Sunday's New York Times op-ed warns us about the growing use of offensive vs defensive cyber security capabilities.
This article actually got it wrong. For years, emphasis has been put on developing attack capabilities rather than defensive ones. Its just that recent headlines with Flame and Stuxnet would have us believe otherwise.
The reality? In the US, much like in Israel (and probably other countries), there is a large disproportion between the amount of resources invested in developing offensive capabilities (a lot of resources) versus developing defensive measures (which has only recently increased). This is inversely proportional to common sense and potential impact. While offensive capabilities are very important in terms of gathering intelligence, they are relatively ineffective in terms of a large scale strike on underdeveloped countries like Syria, Libya and even Iran, not to mention terrorist organizations.