The U.S. vulnerability to cyberwar

Glenn Reynolds writes in his USA Today column about last week's

successful seizure of a vast trove of federal personnel records, reportedly by the Chinese.

And then it got worse. "Hackers linked to China have gained access to the sensitive background information submitted by intelligence and military personnel for security clearances, U.S. officials said Friday, describing a cyberbreach of federal records dramatically worse than first acknowledged."

And there are lessons in this debacle, if we are willing to learn them.

Aside from regular federal personnel records, which provide a royal route to blackmail, intimidation and identity theft for present and retired federal workers, the hackers also stole a trove of military and intelligence records that could be even more valuable.

...this trove of information is perfect for "fourth-generation warfare," in which conventional strengths are bypassed in favor of targeted attacks on a stronger nation's weaknesses. With this sort of information, China will find it much easier to recruit agents, blackmail decision-makers and — in the event of a straight-up conflict — strike directly at Americans in the government, all without launching a single missile.

That's why experts are calling this security breach a "debacle" and "potentially devastating." Some are even calling it a "cyber Pearl Harbor."

...The United States is highly vulnerable to cyberwar, and not very good about defending against it, especially in the lame-and-inept government IT sector, which has not distinguished itself in terms of competence. (Remember HealthCare.gov?)

For the rest of us, the lesson is that we should probably think twice before entrusting the federal government with our own information. Because if the feds can't protect their own sensitive data, on behalf of people who work for the federal government, how good a job are they likely to do on behalf of the rest of us mere citizens?

Read more here.