Since the January 2, 2020 drone strikes that killed Iranian General Qasem Soleimani, cyber and national security experts have worried about retaliatory cyberattacks against US interests. Today, organizations are preparing for the worst, as the potential for a major cyber incident looms large in the minds of government and private sector leaders alike.
While current focus is rightfully on Iran, our long-term security posture requires us to take a step back and ask ourselves why we are fearful of a threat from a nation state not considered our peer. The answer partly lies in the fact that despite more than a decades’ worth of warnings, we know that critical American infrastructure in both the public and private sectors remains vulnerable to attack due to our continued failure to prioritize cybersecurity.
In this paper, entitled “The Iran Cyber Panic: How Apathy Got Us Here, and What to Do Now,” ICIT explores these themes with discussions on: