“In our investigations, we see a lot of very highly skilled engineers that are part of an extremist religious organization that get involved in hacking of one type or another. The skill level [is] there.”
So why haven’t they used their skills? “Because the leadership of those cells are old guys. Their preference is a physical type of attack – destruction. Even if an internet-savvy extremist were to propose some type of cyber attack, I suspect it would just get shelved.”
But Carr believes the time is coming.
“Five years, maybe seven or eight years from now, I think we’ll definitely see the cyber terror aspect of this increasing, as more internet-savvy terrorists assume leadership positions, and the old leadership dies off. You have a little bit of time not to have to worry about irrational, terrorism-driven attacks. You don’t have the time to sit back and allow the attacks that we’re currently experiencing, which are under the radar – very subtle. They have to do with stealing intellectual property.”
He cited Russia/Georgia as an example of cyber conflicts, but said individuals and governments have been thinking about, and planning for, such events “way before that.”
“All the way back to the Marsh Report in 1997, there were concerns about the security implications of the Internet,” Carr said. “You can go back and see that some of the same problems exist today that existed 13 years ago. It’s not a new problem.”