Let me lay out some facts, first, to make my following point more clear:
- Political relations between the United States and foreign governments who weren't necessarily US-friendly have been strained at best recently, and to the point of breaking ties at worst (I cite Russia, China, and various other US foreign policy failures)
- Political tension over military buildup in the Middle East is escalating to what some call a mini-Cold War (Reference: http://www.themedialine.org/news/news_detail.asp?NewsID=19240
- Politically apathetic nations are [co-incidentally] currently a hot-bed for malware developers
- China is writhe with spammers and malware writers (Reference: http://www.vnunet.com/vnunet/news/2200948/asia-generates-spam-torrent)
- Russia becomes a safe-haven for malware writers (Reference: http://searchsecurity.techtarget.com/originalContent/0,289142,sid14_gci1275987,00.html?track=NL-102&ad=606028USCA&asrc=EM_NLN_2382688&uid=1594988)
- Investigating, identifying, and capturing "bad guys" in these nations is unlikely at best, impossible most likely given the government's reluctance to assist the US with investigations and police actions.
Again, this may be completely obvious to you, and I will not disagree. What I am disgusted with is the following:
- The US government is absolutely clueless on digital security and digital asset protection
- The US government and most specifically the current administration (and some candidates for the 2008 Presidential race) are creating a hostile global climate for US-based interests when it comes to security
- No one has been successfully (in my humble opinion) able to put these simple facts together and speak these in an open forum, to the highest heads of state
Unless the efforts to fix this obviously political time-bomb are started soon, we in IT Security are going to be pushing an even bigger boulder up the hill of our daily jobs... this one will be ticking.
Good luck out there.