Coming to you for the first time, the premier of our short form corporate documentary. A version of this will run on public television this year, while a shorter segment will air during Fox Business News during the month of June. Let us know if you see it!
|Its worth noting, 2018 could’ve been much worse. We careened into the year smarting from a horrendous hurricane season – one of the most expensive in US history – with the US President and Kim Jong Un hurling literal nuclear twitter threats at each other. So before we get too pessimistic, let’s be thankful for small miracles (and military restraint). Nonetheless, beneath those big big-ticket stories, a lot happened that’s worth considering as we look ahead to 2019.|
Over the last several weeks, as we built our 2019 outlook and considered 2018 in retrospect, the two words that most resonated were nationalism and technology. These two concepts are sending us into 2019 with a thorny set of problems to solve. And they are changing the world – literally – faster than we can account for it. And so, it is through consideration of these concepts that we should also think about what they mean for the future. And before we lament over the major downsides of what is happening (because we are risk managers after all), it’s imperative that we recognize that no matter which side of these debates we sit on – the world is changing, mostly, because the old systems, as most seem to agree, were broken. And thus, new ideas and new solutions are needed.
Over the past several years, a tide of nationalism has risen across much of the globe. Elections in Europe have ushered in new, far right, populist administrations in countries such as Italy, Austria, Hungary and Poland. These wins at the polls reflect electorates that have grown increasingly skeptical of the benefits to European Union membership and weary of the migrant populations that have entered their borders – migrants fleeing war, starvation and economic inequality. Perceived as stealing jobs, draining welfare systems, altering culture and demographics, and posing threats to every day security. Similar emotions have emerged in the United States, where the administration has campaigned upon, whether founded or unfounded, concerns over insecure borders and perceived risk of violent crime and terrorism by illegal immigrants. In China, a general populace whose information consumption is closely controlled and curated, has experienced spikes in patriotic, nationalist sentiment, driven by government-influenced messaging suggesting the Western world, and especially the United States, has violated its sovereign rights and taken aim at crippling its economy to prevent it inevitable ascension and historic return to leading global superpower. In Brazil, the country’s newly seated president has rejected United Nations initiatives such as the Migration Pact, threatened rights of its indigenous peoples, talked of nationalizing key industries and stirred international concern over his admitted nostalgia for past periods of military rule.
While fully acknowledging that there is a fine balance between being a borderless country and being completely closed to the outside world (ala North Korea) and that there are those who view nationalism as a means of giving citizens more power to affect the trajectory of their own country’s future; the level of nationalism currently facing the world has necessarily also lowered the world’s ability to avoid international conflict and complicated international commerce. This perspective is encouraging countries to retreat into their own borders; attempting to protect “a way of life” by protecting against outside influences – whether through tariffs, physical and monetary barriers, immigration, rhetoric and/or psychological warfare against “the other.” The unintended consequence for business is that this stymies growth, making it increasingly difficult to steer a prosperous global enterprise that holds increasing (and at times, contradictory) regulatory requirements, financial burdens and shareholder expectations. The movement has also created suspicion of brands associated with one country or another, driving away potential customers and creating new regulatory hurdles.
While there is no question that trade imbalances and considerations of economic espionage needed addressing, in 2018, new trade barriers resulted in a major re-order of global trade. The abrupt – and at times non-sensical – changes increased costs to business around the globe, threatened corporate brand and reputation and by the end of the year pushed the global economy into a downward spin that economists increasingly worry could worsen in China and the US – dragging much of the rest of the world down with them.
But it’s the trust factor that is perhaps most concerning. Suspicions over spying, arrests of company executives and an increasingly pervasive sense of distrust between countries has, and will continue to, filter down to the corporate and even working level between international employees. This is not only true of US and Chinese colleagues, but also US and Russian colleagues and, as more nationalism and as protectionism grows, this may soon extend even to countries that we’ve traditionally treated as allies like Canada and Germany.
Rising nationalism hasn’t just slowed commerce, it’s led to an almost across the board increase in hate crime in the West; from the United States and Canada to Europe. In the US, hate crime targeting ethnic and racial minorities has risen steadily in the last four years with other categories of hate crime remaining relatively flat. The same is true of the United Kingdom, Germany, Switzerland – and if we looked deeply enough – likely nearly every other country in Western Europe.
Technology enabled bias and nationalism
Technology has changed our lives, in most ways for the better, yet has lost some of its luster to weary populations who increasingly see it as a tool to manipulate unsuspecting users – rather than as one that improves lives and livelihoods. The truth of technology innovation perhaps lies in how you look at it; but in the past several years especially, technology has been blamed for increasing polarization around the world; or more specifically for how it has come to change the lens through which we view the world, and perhaps dominate our lives. The way we work, play, consume information and educate (or mis-educate) ourselves have all changed. Social media echo chambers; the idea that people are attracted to the posts of social media contacts, pundits and content that validate and confirm narrow perspectives on unknown groups, cultures or points of view, have been blamed for forging stark societal divisions, lowering tolerance of competing ideas and consideration or pursuit of facts – driving – though certainly not causing the nationalist/populist trend overtaking much of the world. Extensive government-sponsored disinformation campaigns, launched by Russia against targets across the globe and designed to breed discontent and confusion – and skepticism over alleged, wrongful acts by the Russian government; launched by China in the West to promote Chinese economic initiatives and downplay its risks to competitors; and launched by countries such as Saudi Arabia and Turkey to stifle and threaten opposition voices have all put today’s media – especially social media – in the crosshairs of blame for rising intolerance, societal retreatism and growing toxicity in our relations and discourse.
That is the focus right now. But we need to be cautious not to throw the baby out with the proverbial bathwater. From Facebook to Twitter to encrypted messaging platforms to the news media, the worst of the worst stories rise to the top and become the grievance clause for everything we see that is distressing in the world – particularly as it pertains to technology. At the same time, the sheer amount of economic benefit that these platforms have created for small business, entrepreneurs, and minority owned businesses, not to mention larger businesses, is grossly under-appreciated.
So, what do these two trends over 2018 mean for the year to come?
