As information emerges about Islamic State of Khorasan, or ISIS-K – the terrorist group that claimed responsibility for last week’s suicide attack that killed 13 US service members and more than 160 Afghans – there is an increased effort to predict how Afghanistan, under Taliban rule, may emerge once again as a breeding ground for terrorist groups.

A United Nations report released in June estimates that thousands of fighters from the region had already poured into Afghanistan.  Many of them are believed to be affiliated with either the Taliban – still seen as a terrorist organization – or al Qaeda or ISIS-K.

The New York Times reports that ISIS-K was created six years ago by members of the Pakistani branch of the Taliban.  There is a range of thought among experts as to what their ability to successfully carry out a terrorist attack in a Taliban-ruled area means for the terrorist threat moving forward. 

The Cipher Brief spoke with respected terrorism experts Bruce Hoffman, Mitch Silber and Colin Clarke to get their thoughts on the current risk of terrorist attacks against Americans both home and abroad. 

Bruce Hoffman, Terrorism Expert and Professor, Georgetown University

Cipher Brief Expert Bruce Hoffman is a professor at Georgetown University and served as a commissioner on the Independent Commission to Review the FBI’s Post-9/11 Response to Terrorism and Radicalization.  He is also a Scholar-in-Residence for Counterterrorism at CIA.

Mitch Silber, Former Director of Analysis, NYPD

Cipher Brief Expert Mitch Silber served as Director of Intelligence Analysis at the New York City Police Department and served as principal advisor to the Deputy Commissioner of Intelligence on counterterrorism policy and analysis. He is now executive director of the Community Security Initiative.

Colin Clarke, Director of Policy and Research, The Soufan Group

Colin P. Clarke, Ph.D., is the Director of Policy and Research at The Soufan Group. Clarke’s research focuses on domestic and transnational terrorism, international security, and geopolitics. He is also a senior research fellow at The Soufan Center.  

The Cipher Brief: If the United Nations Report issued in June is accurate, and there are thousands of fighters from the region who have poured into Afghanistan – many associated with known terrorist groups – is there any way that the administration can say ‘mission accomplished’ in terms of degrading terrorism’s presence in Afghanistan? 

Hoffman: No. As those numbers from the report released by the United Nations Support and Sanctions Monitoring Team highlight, Afghanistan is again becoming a jihadi magnet and will likely continue to be so into the future. The suicide bomb attacks outside the gates of Kabul International Airport last Thursday underscore the multiplicity of terrorist groups already present in that country.

In addition to ISIS-K, there is the Haqqani Network, al Qaeda and, of course, the Taliban. Terrorism thrives in conditions of chaos and instability which the terrorists hope to spread to other countries and eventually across regions.

Much as Salafi-Jihadi terrorists migrated from existing battlefields in South Asia back to the Middle East, North Africa, and the Caucasus in the 1990s; spread to East and West Africa in the early 2000s; blossomed during the Arab Spring to wage civil wars in Syria, Libya, and the Sahel, in the early twenty-teens; the same phenomenon is unfolding in Afghanistan.

Silber:  Frankly, I don’t think any of the four administrations can make the claim that the policy goal of making Afghanistan inhospitable to serve as a safe haven for Al Qaeda or other similarly oriented jihadist groups has been accomplished.  Certainly, at a number of times during the last twenty years, the threat that jihadist groups, most importantly — Al Qaeda — has presented, in terms of their ability to project a threat to the United States has been diminished, the degradation of the threat was only temporary.

The Cipher Brief: How confident are you that Al Qaeda and ISIS are unable to plan and execute attacks against the U.S. domestically? 

Hoffman:  The credulous Doha negotiations with the Taliban that led to the withdrawal of U.S. military forces from Afghanistan and subsequently to the Taliban’s blitzkrieg across Afghanistan and then to the shambolic evacuation of our diplomats and citizens, has painted a huge target on America’s back. Like sharks in the water, terrorists will smell blood. As my Council on Foreign Relations colleague, Jacob Ware, and I wrote in War on the Rocks, in May, every time terrorism has forced the U.S. to withdraw from a conflict zone where it had committed ground forces, whether in Lebanon in 1984; Somalia in 1993; and Iraq in 2011, it has led to more terrorism worldwide, not less, and thus made the U.S. less safe.

