For decades, cyberattacks were dismissed as nuisances—an IT hassle, a corporate PR problem, a passing headline. But that era is long gone. Cybercrime is no longer a side issue. It’s war.
And we’ve allowed it to escalate without consequence for far too long.
Back in the 1990s and early 2000s, I was part of an international cybersecurity group bringing together government, police and corporate IT together. We had speakers from our government, security and corporate IT and security people. Canada and as far away as Australia sent police and corporate to attend. We saw Royal Canadian Mounted Police as well as updates and attendees from our own FBI, Secret Service, NSA and others.
We warned that corporations should allocate at least 10% of their IT budgets to cybersecurity. We were ignored. We urged aggressive action against state-sponsored and independent cybercriminals. Again, ignored.
We knew, even then, about Chinese black-hat hackers—military-affiliated operatives working with state support. We saw what was coming. And we warned that without consequences, it would only grow worse.
I’ve said for years: if cybercriminals believe they’re safe in Moscow, Tehran, or Beijing, that illusion must be shattered. But instead, we let them find shelter—shielded by hostile regimes like Russia, China, and North Korea. We did nothing meaningful. And the threat metastasized.
Would it have been legally or diplomatically clean to extract or eliminate these actors in their safe zones? Probably not. But the alternative—doing little or nothing—has brought us here: a world where hospitals, schools, and infrastructure are held hostage with impunity.
It would have been cheaper, safer, and more effective to deal with these threats at the source—through covert action, strategic disruption, or targeted renditions—before the damage reached critical mass.
We didn’t act then. We must act now.
💣 A War Without Consequences
Hospitals shut down mid-surgery. 911 dispatch centers paralyzed. Public schools held hostage. Water supplies hacked. Infrastructure destabilized. All of it done remotely, cheaply, and anonymously by actors who know full well the U.S. won’t retaliate in any meaningful way.
They operate from basements in Belarus, cafes in St. Petersburg, office parks in Tehran—often with the full knowledge, protection, or even sponsorship of hostile governments.
Let’s be clear: these are not “hackers.” They are cyberterrorists.
And we’ve allowed them to operate with near impunity.
🧯 We've Had the Tools—But Not the Will
America’s military and intelligence infrastructure is second to none. We have elite cyber operations under U.S. Cyber Command. We have the NSA, CIA, FBI, and elite special forces units that can locate and neutralize threats anywhere on Earth.
But when it comes to the digital battlefield, our response has been tepid.
Ask yourself this: If a foreign militant shut down 200 hospitals or knocked out power to a city for ransom, what would we do? Would we shrug? Issue a press release?
Or would we send in boots, drones, or a team to extract the bastard?
We know the answer. But when it happens online, we act as if the rules have changed.
🧨 State-Sponsored Safe Havens
Russia, China, Iran, and North Korea routinely harbor and even employ the very criminals holding our infrastructure hostage. They don’t fear us—they mock us. Because while they’ve treated cyberwar as war, we’ve treated it as white-collar mischief.
That mistake has cost us trillions of dollars and countless lives.
It's time that harboring cybercriminals becomes an act of war. It's time those who cross that line, and the states that protect them, understand the cost.
🛡️ What Should Be Done
-
Declare cyberterrorism a national security threat equivalent to physical terrorism.
-
Authorize covert and kinetic operations against key targets, where attribution is confirmed.
-
Kidnap, extradite, or eliminate cybercrime ring leaders, just as we do with international drug lords and terrorists.
-
Punish states that shelter or protect cyber attackers with economic, diplomatic, or surgical precision.
-
Create a public Cyber Most Wanted list—and pursue those people relentlessly.
⚖️ This Isn’t About Revenge. It’s About Deterrence.
No one wants reckless escalation. But inaction has consequences, too—and we are living them. Every ransomware attack that goes unanswered, every school held hostage for Bitcoin, sends a message to the next attacker:
“No one will stop you. America won't fight back.”
That needs to change.
🔚 Final Word
If these people had launched a missile, we would have acted. But they launch code—so we hesitate. That mistake has cost us dearly. It's time the people doing this—and the nations enabling them—feel the fear of god, or at least the certainty of justice.
Not in press releases. Not with toothless sanctions.
But in real-world consequences that make them stop.
Compiled with aid of ChatGPT