First, we don’t expect to see nationalist governments going away or changing their views any time soon. Retreatism, both at the government and the societal level, is going to be a continued theme in 2019, and it’s going to continue to alter trade patterns, impact diplomacy and, unfortunately, continue to drive increases in xenophobic if not hateful discourse for the near term. Companies will need to continue to consider longer term strategies for protecting revenue, planning for international supply chain flexibility and continuity while considering ways to (legally) overcome regulatory schemes designed to advantage domestic interests over foreign providers. Technology companies, and especially social media platforms, will need not only to plan for tighter regulations on data housing, sources of investment capital and import/export controls, but will also suffer increased pressure to moderate user content and serve as a policing mechanism, for purposes that may both serve the public good and leave companies exposed to accusations of supporting maligned efforts to control populaces and suppress opposition.
Those choosing to take their ideals to the extreme such as has been the case in the US and Europe in 2018; in the worst of cases committing acts of violence in belief they promote their cause, will continue to challenge law enforcement and security organizations, forcing them to shift resources, intelligence collection strategies and delicately consider political and reputational ramifications of the cases they may be forced to pursue and arrests they may make. And in this age where corporate leaders have increasingly been looked to by the consuming public as potential sources of moral leadership – a trend in business unlike any we can recall over the course of history – executives will be challenged to balance expectations of growth with the ideological demands of customers, not to mention their own employees.
What might alter these trends? In our view, it will most likely be pain in the pocketbook or in a worse scenario, heightened conflict between states or within states that causes us to rethink our perspectives on our common humanity. Continued stalls in trade that ultimately lead to a rise in unemployment, persistent losses in stock value and signs (or onslaught) of recession will most likely prove the pressures that force a political re-think – particularly as countries that remain more open attract more foreign direct investment, more entrepreneurs and more innovation. And while the trade war will have ups and downs in the first half of 2019, a real shift back towards a more open and less protectionist world order will likely require the experience of a compounding series of negative consequences that pile up and weigh down institutions before the current trajectory re-orients.
But while polarization may be here to stay for a while, we’ll all be charged with finding ways break down barriers, build bridges and seek a common, less unequal prosperity, despite circumstances. And those that do stand much to gain. No, it’s definitely not all doom and gloom out there, but we do believe that 2019 is going to prove an interesting, if not challenging year. But challenge always comes with opportunity, forcing us to bring our A game. This year, we’ll all need to bring our best selves to our work each day, force ourselves to think in new ways, tackle new challenges and pursue creative and innovative solutions to what are, in many ways’ old problems, but with a very new twist.
There’s an elephant in the room. And its past time to let it out.
Those of you who’ve met ERI’s leadership and analyst cadre probably recognized right away that we, like most intelligence professionals, are rather opinionated individuals, and as individuals, we’re rather comfortable speaking our minds in private settings. Divergent in opinion as we often are (which we see as a strength of our business and analysis), we take exceptional pride in training our analysts – and other companies’ analysts – to work diligently to ensure that analysis is anything but opinion. There is, after all, a sharp division between editorial and analysis – something that is not always immediately understood by those new to the field. Our product is intelligence analysis. By definition, analysis is as objective as humanly possible. It should consider only facts, trends and potential outcomes. It does not serve a specific agenda, other than to support business and executive decision-making with the best and most relevant information possible. In hope that its consideration leads to decisions that produce the most effective outcomes possible. That is the role of proper analysis. These premises underpin our tradecraft.
That’s a long-winded way of saying that we find it challenging to suggest that we, as intelligence analysts, need to explore head-on whether the ship that is the world’s superpower has lost its leadership heading. And if so, what have been the impacts and how might we predict future outcomes. (Elephant exits the room.) Its past time to look at this situation objectively, accounting for bias (yes, we are ALL biased) and approaching our tradecraft as the expert analysts we are. As for what follows, agree or disagree. Or ask more questions. This is not intended as political commentary, but it is also not analysis. Rather, its thought. Or better yet, a challenge to all of us to think beyond our politics – whatever they are. To explore whether bias is creeping into our own work when we set to with our cup of coffee and keyboard each morning. How would we treat this situation as a US company? Would we/ or do we treat it differently as an organization outside the US?
Since taking office, the administration has engineered a marked shift in US leadership. A move away from accepted norms and redlines of political power, changes in perceptions and dealings with US allied and non-allied countries has brought us to a new and very different foreign policy than the US has followed under previous leaders. And not all of it has been a negative change, in fact there is an argument to be made that some of these changes were badly needed to break stalemates over old issues. But, the president of the world’s current superpower has also been accused of opening himself up to the prospect of blackmail by adversarial foreign powers, spoken derisively of perceived political challengers on both sides of the aisle, engaged in name-calling with foreign leaders and alternatively praised authoritarian rulers while speaking, at times wistfully, of the authoritarian controls they enjoy. Where diplomacy and backroom discussions between the US and world leaders previously led to restraint from human rights abuses – or at least significantly lower profile abuses – these discussions, or perhaps lack of those discussions and diplomacy, now seems to have led us to a place of emboldened dictatorial behavior. Does this lie in the more transactional approach of current US leadership? Where previously US foreign policy and aid money was attached to more conditionals and more diplomacy, today it appears less interventionist and attached to only a few, inconsistent ideologies.
Over the course of its post- World War II reign as one of the world’s two superpowers – and as the only superpower in the post-Soviet world order since the 1990’s, embracingly or reluctantly or both, the US was often been viewed as the world’s police force and center of gravity for good governance. Successfully and unsuccessfully, the nation has been a key provider of aid, it has (yes, selectively) contained dictators, spoken out against human rights abuses and borne an overly proportional role in defense alliances such as NATO. Its domestic market has buoyed the global economy and its role in advent of the internet has connected industries, academia and people from major population centers to far flung rural corners of developing nations, bringing to bear today’s new, data-driven industrial revolution. As a result, foreign leaders have often been forced to consider consequences of their actions, whether against their own population or their neighbors. The US could not be everywhere at once, nor did every malicious action interfere directly with US interests. But consequences it could impose were at least a consideration, thanks to US interventionist policy that projected hard and soft power far beyond US borders.