At a time when our country continues to grapple with the COVID pandemic; when climate change is pulverizing the Gulf States with Hurricane Ida and California with worsening wildfires; when the January 6th insurrection at the U.S. Capitol building continues to smolder with incidents such as the bomb threat that paralyzed the area near the Library of Congress and Cannon House Office Building earlier this month; coupled with ongoing cyberattacks and peer competition from China and Russia and concerns over Iran’s nuclear aspirations; our terrorist adversaries may well conclude that the U.S. is sufficiently preoccupied or distracted by any or all of the preceding and therefore conclude that the time to strike the homeland is opportune. It would very unlikely entail a repeat of the catastrophic September 11th 2001 attacks. But a terrorist strike along the lines of the 2019 shootings at Naval Air Station Pensacola; the 2017 suicide bombing of a concert venue in Manchester, England; the coordinated suicide attacks on London transport in 2005; the 2004 Madrid commuter train bombings; or any kind of significant lone wolf incident perpetrated in the name of some existing terrorist movement would likely re-create the widespread fear and anxiety that are terrorism’s stock-in-trade. Twice in the past three years, it should also be noted, members of al-Shabaab – perhaps al Qaeda’s least technologically proficient franchise – have been arrested both in the Philippines and in an undisclosed African country engaging in the same flight training that four of the 9/11 hijackers undertook before their fateful, history-changing coordinated attack.

Silber:  At this very moment, it is unlikely that Al Qaeda or ISIS-K have the infrastructure, resources, recruits and external planning ability to strike the United States based on statements by the IC and senior DoD officials to Congress.  However, without any, or only limited external pressure by the U.S. military as a result of the retreat from Afghanistan, these networks and capabilities can be reconstituted in the coming months and certainly groups like Al Qaeda have never given up their desire to strike the American homeland.

Clarke:  I think it is unlikely that AQ or ISIS will be able to attack the U.S. homeland.  We’ve spent the better part of the past two decades shoring up homeland defense. We’ve got CT tools now that we didn’t have twenty years ago. That said, the picture could look quite different 6, 12, 18 months from now. Both of those organizations are capable of regenerating an external operations planning capability. There is also the worry of inspired attacks.

The Cipher Brief hosts private briefings with the world’s most experienced national and global security experts.  Become a member today.

The Cipher Brief:  Some analysts have said that morale among terrorist or Islamic extremist groups is extremely high due to the circumstances surrounding the US pullout in Afghanistan, do you agree and if so what does that mean? 

Hoffman:  Yes. Of course. Both Sunni and Shi’a terrorist movements around the globe have applauded the Taliban’s re-conquest of Afghanistan and routing of the U.S. military. For Sunni Salafi-Jihadi terrorists, the events there this past month validate the strategy articulated by Usama bin Laden just before the 2004 U.S. presidential election, when he described the ease with which al-Qaeda had been able to “bled Russia for 10 years, until it went bankrupt and was forced to withdraw in defeat” from Afghanistan in 1989, and predicted that the same fate would eventually befall the U.S. And, Sayed Hassan Nasrallah, the Secretary-General of Hezbollah, a Shi’a terrorist organization, for instance, last week delivered a sermon where he described America’s “historic and humiliating defeat in Afghanistan as representing, “the moral downfall of America.”

Silber:  Jihadi chat rooms and online extremist networks are feeling like they have the wind behind them.  It took twenty years, but before the 20th anniversary of the attacks of 9/11 an Islamic emirate has been re-established in Afghanistan.  Suddenly, what seemed impossible has become possible and Islamist insurgencies all throughout the Middle East and South Asia can take inspiration by the determination of the Taliban in their efforts to overthrow a secular democratic government and replace it with an Islamist one.

Clarke:  I do expect morale to be high among terrorist and especially Islamic extremists given the turn of events we’ve seen in Afghanistan. We’re a week and a half out from the 20-year anniversary of 9/11, and Al Qaeda leaders are returning to Afghanistan (this is being displayed in AQ propaganda). We’ve seen al-Qaeda affiliates all over the globe congratulating the Taliban for their victory. I don’t want to overstate the case here, but I do believe that what has occurred in Afghanistan will be a serious boost for the global jihadist movement right at the same time the U.S. and its allies are shifting from counterterrorism to great power competition. There will be fewer resources and energy to deal with terrorists, right at the time we have major threats metastasizing in Afghanistan, potentially with both a reinvigorated al-Qaeda and a stubbornly resilient ISKP.

