The stakes in biosecurity are exceptionally high, as the unauthorized access, theft, or manipulation of biological materials and information for competitive advantage, strategic superiority, or malicious intent, can have profound implications for public health, economic stability, and national security.
Biosecurity targets range from agricultural innovations and pharmaceutical research to military biotechnologies and infectious disease data.
According to the FBI, terrorists have demonstrated their willingness to employ non-traditional weapons to achieve their desired outcomes. Biological agents pose challenges to both law enforcement and public health due to their unique characteristics. Since biological agents are often endemic or naturally occurring in the environment, an intentional release of a pathogen may be initially difficult to discern from a natural event, and efforts to respond to the attack and apprehend those responsible may be delayed.
Biological agents have value, can be used as a currency for information, and can be used in hybrid warfare. Foreigh intelligence agencies consider their options and opportunities, and are actively involved in bioespionage.
Which are the weakest links? Academia and research are among the most vulnerable targets.
From the Paper: "Espionage in Science and Research", from the Bundesamt für Verfassungsschutz (BfV) - the German domestic intelligence service.
Universities and research institutions in Germany are the target of espionage activities emanating from foreign intelligence services. Those services use various methods to get access to information and expertise. The risk of an uncontrolled outflow of expertise can be minimised by implementing and respecting adequate security standards.
Objectives and Implications of Scientific Espionage
- The primary aim of scientific espionage on behalf of foreign states is to acquire information in order to be a step ahead in terms of knowledge or to fill existing gaps in knowledge.
- State-sponsored attackers have extensive personnel and financial resources and operate systematically, skilfully and on a long-term basis.
- They meet with a scientific scene which tends to pay insufficient attention to security aspects and the risk posed by espionage.
Risks
Scientific espionage may have considerable negative implications for the institution:
- loss of orders, patents and profit
- cancellation of joint scientific projects
- loss of confidence and damage to image.
Scientific espionage is also, in the long term, a threat to Germany as an economic and scientific player.
Research areas at particular risk
Certain countries have defined sectors in which they want to achieve a leading role on the world market and/or more independence. The expertise required to that end is obtained by means of both legal and illegal methods.
Various research fields are a special focus of interest.
- Naval architecture and ocean engineering
- Energy saving and electromobility
- Information and communication technologies
- Automation and robotics
- Electricity plants
- Aerospace equipment
- New materials
- Agriculture
- Modern rail transport systems
- Biomedicine and high-performance medical equipment
Scientific Espionage: Modi Operandi and Precautions
In order to gather information, foreign intelligence services use different methods or a combination of them. Scientific institutions need a comprehensive safety concept to protect themselves, which covers the following aspects.
1. Foreign students / Guest scientists
- Foreign intelligence services make use of guest students and guest scientists to gain access to research results.
- Nationals of their country are placed under the obligation to collaborate, are pressurized or are offered baits. Cooperation may also be completely voluntary for patriotic reasons.
- Sometimes existing state affiliations are deliberately concealed from the guest institution.
Example: A guest scientist, specialist field: control engineering, engaged in research at a German university. What he concealed from the university: In his home country, he is the head of a military laboratory for rocket testing.
2. Financing / Joint projects
- Joint research projects and externally financed projects may be exploited by foreign actors to acquire relevant knowledge. Research results may be used in their home country for economic and military purposes.
- In this connection, dual-use goods and/or knowledge of proliferation concern have an important role.
Example: A German university is engaged in research, together with a foreign research institute, on a subject of materials science. The foreign university is known to be close to the military and the research results may find application for ultramodern weapon systems.
Knowledge of proliferation concern is expertise which is required to develop technologies for weapons of mass destruction and delivery systems. Scientific findings often have both civil and military applications. Being aware of this problem is a prerequisite to protecting information of proliferation concern.
3. Cyber attacks
Universities and other research institutions may become the target of state-controlled cyber attacks which are aimed at capturing sensitive research data.
Example: By means of a phishing email, students are directed to the imitated registration page of the university library. The attackers can use the captured access data to penetrate into the computer network.
From the Paper: "Academia as a target. Espionage and proliferation in the academic sector", from the Nachrichtendienst des Bundes (NDB) - the Swiss Federal Intelligence Service.
Raising awareness levels
International collaboration between students and scientists and their ability to move freely and exchange knowledge are of key importance in the research sector and should not be hindered. However, it is vital that universities and research institutes are aware of the threat of espionage and proliferation and take a cautious approach to the handling of critical know-how.
This includes raising awareness and training all staff (scientists, professors, employees, etc.), as well as knowing which technologies are subject to export controls and obtaining export permits from the State Secretariat for Economic Affairs (SECO) where this type of technology is transferred abroad.
Switzerland and the universities and research institutes based here have a responsibility to ensure that the knowledge created or acquired in this country by students and scientists is not misused for illegal purposes. Ignoring the threats associated with this may have serious consequences for an institution if it is actually affected by espionage or proliferation activities.
Possible penalties include the loss of contracts and research funds, exclusion from international research committees, loss of reputation and a lower position in international rankings.
In addition, the outflow of confidential research results abroad could in the long term lead to a deterioration in Switzerland’s international competitiveness in the field of research.
Individuals who conduct espionage on behalf of a foreign intelligence service against Swiss interests are gambling with their future. They risk prison and jeopardise their career.
Open culture
The high technological and academic standards and the openness and welcoming culture of Swiss universities and research institutes are admired worldwide. Here, foreign researchers will find e.g. ultra-modern research laboratories in which they can conduct their scientific experiments.
However, the easy access to buildings, the policy of exchanging scientific information openly, the collaboration with technology companies and the mixture of different nationalities of teaching staff and students also make universities an attractive target for information gathering by foreign intelligence services.
These attempt to gain access to expert opinions or research data on sensitive technologies (e.g. robotics, new materials, nanotechnology) in order to fill knowledge gaps in their countries of origin. This saves the state and its industry research costs, as it is generally more cost-effective to spy on a sought-after technology or product than to invest financial and human resources into one’s own research and development.
Case Study
In 2014, a foreign physicist who was carrying out research at a Dutch University was arrested. He was suspected of having revealed the contents of confidential research to Russia’s Foreign Intelligence Service (SVR).
The physicist had come to the attention of Germany’s Federal Office for the Protection of the Constitution while it was observing a Russian diplomat of the Consulate General in Bonn whom it had uncovered as an SVR officer.
Once a month, the fake diplomat and the physicist would meet in Aachen (Germany), where the diplomat would hand over money to the physicist. Each time, the physicist would drive by car from the Netherlands to Aachen for this meeting.