Today is the 69th anniversary of the attack on Pearl Harbor. The devastating surprise attack on the United States set in motion events that few people could comprehend in 1941. The lives lost that day and the days that followed must never be forgotten. As a country, we would learn a very tough lesson in 1941: not being adequately prepared to defend ourselves against a “surprise attack” would have a devastating impact on our nation for years to come.
In 2010 we are dealing with another type of attack that will cause serious damage and may have far reaching consequences that are hard to comprehend. The US Federal Government was caught by surprise and is seemingly defenseless against the attack by WikiLeaks. The illegally obtained documents that are now exposed to the entire world have not only caused embarrassment, but have also undermined the security of our nation. One silver lining is that now there is a clear global awareness of the risk that exists. What action can you take to prevent a similar occurrence?
Ironically, the encryption technology that could have prevented these documents from leaking is now being used by WikiLeaks as an “insurance” file, should Julian Assange be arrested and prosecuted. Supposedly, the file with AES 256 bit encryption has been distributed to ten locations and it has already been downloaded by thousands of people. They are just waiting for the key. In the event that Assange is arrested the encryption key will be released to expose the next round of files. The files are thought to contain classified information about Guantanamo Bay, an aerial video of a US airstrike in Afghanistan that killed civilians, in addition to files related to BP and Bank of America. By the way, AES 256 bit encryption cannot be broken with current technology.
In November 2010, the US Federal Government’s CYBERCOM became fully operational. It’s mission is to synchronize the Defense Department’s various networks and cyberspace operations to better defend them against the onslaught of cyber attacks. Unfortunately in this case it was too late.
Every government agency and company should get serious about implementing similar technology before this happens to them. Persistent file protection is not a new technology and is currently used by millions of people throughout the world. Every company that has anything to lose if confidential documents are exposed to the public should immediately lock them with file level encryption.
Get prepared! The bad guys have started the attack!!