The secret life of a cyber vulnerability

The comic brings a worrying, yet realistic and educative story that follows a life of a cyber vulnerability, from its inception to its deployment for an actual cyberattack.
Resource type
Author
Year
File
Academic papers
Vladimir Radunović
2018

Cyber-attacks of various purposes – for warfare or crimes, terrorism or political activism – commonly deploy the same types of cyber-weapons. Typically, (information about) a system vulnerability is embeddCybered into a software code called ‘exploit’ to penetrate the digital system. Additional code, called ‘payload’, is added to cause specific action for a particular target (like putting down an industrial control system, or sniffing and exfiltrating sensitive data). Unlike in the physical space, vulnerabilities can be discovered (and exploits and payloads developed) by civilians and groups that possess particular knowledge, rather than vast (financial and human) resources, such as companies or states. Vulnerabilities discovered in various available software or hardware should be responsibly disclosed to the authors, in order to issue patches and secure the services provided. This, however, is not a common scenario. Instead, vulnerabilities are traded and developed into weapons by various parties – including governments; and ignored by many – including companies and end-users. The responsibility for global cyber(in)security is, therefore, shared.

Related Resources

09 Aug, 2018

Digital Commerce Capacity Development

This publication presents the thematic approach, methodology, achievements and lessons learned from a capacity development initiative on e-commerce jointly offered in 2017/2018 by DiploFoundation, CUTS International Geneva, the International Trade Centre (ITC), the Gen... Read more...

18 Aug, 2011

Diplomatic Reporting in the Internet Era

Paper delivered by Ambassador Victor Camilleri during the E-diplomacy panel on Diplomatic Reporting in the Internet Era after WikiLeaks, held on 9 February, 2011.... Read more...

04 Aug, 2014

Common African Position on the Post-2015 Development Agenda

The participatory approach that led to the elaboration of the Common African Position (CAP) on the post-2015 Development Agenda involving stakeholders at the national, regional and continental levels among the public and private sectors, parliamentarians, civil socie... Read more...

29 Sep, 2021

UNCTAD Digital Economy Report 2021

The Digital Economy report 2021 provides a review of studies dealing with cross-border data flows and analyses the inequalities in the data-driven digital economy. The Report looks at existing governance approaches at national, regional and multilateral levels, with a ... Read more...

04 Aug, 2016

An Introduction to Internet Governance

'An Introduction to Internet Governance provides an excellent entry point. It has introduced many diplomats and officials to this emerging field of global policy. For others, it will stimulate reflections from linguistic, legal, and other perspectives. This book clearl... Read more...