Today, how serious are these considerations by foreign leaders? Are they still a serious concern that impose a deterrent effect? And perhaps, even if we disregard a direct effect, how do these events – seemingly ordered by governments that are often our business and government partners in various endeavors – impact our investments? Our ability to continue to work in these countries, with these government partners? Will this new world order endanger our personnel by giving them less protection from corrupt governments and security forces?
Let’s simply take a look at some of the facts.
- In March, Russia resumed targeted assassinations of opponents in the UK, when alleged Russian GRU officers poisoned former Russian spy Sergei Skripal and his daughter Yulia in Salisbury. The last time Russia committed such an attack was in 2006, while the US government and populace was consumed by a global war on terror and deeply committed to ongoing wars in Iraq and Afghanistan.
- In the last year, China has approximately doubled the size of internment camps where it incarcerates its ethnic Uighur population in effort to conduct “re-education,” attempting to convert Chinese Muslims from Islam to atheism and Chinese Communist Party-endorsed values.
- Earlier this month, Meng Hongwei, president of Interpol and Chinese citizen, returned to China and has since disappeared. Meng’s disappearance, though suspected to be the result of ongoing corruption investigations against Chinese officials, draws a bright spotlight on China’s secret detention program, as used in the case of China’s most internationally visible law enforcement official. Meng’s detention follows a four-month detention of high-profile Chinese actress Fan Bingbing on tax evasion allegations.
- In early October, Saudi journalist and prominent critic of the ruling family Jamal Kashoggi walked into the Saudi Consulate in Istanbul, Turkey and was killed by Saudi officials. The killing, responsibility for which has been not-so-deftly deflected by Saudi rulers, comes during a period when US-Saudi relations have been at least as close as ever.
- In the Middle East, Asia and Africa, dictatorial leaders have increased their war on journalists and press outlets, decrying news that portrays them in a negative light as “fake,” and in many cases jailing them or worse.
- Last week in Nigeria, the Nigerian military posted a video of the US President discussing shooting people on the border who would throw rocks at US border patrol agencies. The video was in answer to criticism over the military’s decision on Monday of that week to fire on Shiite protesters in the capital, killing six.
- Meanwhile, countries across Europe – the UK, Germany, Poland, Sweden and others – are experiencing a rise in influence of far right-wing political groups, activists and extremists that are gaining political ground through parliamentary seats won through elections. Much of the recent rise of nationalism across Europe has correlated to the rise of similar sentiment in the US, suggesting at minimum a tangential relationship.
Are these actions the result of foreign leaders’ perception of changed US leadership? Or would they have happened anyway? If they are, how does this change our assessment or prediction of future foreign leadership decisions and resulting risks to our organizations? While there was a time organizations may have said “that has nothing to do with us,” most companies can say that no more. Importantly, most don’t want to. If the Khashoggi case illuminated anything for the business world – it was the tangible political and financial risk associated with gross human rights violations – even when those organizations have no direct involvement and would never sanction such actions.
So, is the world today really experiencing more of an “each to their own” climate than it has in recent history? And how much of that is down to changes in US leadership? Historian Robert Kagan calls this the international “jungle.” The world before the “liberal world order” – pre-World War II. A world where leadership based on good governance is absent and strongmen prevail. If the US no longer wants to take on that leadership role, who takes it up? Or do we return to the era of every nation for themselves? And if so, how does that change the boundaries of countries behavior and its impact on our people and organizations?
As we have previously posited, when writing on domestic politics, it is sometimes useful to distance oneself from the most polarizing aspects of the issue – in this case, that often means speaking less directly about polarizing personalities – whose mention can distract us from the information and analysis we need to provide to decision makers. But in this new international order – with US decision-making less predictable and in some cases more immediately impactful on other global leaders decisions its important to ask what we may be leaving out of our analysis – and to chance – if we are tiptoeing around the topic or ignoring it altogether. If it wasn’t our country, would we leave it out of our analysis as a major data point? How do we approach it with as little bias as possible? How do we look objectively at an administration that virtually no one on the planet is ambivalent about?
It’s a tough nut to crack, and we suggest doing it with structured thinking, analytic tools that can help you understand your own bias and with counterparts with perspectives that differ markedly from your own. But to leave these questions unanswered is to create a serious blind spot for the future of our organization and the world.
Intelligence Analysis Intern
Emergent Risk International is hiring interns! ERI is a Dallas based risk and intelligence advisory firm. Our business is assisting companies in utilizing intelligence and analysis to better drive their business. We focus on three primary activities:
- Assessment and Analysis: We provide bespoke geopolitical and threat intelligence products to address issues of concern to our clients. These products range from those developed for regular distribution to in-depth new market entry assessments.
- Training: We train intelligence analysts to provide intelligence analysis in a business environment focusing on tradecraft and tools that drive more efficient and effective analysis. We offer a range of in-house and open trainings to address specific levels of experience and need.
- Consulting: We help companies develop and improve their intelligence programs, providing end-to-end support; from assessing needs and providing analysis to recruiting and hiring highly qualified candidates.
Intelligence Analysis Interns will be responsible for helping ERI with a range of research, technology, analytic and administrative tasks to better serve its clients. Interns will contribute to research projects, products and services and will have a role in developing new products for the company.
- Assist analysts by providing structured country research on issues of importance to ERI clients
- Assist in building data visualizations and social media posts
- Assist in developing business leads
- Develop and maintain an awareness of relevant global issues impacting ERI’s primary client base
- Administrative tasks as necessary
Remuneration: This role will be unpaid and run from the beginning of October through December (candidates interested in continuing through the spring semester will also be considered). Interns will receive intelligence analysis training, start-up experience and exposure to other critical professional skill sets. This internship can also be taken on for course credit with the permission of a candidates’ institution. Successful candidates will work out of our offices in downtown Dallas 15-20 hours per week. Some exceptional candidates may be considered for remote work.
