Jeff Moss of Black Hat: ‘We’re in a Political Situation, Whether You Like It or Not’
As technology has evolved into a critical component of daily life, the security landscape has similarly transformed. Speaking at the 25th edition of the annual Black Hat cybersecurity conference in London, Jeff Moss underscored a significant shift: “all tech is political.” This declaration reflects the growing entanglement of technology and governance, which Moss has come to terms with despite reservations.
Moss noted that he grew up in an era where technology wasn’t inherently political, a time when online theft was virtually nonexistent. The landscape today, however, is markedly different; decisions regarding technology usage have societal and political ramifications. For instance, businesses deliberating whether to use centralized hyperscaler services may face political scrutiny, particularly when considering data protection regulations or the implications of government oversight.
Recent incidents highlight the societal costs associated with cybersecurity intrusions. The hacking of UK-based Jaguar Land Rover by a youth group demonstrated the far-reaching impact of such attacks, resulting in significant financial disruptions estimated to cost the British economy $2.5 billion. Individual cases, such as that of the Finnish hacker Aleksanteri Kivimäki breaching the counseling service Vastaamo, reveal harrowing consequences, with real lives affected by the exposed data of thousands.
The intertwining of technology and politics is evident, with increasing government interest in regulating the technology sector. Moss remarked on the failure to construct technology in isolation, as every technical decision now intertwines with broader political considerations. Issues surrounding encryption, privacy, and security are closely scrutinized by policymakers, influenced by historical debates such as those around the Clipper Chip and subsequent encryption legislation.
The continued presence of state-sponsored cybercrime further complicates the landscape. Recent legislation proposals in various countries have aimed to regulate ransom payments and empower the government to approve such transactions to mitigate risks. Moss underscored how geopolitical dynamics, particularly involving countries like Russia and North Korea, have manipulated cybercriminals as instruments of political leverage, complicating the realm of cybersecurity.
Amid these challenges, Moss emphasized the necessity for a proactive approach within the cybersecurity community. He urged attendees to engage in initiatives that promote better technology and cybersecurity policies through public-private collaborations or direct funding for meaningful projects. In a world where straightforward choices are scarce, the call to action becomes clearer: individuals within the industry must rally to advance policies that align with the realities of our interconnected digital ecosystem.