Read also Mike Leiter’s Why We’re Much Safer from Terrorism Now, Than We Were After 9/11 in The Cipher Brief 

Read also Why We Need a New National Defense Strategy (for terrorism) exclusively in The Cipher Brief 

Go beyond the headlines with expert perspectives on today’s news with The Cipher Brief’s Daily Open-Source Podcast.  Listen here or wherever you listen to podcasts.

 

The post The Risk of Terrorism at Home and Abroad appeared first on The Cipher Brief.

find more fun & mates at SoShow now !

Criminals convicted of multiple cases of rape could face chemical castration in Pakistan as the country’s parliament supported new legislation aimed at tackling the rise in sexual offenses there.

The amendments to existing legislation, which allow for speedy conviction and harsher punishments for rapists, have been voted in by the MPs on Wednesday.

They introduce the death penalty or a life sentence for gang rape as well as chemical castration for repeat sex offenders, with the consent of the convict.

Chemical castration was described in the bill as a process through which “a person is rendered incapable of performing sexual intercourse for any period of his life, as may be determined by the court through administration of drugs.”

Read more

RT
High court rules Pakistan’s ‘two-finger’ virginity test for rape victims unconstitutional

It’s planned to establish special courts across the country to make sure that verdicts in sexual assault cases are delivered “expeditiously, preferably within four months.” If chemical castration is assigned as a punishment, it “shall be conducted through a notified medical board,” according to the new legislation.

Mushtaq Ahmed, a senator for the religious Jamaat-i-Islami party, had earlier denounced the bill as un-Islamic. Ahmed argued that there was no mention of chemical castration in Sharia law and that rapists are to be hanged in public.

By resorting to drugs to reduce the libido of repeat sex offenders, Pakistan joins South Korea, Poland, the Czech Republic and some US states, where chemical castration has been introduced.

The measure was put on the table a year ago by Pakistani President Arif Alvi in response to a vast public outcry over a spike across the country in cases of rape involving both women and children.

Back then, Amnesty International decried chemical castration as a “cruel, inhumane” treatment, advising Islamabad to instead focus on reforming its “flawed” justice system and to ensure justice for the victim.

Local NGO War Against Rape told Reuters last year that less than 3% of sexual assault or rape prosecutions in Pakistan result in a conviction.

If you like this story, share it with a friend!

find more fun & mates at SoShow now !

CIPHER BRIEF EXPERT PERSPECTIVE 

Cipher Brief Expert Tim Willasey-Wilsey served for over 27 years in the British Foreign and Commonwealth Office. He is now Visiting Professor of War Studies at King’s College, London.

Older Americans have Saigon 1975 and the helicopters from the Embassy roof seared into their memories. A previous generation of Britons was haunted by the image of General Percival surrendering vast numbers of troops and equipment in Singapore to the Japanese in 1942. How Kabul falls to the Taliban could have important practical and symbolic significance.

The announcement that the United States is sending 3,000 troops to Kabul alongside 600 British troops to manage the evacuation of their civilians and those Afghans who provided assistance, is a remarkably late response to a rapidly deteriorating situation. Unless carried out in the next 48 hours, it will also be risky. Taliban infiltrators are already inside Kabul and the forces which captured Ghazni and Kandahar on 12th August will be heading towards the capital on their Honda 125cc motorbikes.

The US must have extracted undertakings from the Taliban negotiators in Qatar not to launch their full assault on Kabul until the evacuations are complete, but elements of doubt remain. Previous Taliban assurances have proved worthless, and it is doubtful that individual Taliban commanders would wish to hold back while some of Ashraf Ghani’s ministers, senior army officers, judges and officials are spirited away to a life of exile.

It is hard not to be impressed by the speed and élan of the Taliban’s recent successes; taking 13 of Afghanistan’s 34 regional capitals in almost as many days. It is reminiscent of the extraordinary progress which the Japanese made down the Malaya Peninsula in 1942 with Singapore as the ultimate prize.

The Taliban’s success has not happened by chance. It is clearly the fruit of preparation and planning. Above all, they have learnt from the experience of 1994 to 1996 when they eventually took Kabul but failed to capture the north, thereby allowing space for the Northern Alliance parties to survive and then reassert themselves following the 9/11 terrorist attacks.

