Lies, Damn Lies, and Twitter Bots
Bear with me -- this is going to get twisted.
I've been paying quite a bit of attention to the use of deception as a tactical method, from real-world griefing to deception as a means of protecting privacy. I'm particularly interested in the political uses of technology-enabled deception -- uses that I suspect are likely to become more prevalent in the near future.
Two of my rules for constructing useful and interesting scenarios are to (a) think about what happens when seemingly disparate changes smash together, and (b) imagine how new developments might be misused. In both cases, the goal is to uncover something unexpected, but (upon reflection) disturbingly plausible. I'd like to lay out for you the chain of connections that lead me to believe that we're on the verge of something big.
But this is taking on a more sobering form. According to The Verge:
...the hackers who planted fake news stories on Reuters's website earlier this month weren't doing it for fun. Reuters was caught in the middle of an "intensifying conflict in cyberspace between supporters and opponents of Syrian President Bashar al-Assad," in the words of one of its reporters, as hackers attempted to co-opt the news agency's credibility in order to support government forces in the Syrian national conflict. [...]
To Americans and anyone accustomed to a free press, it should have been easy to spot the one-sided propaganda in the middle of less histrionic material. But the hackers tried to pass their message off as news. The fake posts were written in a plain, straightforward, newsman-like style, with appropriate headlines ("Riad Al-Asaad: Syrian Free Army pulls back tactically from Aleppo") accompanied by appropriate photos.
The goal wasn't to draw attention to an otherwise ignored issue, or simply for the lulz; the hack was done to sow confusion and to poison the information stream.
Okay, the pieces should be falling into place at this point. Algorithmic trading, particularly high-frequency trading, is extremely vulnerable to disruption; as it becomes more deeply connected to rapid news inputs from Twitter, the potential increases for misinformation flows to trigger flash crashes and stock price drops. But financial systems aren't going to respond to a single tweet -- they're going to pay attention to "legitimate" news feeds and to sudden bursts of tweets about a particular (relevant) subject.
A black hat hacker could, with ease, create a network of Twitter bots set to retweet each other on command, send @messages to important information hubs (a few of which would retweet stories further), and drive up the visibility of certain hashtags and keywords. Done with the right target and message, and at the right time, such a network could potentially trigger sudden swings in value of targeted shares. The drop in value need not last for long; trading systems that know the stories to be false could swiftly snap up the briefly-undervalued stock. Conversely, the attack could be done in a way to cripple a particular company or stock market, or even to distract journalists from another story.
Similarly, a Twitter bot network, retweeting/spreading misinformation, could potentially cause a media firestorm if the target was a politician. Even if the misinformation was corrected within the hour, the spread would be impossible to fully contain. Could something like this even swing an election?