During the RSA Conference this week, security experts discussed the challenges of combating misinformation on the internet. Once inaccurate information has spread around the web, it’s incredibly difficult to rein it in. Yoel Roth, the former head of Trust and Safety at Twitter, noted that over 90% of impressions on posts were generated within the first three hours. That’s not much time to intervene, which is why the cybersecurity community needs to develop content moderation technology that can detect and shut down disinformation while mitigating its effects.
Disinformation is different from misinformation because it is a deliberate lie designed to influence opinion or cover up a fact. Examples of recent disinformation campaigns and misinformation spreaders include attacks from Chinese hacking groups on US-based businesses and the dissolution of Twitter’s Trust and Safety Council.
Lisa Kaplan, CEO of Alethea, discussed how disinformation can affect corporate interests, noting that it is “fast, cheap, and easy to do.” Organizations should keep an eye out for potential disinformation threats in online public spaces and clear up any untruths before they can reach a wide audience. Kaplan recommended that businesses develop internal systems to communicate their truths quickly with employees and stakeholders when targeted by disinformation attacks.
Catherine Gellis, an attorney and policy advocate, discussed how the US Constitution’s First Amendment protects some forms of disinformation or misinformation. However, she also noted that the First Amendment protects private corporations’ rights to limit speech on their platforms. This means that social media companies can determine their versions of “facts” and moderate users’ posts accordingly.
The panel did not present specific strategies to combat disinformation or misinformation online, but they suggested that business leaders should consider company-wide approaches to combating disinformation and misinformation. They also recommended getting in front of their audience with clear statements to steer interest away from false messages. The panelists did not believe that some forms of legislation, such as Montana’s TikTok ban, are a viable solution to combat misinformation or disinformation due to their potential for government overreach.
In conclusion, cybersecurity developers need to focus on creating ways to detect and shut down disinformation while mitigating its effects. Businesses should develop internal systems to communicate their truths swiftly with employees and stakeholders when targeted by disinformation attacks. Social media companies can determine their versions of “facts” and moderate users’ posts accordingly. Overall, combating disinformation and misinformation online will require dynamism and flexibility from the cybersecurity community.