This time, the Taliban have focussed first on border posts with neighbouring countries (thereby denying the government vital supply routes and customs revenues) before taking outlying regional capitals and leaving Kabul (which is never easy to capture) until last. Above all, they have concentrated on the north where many rural Afghans are disenchanted with the Kabul government and regional warlords. The north is no longer the solid bastion of anti-Taliban sentiment it was in the 1990s.

The Cipher Brief hosts private briefings with the world’s most experienced national and global security experts.  Become a member today.

Taliban progress in the north has snuffed out any chance that the old Northern Alliance could be reborn out of the eventual collapse of the Ashraf Ghani government. Whereas in 1996, Ahmed Shah Massoud, its brilliant military leader, was able to abandon Kabul and beat a tactical retreat up the Panjshir Valley, that option barely exists today. Not only is Massoud dead but his former adherents are no longer guerrilla fighters but members of a stratified Afghan army which has struggled to perform without US air support.

The Taliban have also ruthlessly exploited the weak negotiating stance of the United States and its chief negotiator Zalmay Khalilzad. Whereas some of the Taliban team in Doha, such as Mullah Barader, may indeed have been ‘moderates’ there was never any doubt that the Taliban movement wanted to see the total defeat of the Kabul government and the expulsion of Western forces. Pakistan too, may have occasionally considered some form of negotiated deal but ultimately the only sure way of keeping Indian influence out of Afghanistan (it believes) is a Taliban government.

The Afghan army (and in particular its impressive Special Forces) will now be assembling in Kabul and should be able to repel initial attempts to overrun the city. Certainly, Gulbuddin Hekmatyar found it impossible to take Kabul in 1992 and 1993 even with help from Pakistan, which, in frustration, switched support to the newly-created Taliban movement in late 1994.

But from 1992 to 1996 there were frequent deliveries of supplies to Massoud and his Northern Alliance defenders from Russia, Iran, and India. In 2021, the position is very different. Russia has already decided to “back the winner” and believes it has extracted promises from the Taliban not to export Islamism northwards into the Central Asian Republics (CARs). Iran too has channels to the Taliban and will be watching carefully for any return to the Taliban’s persecution of the Shia Hazaras. And India has already made contact with the Taliban in Doha in the hope that the Taliban in power will prevent Kashmiri militant groups from setting up bases there.

The likelihood therefore is that Kabul will fall to the Taliban quite quickly. If the Americans and British do manage to insert their evacuation forces soon, they should be able to complete the operation successfully, although there are likely to be heart-rending scenes at the airport as crowds of refugees are turned away at gunpoint from departing aircraft. Regional powers, particularly Pakistan, will try and persuade the Taliban to hold back from intervening, conscious that a bloodbath in Kabul would be a disastrous start to the Taliban’s second spell in government. Ironically, however, the evacuation would almost certainly lead to the collapse of the Kabul government as senior officials are forced to decide whether to take the last aircraft out or face almost certain torture and death at the hands of the victors. It is doubtful whether any Western countries will choose to retain their embassies in Kabul. For President Biden, the memory of Benghazi will be too raw.

What is certain is that there will be new iconic images to rival those of Saigon and Singapore.

Go beyond the headlines with expert perspectives on today’s news with The Cipher Brief’s Daily Open-Source Podcast.  Listen here or wherever you listen to podcasts.

Read more expert-driven national security insights, perspective and analysis in The Cipher Brief.

The post How Does Kabul End? appeared first on The Cipher Brief.

find more fun & mates at SoShow now !

A Canadian teenager has been arrested after allegedly stealing $36.5 million in cryptocurrency from a person in the US. The police claim it was the largest such heist involving one victim ever registered in North America.

Police in the city of Hamilton, Ontario, arrested the unidentified perpetrator on Wednesday, after over a year investigating what they have described as the biggest-ever cryptocurrency theft from a single person in either the US or Canada. Local police began a joint investigation with the Federal Bureau of Investigation and the US Secret Service Electronic Crimes Task Force in March 2020, when the theft was reported.

Read more

© AP Photo/Jiri Buller
Europol detains 10 hackers over $100 million cryptocurrency theft from celebrities

The Hamilton Police Service said it had made “multiple” seizures in excess of CA$7 million (US$5.5 million) during the arrest, which came after investigators noticed some of the stolen money had been used to buy an online username considered “rare” in the gaming community, according to a police statement.

