CyberterrorismThe mind of a cyberterrorist, a neglected aspect of cybersecurity

Published 17 December 2015

A new study is delving into an aspect of cybersecurity rarely explored before now: the human component. The reason why this topic is lesser known, a leading expert says, is that security professionals become very focused on the technological side of responding to attacks and lack the social psychology background to analyze and understand the human being on the other side of that attack.

A new study by Max Kilger, director of Data Analytics Programs at the University of Texas at San Antonio (UTSA) College of Business, is delving into an aspect of cybersecurity rarely explored before now: the human component. Kilger’s research utilizes his talents as a social psychologist to show that at the beginning of any digital threat is a real person with unique motivations.

“I’ve spent a fair amount of time trying to get people to understand that the human component of cybersecurity is very important,” Kilger said. “Understanding the motivations of cyberterrorists was a foreign concept until very recently and still is to many information security professionals.”

UTSA reports that Kilger recently represented UTSA, which has one of the U.S. top cybersecurity programs, at a NATO training facility in Ankara, Turkey. There, he stressed the importance of understanding that cyberterrorists are different from traditional terrorists. There are several motivations for the attacks they carry out. Kilger said that while some are driven by ego, politics or entertainment, the most common reason is money.

“You can basically rob a bank without actually robbing a bank,” he said. “The risk of getting caught is fairly low and the chance of success is pretty high.”

Kilger is among the UTSA faculty leading the study of the human component of cyberterrorism.

The reason why this topic is lesser known, he said, is that security professionals become very focused on the technological side of responding to attacks and lack the social psychology background to analyze and understand the human being on the other side of that attack.

“Being able to project future scenarios is one of the most important aspects of cybersecurity,” he said. “A lot of information security efforts are defense-based and reactive. We need a more proactive approach.”

According to Kilger, a new approach is needed because now a single person can effectively attack a nation-state. In his study, published in IEEE Explore Digital Library, he explains that the dramatic shift in power between a country and an individual is very enticing and it is one sign that a cyber terrorism community could be on the rise.

“As a social psychologist, you look at markers and clues. You analyze what’s happened before and how that informs what’s going on now,” he said. “Losses are adding up significantly. They’re recruiting all the time and they’re very organized.”

As societies become more reliant on the Internet the threat of cyber terrorism looms larger. It is something Kilger said needs to be kept in mind moving forward in a world where cars and airplanes are connected to the Internet.

“There’s no easy solution,” he said. “We need more understanding of why these attacks occur and why people do them. Then we can start figuring out what their targets will be and what they’re likely to do. With that, we can stop them from happening.”

— Read more in Max Kilger, “Integrating Human Behavior Into the Development of Future Cyberterrorism Scenarios,” paper presented at the 10th International Conference on Availability, Reliability and Security (ARES), Toulouse, France, 24-28 August 2015; published in IEEE Explore Digital Library (Fall 2015)