Experience: The right candidate will possess most or all of the following qualifications:
- Excellent writing skills
- In final year of undergrad or has finished BA/BS degree
- Foreign language capability
- International relations, political economy, economics, development, political science or other related fields of study are preferred
- Working knowledge of information technology, social media and tech related trends
- Experience living or studying abroad
- Strong academic record
- Self-motivated and able to manage time effectively
- Strong work ethic and commitment
Application Deadline is September 30. Please send your resume, cover letter, and a recent writing sample to: firstname.lastname@example.org
We live in a world exquisitely dependent on science and technology, in which hardly anyone knows anything about science and technology.
When I talk to students or my interns about careers, one thing I tell them all: they must possess an above average understanding of cyber and technology. Inability to process the meaning and implications of technology on the geopolitical landscape will make it impossible to grasp the future trajectory of global security, inter-state relations, economics, politics and security.
For years, tech oriented analysts warned of quickening convergence between cyberthreats and traditional security threats – be it crime or the convergence of geopolitics, war, diplomacy and cyber warfare. Today, cyber and physical threats are becoming indivisible. Consider the rise of ISIS – which would not have taken shape as quickly or broadly without the internet – and especially social media. The protests of the Arab Spring, which, aided by social media, rose faster and pushed the Middle East further in a shorter time frame than anyone would’ve thought possible. And criminality, from human trafficking to drug smuggling to the most basic of crime: credit card fraud. You are more likely to have someone steal your credit card information virtually (or purchase it from a dark web site), than you are to be mugged on the street.
Cyberwarfare and technology form a major facet of the strategy of state and non-state actors. “Cyber” is nothing more than another tool used by a range of geopolitical and criminal actors to influence an outcome by force. When we discuss North Korea, for example, most reporting highlights developments in its missile program and the threat of traditional war. Much less is said about covert cyberwarfare that has purportedly been aimed at North Korea’s nuclear program for several years now. Even less is said of North Korea’s cyber capability and the attacks it has reportedly carried out against governments and major multi-national companies. Or the country’s purported role in the WannaCry virus that surfaced earlier this year, fashioned out of leaked CIA cybertools. None of this is a secret, but it is repeatedly left out of geopolitical analysis that examines how scenarios between North Korea and the rest of the world might unfold.
We cannot credibly assess future scenarios without taking the cyber capabilities of the actors – state or non-state – into account. Likewise – it is increasingly hard to do the opposite as well. That is, credible cyberthreat analysis cannot be undertaken without consideration of the geopolitical and security aims of the actor. Is the attack part of a broader strategy to attack our country or organization? Is it being carried out by a state or non-state actor? Is there a motive that stretches beyond money? Who are they connected to? And yet, we continue to separate our analysis into the cyber and the non-cyber – almost guaranteeing that we are not appreciating the whole picture.
Ukraine is the most obvious example of how cyberwarfare has become an integrated part of political and conflict strategy. Its become a virtual blueprint for what modern hybrid warfare looks like. It is the future of conflict, but it remains relatively unappreciated outside of a few well-informed circles of the geopolitical and cyber community. The Petya “not Petya” attacks in late June are one of the most recent examples. While ground warfare continues in and near separatist controlled Ukraine, an ongoing disinformation campaign has persisted for years. And critical infrastructure has been hit repeatedly, not by bombs (though that has also happened), but by cyberattacks. The Petya attack – while not spreading as far as WannaCry – impacted trains, airports, banks, electricity and several other types of critical infrastructure simultaneously. To that point – simultaneous attack of several types of critical infrastructure had not been accomplished by a malicious cyber actor, ever. The attack, disguised as an accounting software update, which was then disguised as a ransomware attack was actually created to wipe out hard drives, with no recovery. In addition to taking critical infrastructure of the intended recipient offline; it spread to global business, bringing supply chains and logistics to a grinding halt. Many affected businesses still have not fully recovered and will suffer significant losses from the recovery expense for Q2 this year.
While the probable state actor was identified quickly, given that Ukraine has suffered virtually non-stop cyber attacks for the past four years, it may have taken longer to make this connection had the attack targeted a country or company with a less clear cut adversary, potentially making mitigation and defensive measures harder to implement.
In order for us to improve the way we understand the world we have to better understand those things that may lie outside our expertise or comfort zone. Facebook’s Head of Global Security, Alex Stamos, made a similar point to the cyber community at the 20th Anniversary of Black Hat, an annual conference dedicated to hacking. In Stamos’ words, the hacking community has to become more diverse and inclusive. This is not just for diversity’s sake, but in order to better understand the implications of hacking, who it harms and how it harms them. It is estimated that the world will need around 2 million more cybersecurity experts in the next two years alone. Meanwhile, academics, intelligence professionals, business leaders – and especially governments – need to get much smarter about cyber, rather than dismissing it. Until we do, our analysis will be incomplete.
- Disinformation is proliferating and intensifying threats, seen and unseen.
- False narratives propagated by state and non-state actors utilizing disinformation can ruin corporate and personal reputations, threaten business continuity, cause or intensify conflict and drive deep ideological fault lines.
- A recent study of computer generated propaganda and disinformation revealed that disinformation is having a strong impact on public opinion in some countries.
- A lack of public understanding of the depth and sophistication of disinformation operations is leaving governments, organizations, and individuals vulnerable to cybercrime and false narratives that undermine sound decision-making.
- Tools, information, and counter-measures are emerging, but education is the most effective tool we have against disinformation.
Back in January, not long after the new administration took office, Starbucks made a pledge to hire 10,000 refugees. The move quickly became a political issue with folks on one side applauding the effort, and on the other, angry about it.
What drove some of the anger however, was, at best, misinformation (unintentionally misleading info), and possibly disinformation (intentionally misleading with a goal to manipulate public opinion/ perceptions), via several viral memes. One of the most visible memes said: “Hey Starbucks, instead of hiring 10,000 refugees, why don’t you hire 10,000 veterans?” But here’s the thing: Starbucks has had a goal to hire 10,000 veterans through their very successful military partners program since 2013. And while there were other factors at play too, the disinformation amplified the issue, which quickly lodged itself in a partisan fault line. Starbucks handled the issue, in part, by drawing attention to their long running veteran’s program. In addition, veterans who work with Starbucks came to their defense. But the story is illustrative of a growing problem. Fake news and disinformation travel at the speed of a text message or a twitter post and its impact can damage reputations – and worse – catalyze security and major geopolitical events.