The victim was apparently targeted by a cell phone hijack known as SIM swapping. This method involves manipulating cellular network employees to duplicate phone numbers in order to let the scammer intercept the two-factor authorization requests that allow them access to a victim’s account.

This method is considered especially potent because a lot of people use the same password for multiple sites, according to Detective Constable Kenneth Kirkpatrick, of the Hamilton Police’s cybercrimes unit. He added that cyber and cryptocurrency crimes were becoming increasingly common, but noted that the figures involved in this case were “very surprising.”

“It’s a large amount of money in anybody’s opinion,” Kirkpatrick said, adding that the case was currently in the Hamilton court system.

The police haven’t revealed the age or gender of the youth, the username they purchased, or whether they were acting alone.

If you like this story, share it with a friend!

find more fun & mates at SoShow now !

Extinction Rebellion has targeted Colombian diplomatic missions across several EU countries, including France and Italy, demanding that the nation address deforestation, coal mining, and indigenous peoples’ rights.

The hard-line climate activist group staged simultaneous protests outside several of Colombia’s diplomatic missions on Tuesday, calling on Bogota to protect biodiversity and stop deforestation. It also urged the country’s government to take action against the El Descanso open-pit coal mine, which is said to be threatening the Yukpa indigenous people.

The French branch of the activist group targeted the Colombian Embassy in Paris, vandalizing its entrance. Footage from the scene shows activists dousing the mission’s entrance in black paint, while plastering placards over its walls.

XR members then chanted slogans, lighting flares that emitted thick pink and black smoke. At least one activist was seen bathing in fake blood.

Another protest held outside Colombia’s consulate in Milan, Italy, saw that mission vandalized too. The building’s entrance was covered in fake blood, with a pile of a black substance, which looked like charcoal or coal, left by its doors.

Demonstrations also took place outside Colombia’s missions in Germany’s capital, Berlin, as well as in Madrid, Spain. Those protests appeared to be more civil, with activists rallying outside of the missions without vandalizing them.

Think your friends would be interested? Share this story!

find more fun & mates at SoShow now !

The children of families who were affected by the massive earthquake which devastated large parts of south-west Haiti in August this year are receiving free hot meals at school as part of an initiative by the UN’s World Food Programme (WFP) to support the recovery of the country’s most vulnerable communities.

Read the full story, “Hot meals helping Haiti’s children recover from the earthquake”, on globalissues.org

find more fun & mates at SoShow now !

The Funniest Clothing Labels Ever – When was the last time you read the label on your favorite shirt or most comfortable pair of jeans? Maybe it’s time to take a look, your clothing tags may hide a funny message.

The Perfect Gift For Someone You Hate – Hungry AND tired? You can rest on this soft body pillow shaped like smoked pig’s feet! What really amazes us are the details, it looks so real… and so disgusting.

Every Cat at 3AM – If you currently have or have ever had a cat, you’ll be able to relate to Gus Johnson’s video, in which he demonstrates one of the many ways in which our furry friends can be a-holes.

The Funniest Dog Videos Of All Time – We understand the value of a good funny dog video, so here’s a list of our six best viral pup videos of all time. You’re welcome.

Mildly Infuriating Things In Life – Sometimes the internet shows you a photo that’s ever so slightly wrong that it sticks in your brain forever…

Funny Images Showing How Differently Men and Women Act – Yup, we’re different and there is no denying that fact. We have different bodies, different brains and different ways of using both.

Dads Who Didn’t Want The Damn Dogs In Their Lives – Dad logic is a weird thing. They say they hate dogs, and then you end up with a gallery like this…

Random Funny Pictures – What do you do when you are bored at work? You just mindlessly scroll through random funny pictures, of course!

Mr. Bean Playing Every Role In Hollywood – When one thinks of a rugged, versatile actor capable of elevating any role given to them, Mr. Bean naturally springs to mind. And yet he was never cast as Frodo Baggins or Indiana Jones, which in our eyes is one of the saddest tragedies of modern filmmaking.

Funny Thanksgiving Cake Fails – Thanksgiving is a day to reflect and enjoy time with family… and sometimes to FAIL.

Still bored to tears and want to see more funny and entertaining links? You should check out Linkiest, Leenks, or Fark!

