As Australian forces embark on war with Iraq we are reminded of the possible threats of biological, chemical and nuclear attacks on our country. But how many of us understand the likelihood and severity of a possible cyber-terrorist attack? Central Queensland University’s specialist in Cryptology and Network Security and former researcher with the Australian Defence Science Technology Organisation (DSTO), Lyta Penna, believes cyber-terrorist attacks could become very real with the onset of war with Iraq.

“I believe cyber-attacks could become a real part of this war and if the correct counter-measures are not taken the results could be catastrophic,” Ms Penna said.

She said it was possible that cyber-attackers could target key infrastructures such as electrical, water resources, transport, oil and gas. In addition, she said there is a growing concern in the cyber security community that the World Wide Web or the traditional telephone communications could be attacked and taken out.

“With the Internet becoming more pervasive, so are the threats to the security of our computer systems and communications, this war may see cyber-attackers at their best yet,” Ms Penna explained.

“The use of computers in terrorism is becoming increasingly common and cyber-terrorists are becoming more sophisticated in their coordination.

“Among experts in this field there is a common viewpoint that cyber attacks will accompany physical attacks, giving a statistically predictable new element to the war with Iraq.” “Business and government computer infrastructures are likely targets to cyber attack, particularly in developing economies. Currently, Indonesia, Papua New Guinea, Thailand, Vietnam and the Philippines are expanding their Computer Emergency Response Team (CERT) capabilities due to the increased cyber-terrorism threat.

Ms Penna said potential sources of cyber attacks could come from terrorist groups, terrorist sympathisers, anti-US hackers and thrill seekers. She said we might also see an increase in cyber-crime from people taking advantage of the war for personal gain.

There are some basic and effective measures that should be taken by network administrators to defend ourselves against cyber-attacks, according to Ms Penna. These include increasing computer user awareness, updating anti-virus software, stopping potentially hostile and suspicious attachments at email servers, using encryption, using filters to maximise security and establishing policies and procedures for responding and recovery.

“General PC users should be aware that malicious codes such as worms and viruses can be introduced to spread rapidly by using catchy titles, encouraging users to click-on them, effectively spreading the damaging code.

“I anticipate an increase in Cyber crime and terrorism in the future. I believe that the state of online security will remain dismal until it is considered a high priority for organisations to promote the development of network security specialists.

Ms Penna lectures in Cryptology at CQU Bundaberg and provides IT students with the opportunity to enter the information security industry. She is currently writing an introductory book in Cryptology to be introduced with a new Cryptology course next year.