As we’ve highlighted in a previous article, disinformation is NOT new. But it is an increasingly potent force driving public opinion or catalyzing crises amplified by its use with other mediums like social media, malware and increasingly popular alternate media outlets. Technology, speed and open access to low cost tools to disseminate information instantly and globally allow anyone: state and non-state actors, politicians, companies and ordinary people to disseminate and amplify disinformation with the right combination of tools.
Disinformation is shaping public opinion
A new study from Oxford University discusses how technology and social media contribute to the spread of disinformation and propaganda. The Computational Propaganda Research Project, found that propaganda and disinformation spread via social media is being utilized in multiple countries around the world to successfully shape public opinion on political issues, especially related to referendums and elections. Moreover, it found that highly automated social media accounts (also known as “bots”) were responsible for as much as 45% of all Twitter traffic in some countries. The study took a look at recent events in Canada, Russia, Brazil, China, the US and several others to understand the impact of social media – especially automated social media, on public opinion. Particularly interesting findings from the paper included:In Brazil “bot networks and other forms of computational propaganda were active in the 2014 presidential election, the constitutional crisis, and the impeachment process.” These included “highly automated accounts supporting and attacking political figures, debate issues such as corruption, and encouraging protest movements.”
- In the US, “Twitter bots … reached highly influential network positions within retweet networks during the 2016 US election. The botnet associated with Trump-related hashtags was 3 times larger than the botnet associated with Clinton-related hashtags.”
- In Russia, over 45% of all social media activity is generated by bot nets. Nearby “Ukraine is the frontline of experimentation in computational propaganda, with active campaigns of engagement between Russian botnets, Ukraine nationalist botnets, and botnets from civil society groups”
In simple terms, bots are being utilized to pump out information, usually false and misleading, at alarmingly high numbers in some countries. The use of bots to increase the visibility of disinformation across the internet plays into several biases including availability bias and confirmation bias, and has proven highly effective at shaping public opinion. That impact affects everything from referendums and elections, to social and political stability, to consumer brand preferences, to whom we trust online with sensitive information, to our reputation and security.
Disinformation is driving geopolitical events
Disinformation has the potential to catalyze diplomatic tensions into much larger geo-political situations. Particularly in countries where hair-trigger response to threats are common (Israel/Palestine, North Korea, South Korea, etc), disinformation at the right tempo and time could touch off a major conflict before there is time to set the record straight. Two recent examples include an article in a Bahrain newspaper – planted disinformation that catalyzed the still-festering Qatar blockade and a fake article about Israel and Pakistan.
In Bahrain, the offending article may have been a catalyst (and a convenient excuse) for GCC countries to cut-off diplomatic relationships with Qatar, though it was by no means the cause of the dispute. The crisis has created expensive logistical problems for businesses in the region and substantially complicated transnational relationships across the Gulf, US regional relationships and counter-terrorism efforts there.
In another recent incident, the Pakistani Foreign Minister tweeted a nuclear threat at Israel after reading a fake news piece on Israel’s response to reports that Pakistan was getting involved in Syria.
Disinformation is driving real world security events
Disinformation, misinformation, and outright fake news are causing real world security problems. Most people will now be familiar with the fabricated news story that circulated in the final days of the election about a certain candidate running nefarious activities out of the basement of a pizza restaurant in Washington DC, Comet Ping Pong. The fake story, which originated on Twitter and quickly spread to Reddit, back to Twitter and on Facebook, became the basis for a real world security event when a man named Edgar Welch showed up at the Pizzaria with a rifle in hand. Only then did he discover that the restaurant didn’t HAVE a basement, let alone any politicians involved in human trafficking there.
Long before the election, similar fake stories were generated in an attempt to create more panic over the Ebola crisis, Ferguson and a completely made up event about a chemical plant, owned by Colombian Chemicals, exploding in Louisiana on 9/11.
The Colombian Chemicals case, in particular, demonstrated how such a hoax can cause disruption to a company, local emergency services and propagate disinformation through the use of botnets (though this particular attempt was not as successful as the perpetrators intended).
These cases show obvious links between disinformation and the actual event, but more cases can undoubtedly be found by digging into the annals of radicalization. Cases exist across the political and ideological spectrum highlighting the selective disinformation and propaganda that radicalized individuals have consumed in the process of becoming radicalized.
Disinformation can lead to major IT security threats
Malicious links are often found in hyper-partisan click-bait publications that trade in fake news, disinformation, hyperbolic and polarizing headlines or advertisements created by botnets. In a recent case, a Defense Department employee clicked on a link about vacation packages tailored to his interests in his twitter feed. This link downloaded malware that allowed a server in Russia to take control of his computer and Twitter account. That same malware was sent to at least 10,000 DoD employees.
Like phishing attacks, these campaigns trick users into clicking on them, based on a sense of trust in the friend who shared the post, or the targeted nature of the information which is based on their specific social media behavior. According to government sources, Twitter has the most malicious links embedded in disinformation and other types of posts due to the large amount of botnets active on the site and sharing the information at a high volume. The problem has also been identified in smaller volume on Facebook, which has been taking public steps to address disinformation and fake news proliferating on the site.
Disinformation may be driving some of your most important decisions
Distinguishing between what is real and what is fake is getting more difficult. Even more worrying is that gray area in between where information is intentionally altered, taken out of context, or twisted to support a particular narrative. Over-time these misconceptions become embedded in political discourse and become part of our basic assumptions. This drives poor decision-making and in the extreme; dangerous rhetoric that dehumanizes and encourages violence against people who do not agree with a particular point of view. Whether it is viral memes suggesting that police officers are violent or media outlets that portray peaceful protests as being carried out by “violent criminals.” Disinformation and propaganda, in extreme scenarios fed numerous genocides that took place during the 20th century, whether religious, ethnically, or politically driven.
