate the real life cause, impact and effect of fake news, especially when this could have influenced voters ahead of an election.

Aiken said that a real world sophisticated model can be created, but are they still fit for purpose in cyber-environments? That is why models need to be invested in that can make sense of human behavior and manipulation.

The conversation moved on to filtering and the need for automated tools to do such a job, but ultimately the problem remains the same when it comes to determining what is a genuine threat and what is not. Whether it is fake news or a false flag, it requires a person’s attention to determine what is important for the business.

As Soria said, threat intelligence processing involves determining a pattern that affects your business, and fake news could be the square peg trying to fit into the round hole.

Infosecurity Magazine: 

You Might Also Read:

Fake News Is A Cybesecurity Threat For Businesses:

Prime Minister Wants A 'fake news' Rapid Response Team:

 

« Autonomous Cars Hit The Road In California
Cybercriminals Use Fake Websites »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

CERT.GOV.AZ

CERT.GOV.AZ

Azerbaijan Government Computer Incident Response Team

Surrey Centre for Cyber Security (SCCS)

Surrey Centre for Cyber Security (SCCS)

The Centre focuses on three main research directions - Privacy and Data Protection, Secure Communications, and Human-Centred Security.

Kore Telematics

Kore Telematics

Kore is a leading managed service provider for IoT and M2M applications.

BTWorks

BTWorks

BTWorks provides identity management and anti-phishing / smishing solutions for web and mobile apps.

IoT European Research Cluster (IERC)

IoT European Research Cluster (IERC)

IERC brings together EU-funded projects with the aim of defining a common vision for IoT technology and development research challenges.

State e-Government Agency (SEGA) - Bulgaria

State e-Government Agency (SEGA) - Bulgaria

The State e-Government Agency (SEGA) is responsible for matters relating to electronic governance in Bulgaria.

Riddle&Code

Riddle&Code

Riddle&Code is a product-led services company specializing in onboarding industries to Web3. The team's mission is to provide a trusted connection between the digital and physical worlds.

Practical Assurance

Practical Assurance

Practical Assurance helps companies navigate the rough terrain of information security compliance.

SyncDog

SyncDog

SyncDog is a leader in enterprise security and the preeminent vendor for containerized mobile application security across cloud & on-premise computing environments.

Axur

Axur

Discover and eliminate digital fraud and risks on the web. Utilize Axur’s entire AI potential, along with thousands of bots dispersed throughout the surface web as well as the deep and dark web.

ByteSnipers

ByteSnipers

ByteSnipers specialize in penetration testings and secure development services. Our focus is on your security.

Sixteenth Air Force (Air Forces Cyber)

Sixteenth Air Force (Air Forces Cyber)

Air Forces Cyber provides mission integration of Information Warfare at operational and tactical levels, creating dilemmas for adversaries in competition and, if necessary, future conflicts.

Spike Reply

Spike Reply

Spike Reply is the company within the Reply Group focusing on cybersecurity and personal data protection.

Open Quantum Safe (OQS)

Open Quantum Safe (OQS)

The Open Quantum Safe (OQS) project is an open-source project that aims to support the development and prototyping of quantum-resistant cryptography.

NSW IT Support

NSW IT Support

NSW IT Support: Your exclusive hub for comprehensive Business IT services in Sydney. Our skilled team ensures seamless technology solutions nationwide, consistently delivering top-tier IT support.

DNS Research Federation (DNSRF)

DNS Research Federation (DNSRF)

DNSRF's mission is to advance the understanding of the Domain Name System's impact on cybersecurity, policy and technical standards.