The post This Month’s Funniest Internet Finds first appeared on .

find more fun & mates at SoShow now !

Scientists have used artificial intelligence to “predict” formulas for new designer drugs, with the stated goal of helping to improve their regulation. The AI generated formulas for nearly nine million potential new drugs.

Researchers with the University of British Columbia (UBC) used a deep neural net for the job, teaching it to make up chemical structures of potential new drugs. According to their study, released this week, the computer intelligence fared better at the task than the scientists had expected.

The research team used a database of known designer drugs – synthetic psychoactive substances – to train the AI on their structures. The market for designer drugs is ever-changing, since their manufacturers are constantly tweaking their formulas to circumvent restrictions and produce new “legal” substances, while cracking their structure takes months for law enforcement agencies, the researchers said.

Read more

FILE PHOTO: A man living on the streets displays what he says is the synthetic drug fentanyl, in the Tenderloin section of San Francisco, California, February 27, 2020 © Reuters / Shannon Stapleton
Drug overdose deaths in US hit all-time record

“The vast majority of these designer drugs have never been tested in humans and are completely unregulated. They are a major public-health concern to emergency departments across the world,” one of the researchers, UBC medical student Dr. Michael Skinnider has said.

After its training, the AI was able to generate some 8.9 million potential designer drugs. Afterwards, researchers ran a data sheet of some 196 new drugs, which had emerged in real life after the model was trained, and found that more than 90% of these have been already predicted by the computer.

“The fact that we can predict what designer drugs are likely to emerge on the market before they actually appear is a bit like the 2002 sci-fi movie, Minority Report, where foreknowledge about criminal activities about to take place helped significantly reduce crime in a future world,” senior author Dr. David Wishart, a professor of computing science at the University of Alberta, has said.

Identifying completely unknown substances remains an issue for the AI, the research team has noted, but they hope it might potentially help with that task, since the computer was also able to predict which formulas of designer drugs were more likely to be created and hit the market. The model “ranked the correct chemical structure of an unidentified designer drug among the top 10 candidates 72 percent of the time,” while throwing in spectrometry analysis, which is an easily obtained measurement, bumped the accuracy to some 86%.

“It was shocking to us that the model performed this well, because elucidating entire chemical structures from just an accurate mass measurement is generally thought to be an unsolvable problem,” Skinnider stated.

Think your friends would be interested? Share this story!

find more fun & mates at SoShow now !

Denmark’s air force showed off its brand-new electric-powered planes on Thursday, saying its test flights have so far proven that the cheaper-to-run, more eco-friendly technology has potential.

It had obtained the two Velis Electro jets from Slovenian manufacturer Pipistrel, becoming the first military in the world to operate this type of hardware.

“The aircraft are 100% emission-free, very quiet, and otherwise cheap to operate,” Lieutenant Colonel Casper Børge Nielsen of the Defense Ministry’s material and procurement agency said. Initial tests indicate “there may be perspectives in using electric aircraft when the technology becomes mature,” he added.

Denmark has leased the planes for two years, rather than buying it, to avoid the “risk of ending up with equipment that we can’t really use,” Børge Nielsen said. During the lease period, the Danish Air Force hopes to gain an insight into the benefits and disadvantages of the jets’ technology to decide how it can be applied in the future.

Read more

© CIAM / Facebook
Russia to debut world’s first electric plane at MAKS 2021 airshow

The pilots described flying the one-man light electric planes, which are powered by two lithium batteries, as “exciting,” saying they were “built well and fly well.” 

Last year, the United States military said it had been keeping an eye on the development of electric-powered planes, describing their ability to approach targets silently as “tremendous.” However, their battery capacity isn’t currently sufficient to meet the US Air Force’s needs.

Work on electric aircraft has been underway since the 1970s, but the battery issue has been a stumbling block in the way of wider adoption of the technology. Global military interest could change all that, stimulating research and investment.

The switch to electric power is likely to be a win-win across the board, as it will drastically reduce CO2 emissions and also make flying much cheaper for commercial carriers and their passengers.

Think your friends would be interested? Share this story!

find more fun & mates at SoShow now !

Chris Inglis’ new White House office has a startup feel to it. There are desks, a few chairs, a coffee maker and a poster hanging on the wall.  But as the head of the newly established Office of the National Cyber Director, Inglis has to make due with what he has while still advising President Joe Biden on the smartest ways for the US to prevent and respond to cyberattacks.