In a less dramatic – but worrying – scenario, Russia has targeted multiple demographics in the US including US military personnel, through the use of fake “patriotic” websites and Facebook groups that plant disinformation and fake news to influence their behavior and loyalties.
In aggregate, continued exposure to disinformation affects consequential decisions, from split second battlefield decisions to major policy initiatives fed by hyper-partisan narratives. But it also feeds everyday decisions, like who we choose to hire, whether we interpret a person’s actions as a threat based on the way they look, or some aspect of their character, and how we respond to that threat.
Falling behind on information warfare
Disinformation – though as old as time – has been harnessed in the information age to amplify social issues, increase distrust among disparate groups of people and drive wedges between previously unified groups. While some countries have been wise to this for many years, in the US, the phenomenon has caught many off-guard, leaving us more vulnerable than many realize. The US public had more awareness of disinformation operations during the Cold War, but the fall of the Soviet Union and the shift in security focus to terrorism and threats from non-state actors dulled the public’s understanding of the topic. Meanwhile, disinformation tradecraft (particularly in Russia and Eastern Europe) became more sophisticated, automated and easier to exploit. This was most dramatically seen in the recent US election cycle, but has been occurring throughout the last decade and particularly since the US and EU levied sanctions against Russia in 2014 following annexation of Crimea.
Managing Pandora’s Box
As with every problem that vexes our society, there is innovation and ingenuity at work to solve these problems. And though there is no way to close Pandora’s Box again, there are ways to lessen the impact of disinformation. Key among these is educating ourselves, and those around us, about how our biases make us prone to falling prey to disinformation. In addition, there is a growing body of literature and study on the topic that can help us understand what is occurring, when it’s occurring and how to address it. We can also familiarize ourselves with some of the tools (Facebook, Google) that are emerging to address this problem; from initiatives to develop artificial intelligence solutions, to academic research, to the use of trusted data sources to refute questionable claims. There are good reasons to be hopeful about our ability to manage the threat that disinformation creates, but the fight against the use of technology to mislead, misinform, and drive wedges between people is particularly urgent. Especially in an age when mass communication happens at the touch of a button.
Meredith Wilson is the Founder and CEO of Emergent Risk International, LLC. Find out more or subscribe to our newsletter here.
Sometimes the US intelligence community gets it wrong, but often, they get it right. And sometimes, they get it really right. We featured the excerpt below in our summary piece on the ODNI threat assessment back in February – highlighting its importance for those who provide analysis and information for decision-makers.
“Future cyber operations will almost certainly include an increased emphasis on changing or manipulating data to compromise its integrity (i.e., accuracy and reliability) to affect decision-making, reduce trust in systems, or cause adverse physical effects. Broader adoption of IoT (internet of things) devices and AI—in settings such as public utilities and health care—will only exacerbate these potential effects… cyber actors, who post disinformation on commercial websites, might seek to alter online media as a means to influence public discourse and create confusion… (pg. 2)”
As the perfect storm that is the US Presidential election is upon us, we are facing a global problem of how to address veracity and credibility of sources, not just for analysts and researchers but for the general public; who ultimately make voting decisions that set the course for US government foreign policy towards the rest of the world.
The proliferation of information on the internet has given rise to an avalanche of disinformation. At the same time, disparate groups across political, cultural and idealist-driven divides increasingly disagree on what constitutes credible information. This creates problems for analysts and decision makers as we grapple with utilizing the information that most accurately reflects the reality facing our business or organization. Below we outline some thoughts and resources for addressing disinformation within your organization, analysis and decision-making:
Agree on a common understanding credibility.
Like many terms in the geopolitical-security world, we sometimes assume that when we discuss credible information, that we have a common understanding and acceptance of what constitutes a credible source. Even within small organizations, opinions on credibility often vary markedly; informed by each individuals’ life experiences and personal biases. For example, one analyst could be assigning high amounts of credibility to only sources that are politically left leaning, while another may be doing the same with right leaning media. (In reality, we hope analysts are looking at sources across the ideological spectrum to understand what their customers may be reading too). Having team discussions about how your team defines credibility – and even utilizing a simple credibility ratings system for information and human sources – like the one used by the US intelligence community – can go a long way to ensuring good communication, use of high-integrity sources and internal understanding of whats credible and what may not be.
Emphasize the importance of integrity of reporting and information over speed of reporting.
While there are notable exceptions to this rule, in general, we should rarely be focused on being the first to report breaking news information to our leadership. There are so many free and paid services that do this already – and some that do it really well. The role of the intelligence and analysis function is to make sure that the organization has the most organization specific, relevant, high-integrity information and analysis to ensure high-quality decision making. Some good resources for understanding the integrity of online sources and journalistic guidelines and standards can be found here, here, here and here. Teams can learn a lot through reviewing these materials, both about how they can better assess the integrity of sources, as well as how to evaluate other organizations and the sources of information they provide.
Develop an understanding of disinformation.
While Russian propaganda is receiving the most attention at present, it should be noted that disinformation campaigns are as old as espionage itself and have been utilized across the world. What has changed is how disinformation is disseminated and its exceptionally wide and quick propagation across the internet – which often makes it difficult to counter before it has become accepted as true. The EU, and increasingly, the US, have been especially affected by propaganda campaigns since sanctions were levied against Russia in 2014 over Ukraine. The EU has even created a task force responsible for educating the public about disinformation and highlighting disinformation in the press.
Exercise extreme caution in utilizing leaked materials of any kind.
Leaked documents, such as those released by Wikileaks, Edward Snowden and other actors, can provide insight into how individuals and organizations communicate. Unfortunately, it is also exceptionally difficult to identify whether the information in these documents has been tampered with, is outright false or taken out of context. In our work, the most important thing we can do related to leaked materials is ensure that our personnel and organizations are not in danger as a result of information in purported leaked documents.
Understand the WHY of fake information.
