Cyber security challenges in developing countries
This post focuses on the cyber security challenges that the developing countries are experiencing.
Since the beginning of this century we have been facing a new type of conflict worldwide which is the control of cyberspace.
The main dilemma being faced in cyberspace is lack of universal understanding of definitions, norms, values, rules, regulations and laws on the use of internet in general and the prosecution of criminals in particular.
Developed countries have started exploiting the vulnerabilities of cyberspace to gain supremacy and influence over their rivals. To be able to use the cyberspace, the developing countries rely on the products made by the western world and what is more important is that they use the technology developed by the same countries to protect their information. (http://ieeexplore.ieee.org/document/6725318/?reload=true).
Between the years 2000 and 2010, the global usage of internet went from 360 million users to over 2 billion users. (Zareen, M. S., Akhlaq, M., Tariq, M., & Khalid, U. Cyber security challenges and wayforward for developing countries. 2013 2nd National Conference on Information Assurance (NCIA)). This usage explosion was due because cyberspace became a lot more effective and productive. Although the usage of cyberspace has many advantages, it also has some disadvantages. The most important one, is that there are no physical borders to it. Moreover, the anonymity offered by cyberspace has helped criminals to get away with almost any illegal usage of the web.
Cyber-attacks can harm the national interest of all countries, especially the potential harm to economic growth. Because the internet is a borderless globally connected network, cyber attackers can harm other countries by using computer’s in the countries where there is poor cyber-security and remain anonymous. The openness of the Internet thus requires all nations to have effective cybersecurity policies to have a safe and secure Internet. (http://repository.cmu.edu/cgi/viewcontent.cgi?article=1021&context=dissertations). Much of the effort to address this issue is done by the western world, here are shown a few examples:
- USA has created National Cyber Security Division under the Department of Homeland Security and US Cyber Command (CYBERCOM) under United States Department of Defense.
- France has raised Strategic Commission for the Defense of National Information Systems under Ministry for Homeland Security and the National Agency for Information System Security.
- Germany has established National Cyber Response Centre under the Federal Office for Information Security and the National Cyber Security Council.
- China is developing its military cyberspace capabilities to gain strategic advantages being an emerging superpower. (http://ieeexplore.ieee.org/xpls/icp.jsp?arnumber=6725318).
In 2012, developing countries like Pakistan, Egypt, Philippine and South Korea were ranked amongst the top ten countries hosting the compromised computers (bots) and initiating malicious activities, without the consent of the owner of compromised computer (Symantec Corporation: Internet Security Threat Report vol. 18, p. 123, 2013). Countries like this should enforce the law to achieve a safer global cyberspace.
As said earlier, the problem is that hardwares, softwares and control sytems are mostly manufactured by developed countries so that makes the developing countries vulnerable to having hidden malwares in these components which can lead to espionage and wrong manipulation of certain machines. Stuxnet virus is one example of this situation. This virus took control of over a thousand machines that were participating in the production of nuclear materials and was giving them the instruction to autodestruct. They believe that a USB had been previously infected and then used in one of the machines at the laboratory thus infecting the whole system.
A recent cybersecurity report on Kenya says businesses are losing about $146 million every year to cyber-crime. South Africa’s Sunday Times newspaper reported that hackers launched 6,000 cyber-attacks against South African infrastructure, internet service providers (ISPs) and businesses in October 2015 alone. (http://www.bbc.com/news/world-africa-34830724).
Because of the huge financial gains, in the world of cybercrime they are developing new techniques at a fast rate. This development is making the security models and the detection techniques useless. Furthermore, the false sense of security and the inefficiency of security tool makes the criminal’s job easier.
The problem with developing countries is that they use existing popular templates rather than creating their own and this makes it very easy for the hacker to get into the system and manipulate it.
Finally, technical competence and awareness are thought as pressing issues to achieve cybersecurity in developing nations. The government should start to work with young people with good computer skills who might otherwise be tempted to use them for illegal purposes.
Users who have LIKED this post:
6 comments on “Cyber security challenges in developing countries”
Comments are closed.
Thank you for your post. I like the final idea you shared — proactive Government engagement with the public. Similarly, I was impressed with our guest speaker’s initiative of providing a free sand box as a tool to connect with people and draw ideas (and talent.) I have met a number of incredibly talented young programmers from Mexico that shared stories about the vulnerability of international cyber security. Is the Mexican Government already doing something to engage the young people in the way you describe?
Thank you for your comment. As of now the Mexican government has not addressed this issue, we will have to wait for their response but I think it is necessary to take action.
Hi Irene,
You made a good point here. Countries like USA, where the IT infrastructure is strong, do not need to worry much about cyberattacks than a smaller economy like you mentioned Kenya. I think these countries need to promote computer education from a very elementary level. Nowadays, with the rise of MOOC’s it not difficult to learn programming from a professor at Stanford or cybersecurity from a professional at Microsoft. The governments really need to think about this and not just about the present but also about the future. Investing in education is a key point here.
Thank you for your comment. YOu have a great point, I think the way to solve this problem would be to invest in computer education .
Irene- I think your post touches on a very important facet of cyber security going forward, namely the widening gulf between the “haves” and the “have nots”. From a defense standpoint, there is currently little incentive for nations with robust cyber capabilities (both offensive and defensive) such as the U.S, Russia, China, and Israel, to intervene and address these shortcomings with developing nations. Instead, the vulnerabilities you identified are often manipulated by these state actors for their own gain. A great example of this is the recently leaked NSA exploits that the agency had been sitting on and utilizing for signals intelligence purposes. Based on this, I completely agree that it will be up to these developing countries to shore up their own cyber security in the short term. Over the long term, once we begin to see a more robust presence from transnational criminal organizations or violent extremist organizations in the cyber domain taking advantage of these weak areas of cyberspace, I think there will be a greater international response from Western countries in particular.
Thank you for your comment. I agree with you, we will have to wait and see how are the Western countries going to react.