Between September 2019 and December 2020 one of the largest hacks in American history took place.

The hack was a supply chain attack that targeted multiple US-based companies, such as Microsoft, Intel, Cisco, and United States federal agencies such as the Department of Homeland Security and the Department of the Treasury.

This hack was alleged to have been carried out by a group backed by the Russian Government. During this period a number of computers were breached, the main purpose of these types of attacks are espionage and sabotage. In this case it is believed that the main intent was espionage.

Today information is mainly kept in digital databases, and for good reason. Storing information digitally is both efficient and cost-effective, but we must ensure that we have the proper security framework and apparatus so that we do not fall prey to hacks that could stifle our institutions. In order for this to be done, we will need to give more credence to altruistic hackers, further invest in our cybersecurity infrastructure, and execute an educational campaign, to say the least.

Since the inception of computers and information technology the mechanism has been susceptible to breaches. Nefarious individuals who hack for some sort of personal or collectivist gain have wreaked havoc on the information systems industry for decades. Given this type of susceptibility, several altruistic individuals have stepped up to warn companies and governments of faults and holes in their security apparatus. These good Samaritans are termed white hat hackers. You would think that governments and private enterprise would reward these selfless people who try to inform them of blind spots in their system, but unfortunately, many in the past have taken some sort of legal action against these noble individuals due to them revealing security flaws or some kind of clandestine operation they would rather the public not know.

In order to not disincentivise or scare away people with good intentions, the Government should strive to support and even encourage these individuals. Additionally, the legislative arm should pass laws to protect these types of hackers and whistle-blowers. It would be short-sighted to not take this course of action. However, in order for this system to work to its fullest, the authorities must be fully equipped.

The Major Organised Crime and Anti-Corruption Agency (MOCA) is that authority as it possesses a cybercrime unit. According to the agency, this division carries out cyber forensics, vulnerability assessments, and penetration testing, among other tasks. In the coming years the threat of cyberattacks will grow, and to have an adequate defence the nation will have to invest more. Currently, in the 2022/2023 budget, the organisation was allotted just over $400 million and is estimated to have an increase in expenditures of around 3.43 per cent, 2.13 per cent, and 2.55 per cent over the next three years, respectively.

According to Bank of Jamaica (BOJ), November’s annual point-to-point inflation rate was 10.3 per cent. This shows that these estimated increased expenditures over the next three years will not be enough to keep up with the high inflation environment in which Jamaica, and the world at that, unfortunately finds itself.

We will need additional funding in order to do a better job of staving off the threat at hand. Amendments to the Cybercrimes Act of 2015 must also be passed to protect Jamaicans’ data with the most up-to-date technology, such as utilising blockchain, high-level encryption, and risk control protocols. This could also provide jobs for young people who are well versed in computer science. Regarding jobs, the computer science industry has been one of the fastest growing sectors in the world for the last few decades, we should take this as a sign.

According to the Jamaica Information Service, cybercrime was estimated to cost the world US$6 trillion in 2021 and is expected to hit US$10.5 trillion by 2025. We will need more people to step up in order to have the manpower to secure our digital systems. This means the public and private sector must invest in education, especially science, technology, engineering and mathematics (STEM). They can, of course, do this through scholarships, improvement of school facilities, or even moving the children out of volatile areas on a larger scale. Subsidies for cybersecurity businesses can also be offered once they operate and provide jobs in Jamaica.

Data is a critical asset that is arguably more valuable than oil. It’s the tool that we use to carry out operations on a daily basis. So, as we enter the new year, cybersecurity needs to be encouraged, taught, and executed, and for this to happen we need to recognise this undeniable fact and invest further in our security apparatus.

Without data protection there would be unbounded chaos which would evidently hinder our development in the 21st century as a small island developing state, and that is something we cannot afford. Cyberattacks are a national security threat and should be treated as such. Once we accept this, we will be well on our way in the cyberspace.

Malik Smith is an economics and banking and finance graduate of The University of the West Indies. Send comments to the Jamaica Observer or maliksmith774@gmail.com/@MalikSmithJM.