While much of the above-discussed disinformation is designed to sow confusion and divisive politics, there are many types of disinformation and fake information out there today. These do not all serve the same purpose. For example, a large body of fake information is driven by the pursuit of web advertising revenue; fake news sites that publish alarmist headlines in an effort to get readers to click on the story. Many of these are so poorly written that their veracity is easily questioned – but not all. There are also fake news sites that are generally devoted to providing entertainment (also to bring in advertising revenue, but overtly). The most well known among these is The Onion; but lesser known satire sites can get picked up by less savvy readers and quoted as fact. By learning the motives behind fake information, it is often easier for analysts to divine fact vs fiction and good sources vs bad ones.
Stay on top of the changing information landscape
Finally, in an information environment that is changing by the minute, ensure that your team’s remit includes regular reviews of their sourcing choices and an assessment of their personal biases towards information. Keep them focused on utilizing high quality information from credible government sources, think tanks, academia, and news sites with a record of integrity and accurate reporting. Ensure an understanding of best practices in the use of social media and ground-level sources. And insist on independent source verification of all reported information, including that which comes in from information vendors’ everyday. After all, our analysis is only as good as the credibility of the information that it is based upon.
“The world is much more uncertain and volatile than it has ever been before. And that is because of some factors coming together now that have never come together before. And they amplify each other. You have a totally different world order and we struggle with that enormously” Paul Polman, CEO, Unilever – comments made in interviews for “Thinking the Unthinkable; A New Imperative for Leadership in the Digital Age”
Intelligence professionals need to be fundamentally forward looking in how we approach our roles as guardians of our organization’s resilience – especially as it relates to major external shocks. With potentially disruptive US elections approaching and a host of hot button geopolitical issues on the table – the economy and global security environment are ripe for shocks. Excepting political risk created by the elections, most of these issues exist without the US Presidential elections as a factor. What makes them especially worthy of our attention right now is their potential to catalyze actors to provocative actions with intent to influence outcomes, capitalize on US distraction with domestic politics, or intimidate allies and other foreign actors. All of these may increase political and security risk for multi-national organizations as foreign governments react to or seek to hedge their risk based on candidate’s foreign policy and trade platforms.
While it can be hard (and politically touchy) to train leadership attention on strategic impacts of these hot button issues, prepping decision makers for possible shocks and discussing mitigation measures in the event of a major unanticipated event is a key reason our roles exist. This is an opportunity for risk intelligence to add real value and depth to their organization’s risk management capacity.
With that in mind, here are just a few of the issues we’re addressing with our clients as the fall approaches:
Political risk from US elections impacting US multi-nationals overseas
For the first time in decades, political scientists and financial markets anticipate substantial political risk associated with the upcoming US elections. For multi-national organizations, the risk associated with foreign government perception, potential sharp changes in US foreign policy, and foreign reaction to perceived risk to their interests is sizable. From the impact on defense and trade agreements to increasingly punitive regulatory environments to increased anti-American sentiment, it’s important to consider which way the winds are blowing and begin thinking about ways to mitigate these risks in this increasingly unpredictable election year.
Simmering geopolitical challenges
Last week China announced it would deploy its first nuclear submarine days after the US announced it was lifting a decades old arms embargo on Vietnam. In a climate of continual small escalations in the South China Sea, this was not as alarming as perhaps it should’ve been. Meanwhile, North Korea continues with bellicose rhetoric and aggressive weapons technology development. Russia’s unpredictable foreign policy may also worsen in response to the US missile shield in Europe or in the likely event that sanctions are extended in July. Further agitations designed to provoke response from Presidential candidates shift the general tenor of the election, or in anticipation of a muted response from a distracted US political establishment should be anticipated on at least one of these fronts. While these are high level geopolitical issues, all of them have real world impacts for the security, political and regulatory environment for US companies operating abroad.
Global economic shocks
The 2008 financial crisis completely changed the trajectory of the political conversation ahead of the 2008 election and shifted the fortunes of millions of people around the world. As the US elections approach, increasingly erratic US and overseas markets may be the norm, depending on who is polling ahead in the race, whose voice is being heard the loudest and how that bodes for economic growth at home and abroad. With respect to Chinese markets, no matter how we dice it, enormous amounts of the global economy – and as an extension global risk – are wrapped up in a market that is anything but transparent. Election season could exacerbate this risk OR a market collapse could impact the outcome of the elections. While the question of how a collapse in the Chinese market would reverberate is an overwhelming one, we need to seriously consider US business resilience to such an event.
Terrorism, extremism, and technology enabled catastrophic events
As has occurred in the past, interest in pulling off major coordinated attacks ahead of elections is likely to rise within extremist organizations possibly with intent to influence the outcome. While the nature of terror attacks makes it hard to plan for, it is worth the time to assess organizational readiness and resilience to catastrophic attacks in the coming months. Particular attention should be paid to large events – especially technology enabled events – that would cause disruptions to critical infrastructure such as electricity, water, food supply, or major logistical hubs. A chaotic election year offers a potentially irresistible stage for those who wish to do catastrophic damage and disrupt major economies.
Its not what you know, it’s how you analyze it
Our approach to these problems – because they so dramatically impact the analytic outcome – is as important as analyzing the issues themselves. Here are a few thoughts on ways to approach what may be a very touchy political topic within your organization.
(1) Choose the most relevant issues
A critical examination of strategic issues that may impact your organization shouldn’t be an individual scattershot exercise, nor should it be based on gut instinct. Take a systematic approach to the risks that are most relevant to your short and medium term business model with other company professionals with complimentary roles. It may be helpful to draw up a list of company relevant issues and actors that are sensitive to major changes in the US electoral environment – including countries that have already weighed in on US elections, extremist actors looking for a high profile stage or with definable interest in seeing one candidate win over the other, or actors with sizable economic interest at stake.
(2) Introduce issues gradually
Rather than writing a paper on potential shocks with no previous introduction to the issue, start sensitizing potential strategic issues slowly through other mediums first. A daily or weekly product is a great place to start introducing issues of concern and to briefly highlight potential risks for the organization. Another method is through one on one discussion with others who may have an overlapping area of responsibility and a different point of view on the subject. Depending on your organization’s receptiveness, you could also conduct an internal poll on how people in your company view risk associated with these issues – gauging both awareness and internal concern.