Inglis has already had numerous conversations with the president, who has made clear that the government has a role to play in the defense of the private sector and in assisting the private sector in defending critical infrastructure.  And the president knows, says Inglis, that means the government needs to get its own cyber house in order. 

But like any real startup, Inglis’ resources are scarce.  More than three months after being confirmed by the Senate, he still doesn’t have the full staff he needs to take on his timely and critical mission.  That’s because the funding for his office – some $21 million, part of the $1 trillion infrastructure bill making its way through Congress – is still stuck in the political spin cycle.  Why does it matter?

“The threat is greater than I can ever remember,” Inglis told me during last month’s AFCEA and INSA Intelligence & National Security Summit in National Harbor, Maryland. “The audacity, the brazenness, the thresholds that have been crossed at every turn; we’re in a difficult place.”

While he’s waiting for Congress to act, he says he’s spending about fifty percent of his time defining his role, being careful not to duplicate the work already being done by other agencies and departments, while spending another fifty percent building relationships that will be important later.  Eventually, he’s expected to have a staff of some 75 people who will be expected to work hand in glove with CISA, the National Security Council’s cyber staff, the OMB and others.  The remaining fifty percent of his time, Inglis jokes, is spent figuring out how to attract the country’s best talent.   

“People are starting to flow into the organization. I’m confident that we’re coming up to a breakout moment, not for the National Cyber Director, but the contribution that we can and should make. I’m sobered by the nature of the challenge, I’m optimistic we can make a difference.”

Optimistic he is.  And he’s not even complaining about being given a critical task for US national security and then having to wait for politics to play out before being able to act on it.

“It has been a semi-silver lining in that we would not have had time to think about how we want to apply the resources coming our way.”

While Inglis has been waiting, he and his small team have had time to think about the four things they’d like to focus on right away. 

First, is streamlining the roles and responsibilities in government of who handles what when it comes to protecting the public and private sectors from cyberattacks.  He also spoke during his confirmation hearing about the importance of allocation of resources and while the Office of the National Cyber Director doesn’t have the authority to move money, it does have what Inglis calls the responsibility to account for cyber money.

“One of the most critical gaps in cyber is that the physical digital infrastructure is not built to a common standard. The executive order related to this requires that within a certain amount of time we have to install basic procedures like multifactor authentication and encryption of stored material. That is a challenge and a potential vulnerability for us. We need to make sure that we make these investments necessary to buy down the lack of investment for years.

The second gap is in talent related to number of people required to occupy these jobs. It’s not simply the folks with IT or cyber in their name, but general cyber awareness. There is some expenditure of resources of time, attention, and money to get awareness right on the part of the truly accountable parties like agency and department heads. We have to make sure they don’t see cyber as a cost center, but an enabler on the part of all the users as they understand what their roles are and what the accountability is.

He admits there is still a level of education needed within government to get there.

That is usually the case in both the government and the private sector,” he said.  “We need to think this way about cyber and invest in cyber so that we can enable the mission, not hold it back. I think that education is the most important and effective way to handle this. Then, it is to make sure that the accountability is aligned and harmonized. We tend to take risk in one place and expect someone in another place to be the mitigator of a risk they don’t understand was taken in the first place. We need to operate in a collaborative fashion and get away from divisions of effort which are an agreement not to collaborate and allow adversaries to pick us off one at a time.”

Inglis says that unity of effort must start at home.  “The executive order issued in May has begun to lay out common expectations about the hardware, software, and practices that we need to begin in those spaces,” he said.  “Externally, if we have sector risk management agencies who engage the private sector for the purposes of supporting and engaging the critical components of that infrastructure, we need to make sure you don’t need a Ph.D. in government to know who to deal with and what you’re going to get from them.”

He is arguing for the government to also put ‘valuable material’ on the table.  “That could be our convening power,” said Inglis. “We could perhaps address and reduce liability or give companies a clue as to what might be around the corner because the government has access to exquisite intelligence. If that setup is possible, we also need a venue where collaboration takes place. Information doesn’t collaborate, people do.”

