Comment Hmm... (Score 1) 462
Reading this article, I was thinking this security guy is exaggerating and playing down at the same time.
First of all, in the U.S. many companies use so much crap when it comes to IT that it makes me sick, so everything is possible. However, I think it is much more probable many systems will blow up on a large scale without any malice involved, but just due to incompetence and negligence.
At the same time this guy admits the U.S. is actively preparing and maybe even conducting cyber-warfare against other countries. I don't know how to comment on that. If all countries would stick to cyberwarfare instead of dropping bombs, this would not be *that* bad.
The talk about stolen intellectual property and trade secrets is mostly bullshit. Any business that requires a great deal of secrets to be kept is not sustainable anyway. The future belongs to companies who need very few secrets, if any at all, and are quite open about most aspects of their business. Secrets tend to get out sooner or later anyway.
For mission critical software the quality standards should not be very high, but insanely high. And when the life of people is on the line, software alone should never be able wreak havoc. Unfortunately there are too many people out there who don't have a clue and are just happy when things work. The only get wiser when after the shit hits fan a couple of times, but then they overreact. Professionals should have more courage and never let hazardous systems become operational.
However, I don't see a chance that most of those responsible for the bottom line would voluntarily invest in security and safety unless they are forced to do so, either by law, or by shitstorm.
p.