(3) Consider your bias
Consider the organization’s and your own bias about potential outcomes and look for ways to correct for it. On election-related issues, our biggest blind spot may boil down to our inability to be objective about the candidate field. Beyond personal feelings about the candidates, US-based risk intelligence analysts are often not used to looking at political risk and geopolitical risk associated with US politics. As a result, our bias may be higher and analysis more inclined to downplaying potential outcomes than it might be if we were looking at a similar issue in another country. The first step is to be aware of it and willing to challenge your own assumptions. Then, there are many ways to help us reduce bias, including (shameless plug alert!) some that we will be working through at our July mini-training.
(4) Make sure you’re asking the right question
Too often companies approach geopolitical issues with the immediate impact in mind and if they don’t discern a direct impact, they move on. But there are serious business continuity disruptions and consequences that may not be immediately apparent with the application of the simple question: How does this impact us? In Asia for example, secondary and tertiary supply chain risks are acute with so many companies’ supply chains inextricably tied to the region. So what is the right question? Is it: How would a Chinese economic crash impact our company? Or is it rather something else, like: How resilient is our supply chain to a major economic crash in China and beyond? Or: How many single source suppliers do we have in this region and what are the major shocks we need to be thinking about that could impact our business resilience here?
Keep your mind in a strategic place
Businesses are so busy doing their business, that, without leaders who are intentional about examining strategic risks, many of these issues go unnoticed until mitigation is no longer an option. Thought leadership on strategic shocks is a perfect role for risk intelligence professionals. Regardless of other curve balls this election season throws us, it will pay dividends to get ahead of the issues. Now is the time. Our ability to add value through intelligence and analysis will decline as the elections near and the opportunity for building resilience and mitigation strategy disappears altogether.
With the refugee crisis and major problems with extremism, EU countries are moving politically closer to anti-immigration and anti-unity agendas leaving the Schengen agreement on shaky ground.
Here are five areas that will be impacted by a long-term breakdown in the Schengen Zone:
Security: Border controls may not make Europe more secure. While possibly keeping out would-be bad actors without EU passports, much of the terror threat emanates from citizens within its own borders. Border closures may also push refugees further into the black market – jeopardizing their safety and increasing demand for human-traffickers throughout Europe (which will in turn increase scrutiny of cargo transported across borders = more delays, LONG delays). With respect to migrants, build-up of refugees at closed bordersheightens the potential for security incidents at border crossings – already a frequent problem. In an effort to address the border build-up, last weekend the EU and Turkey reached an agreement to send all refugees and migrants arriving via the Greek Islands back to Turkey, in exchange for monetary support for housing them. To say its not going well is an understatement: Humanitarian organizations are boycotting the measure as an unrealistic solution that will substantially worsen the lot of refugees fleeing Syria.
Trade: Trade among members of the European Union has grown dramatically since the single market was established in the late 80’s – from €800bn in the early 90’s to €2.8 trillion in 2012, according to the European Commission. Reinstatement of borders, even temporarily, decreases the volume of trade within EU member countries. Businesses incur substantial financial costs that, over time, may result in job losses and increased prices (with businesses passing increased costs on to consumers). Additionally, as one of the largest trading blocks in the world, the EU has become an economic powerhouse. A break-up of Schengen could unravel the EU’s major trade agreements and progress on the Transpacific Trade Investment Partnership, should it substantially slow exports, imports and businesses’ ability to create and export product.
Logistics: In the last six months temporary border control measures were introduced by Germany, Denmark, Sweden, Austria, France, Hungary, Serbia and Slovakia. This has negatively impacted the transport of goods across borders, slowing supply and distribution channels and raising transportation costs for companies with cross-border supply chains. According to industry estimates, the cost for an hour delay on the border per vehicle is around €55 ($59). The consequences of border delays are even more critical for perishable goods and might include the loss of a whole cargo. A strike in Calais last summer that led to the closure of the Channel Tunnel could be an indicator of the kind of supply chain disruption that could accompany substantial delays at European borders.
Labor Mobility: According to estimates, 1.7 million Europeans commute across borders daily for work, and trade in labor services has grown considerably with the free travel arrangement within the Schengen zone. Absence of border controls has increased the efficiency potential of labor markets, as Europeans take advantage of employment opportunities in areas and industries outside their home country. With border controls in place, travel time to work is likely to increase for cross border commuters, and might eventually make working in a neighboring EU country impossible. For companies this wouldincrease recruitment costs and potentially limit access to skilled labor.
Loss of Business: EU experts estimate that the loss of tourism revenues would be substantial. This has already happened in some southern regions of Bavaria, Germany where the country introduced border controls on the Austrian border in September. Tourism revenues here have dropped 40% since September. Depending on the outcome of the current EU agreement with Turkey, this may also increase the number of migrants in camps, like Calais and those throughout Greece, where migrants are stuck at border crossings. In addition to the human toll, this problem has economic ramifications for “host” cities. In Calais, for example, the city has lost around 40% in trade and tourism revenue since the escalation of the migrant crisis last summer.
Death by 1000 Cuts
Because the EU knows its value, Schengen is unlikely to be officially cancelled anytime soon. If the bloc does go down, it will be death by a thousand cuts, with each country erecting more border controls based on their own perception of their security and their ability to handle migrants and refugees, etc. This could lead to a MORE uneven approach to security across countries andfewer mechanisms for oversight and accountability. And, the bad guys will still probably find a way to slip through. In the meantime, the EU will need to work hard to regain the public’s confidence in its ability to mitigate problems causing instability, insecurity, and lack of unity over the EU and Schengen. After all, Europe remains an overwhelmingly safe place to live, visit, and do business. Businesses, governments, and travelers should keep this front of mind in the coming weeks and months. To not do so may lead to rash decisions that will only increase political, economic and security risks in the EU.
This post appeared in the Emergent Risk International monthly brief on March 24, 2016. It is a collaborative piece written by Julia Mitusova and Meredith Wilson for Emergent Risk International.