Inglis likes to point to the example of CISA and the Joint Cyber Collaborative.  “They put people from the private sector and the public sector side by side to co-discover threats that hold us at common risk. That project sets up the possibility of implicit collaboration in what we then do with that common operational picture. The government could take ideas that private sector companies turn into proprietary systems and enrich and classify them to deal with it in their system.”

Using what he calls “all the tools in the toolkit,” Inglis also notes the importance of international relationships, which fits nicely into the White House’s International Summit on Ransomware last week in Washington, which zeroed in on tighter cryptocurrency standards, among other things. “Beyond the Five Eyes, what do other like-minded nations think about what is expected behavior in this? What are governmental actions that are appropriate,” he asked.  

Inglis has been an active participant in the president’s recent actions in cyber.  He took part in a White House meeting with tech leaders in August that was hosted by President Biden, who Inglis says, spent the first hour sharing his vision about how the country should focus on collaborative integration.  “The companies represented weren’t only companies like Microsoft and Apple, but people who operate in the critical infrastructure space,” said Inglis.  “The people component, educators, were represented reflecting the president’s view that cyberspace is not just technology, it is also the people component. They are a major link in the chain, and we need to get the roles and responsibilities right.”

While he’s waiting for the funding he needs to get his office fully staffed, Inglis said he’s also putting thought into reconciling resources with aspirations.  Managing expectations is going to be important.  Frustration has been growing for years over what some see as a lack of government response to some of the largest hacks in history.  The phrase ‘time and place of our choosing’ as a definition of response has grown old and some Americans are weary of a government that isn’t responding in a more public way to the beating it sees the US taking in cyberspace.

So, I asked Inglis whether there should be red lines in cyber.

“Red lines are both good and bad,” he answered.  “They are clear and crisp, and everybody knows what they are. The downside is that because of that, an adversary knows exactly how far they can go. It means that you set up a somewhat permissive environment. Red lines also don’t have context; sometimes there is a reason that a defender would make the ransomware payment. As a matter of policy, the U.S. government does not pay ransomware, but I imagine there will be a situation at some point where a hospital is against the Russian state and actual life and safety is at risk. If there is no other way to get the material back, in order to get back in the business of saving lives, they would want to rethink if a red line is a red line in that particular situation. I think the right thing to do here is not to establish hard thresholds of things with scripted responses, but outline what we are prepared to defend and what principles we will exercise in defense of those things. We commit to defending the private sector when it is held at risk by a nation state in cyberspace as much as in the kinetic space and make that clear to adversaries. I think that would be more helpful in changing decision calculus and creating a useful ambiguity about when and where we will come in.”

Inglis said he’s also thinking a lot about present and future resilience.  It’s a worthwhile focus, given that the White House estimates that nearly half a million public and private sector cybersecurity jobs are currently unfilled. 

“That is a massive problem,” said Inglis. “However, the more insidious problem is that the 320 million people in the United States who use the internet who have no idea how to properly take their place on the front lines of this issue. There is an awareness issue that requires us not to make Python programmers out of them but to make sure they understand the nature of this space.”

Everyone has heard the old saying that time is money, but in Inglis’ case, time is security so I asked him point blank whether he thought government was moving has quickly as it should on the cyber problem.

“Government is moving at speed; the question is if it is at the necessary speed. I don’t think anyone is moving at the necessary speed. Some are moving at light speed, but at the end of the day, we need an integrated, collaborative approach. While we won’t have unity of command, I think there needs to be a universally felt sense of urgency so that we will all get our heads in the game.”

Congress, are you listening?  Oh, and by the way, that poster in Inglis’ office? It reads, ‘Hours Since the Last Surprise.”

As a startup with maybe too few resources at the start and who often didn’t understand how all the wickets are run, we have our occasional surprise,” said Inglis.  “When we encounter those surprises and go to someone with the deep and sharp expertise to help us navigate that, we get what we need. However, we are not a full functioning, full featured, fully capable organization yet. We’re trying to build somebody else’s airplane while we’re free falling from our own. We have a parachute, and we can land safely, but it is a bit of a challenge at times.”

Find out more about why experts like former NSA Director General Keith Alexander (Ret.), Mandiant CEO Kevin Mandia and others have joined The Cyber Initiatives Group, powered by The Cipher Brief

Read more expert national security insights, perspective and analysis in The Cipher Brief

The post Chris Inglis and the Gathering Cyber Storm appeared first on The Cipher Brief.

find more fun & mates at SoShow now !