What drives terrorism? It's a question asked by governments, individuals, militaries and businesses. Terrorist tactics and tradecraft constantly evolve to respond to external forces that enable, constrain and otherwise shape them.

Tracking the influential forces that shape terrorism is crucial to understanding how attacks are conducted and placing an attack in context. But most importantly, understanding the drivers of terrorism helps security professionals anticipate terrorism trends so they can train their teams and deploy assets accordingly. With this in mind, I want to briefly discuss the main drivers I track to forecast terrorist dynamics and then discuss five terrorism trends I believe will arise in the next few years because of these factors.

Five Main Drivers Of Terrorism

1. Past Attacks: The tactics used in past attacks and the security force response to them have long driven terrorist trends. Perhaps this has been best illustrated by the long, evolving history of terrorist tactics used in attacks against aircraft – and the corresponding security measures enacted in the wake of successful or failed attacks.

2. Media Coverage: Since the advent of modern terrorism, attacks have been considered a form of propaganda, “propaganda of the deed” as the early anarchist terrorists referred to them. Media coverage of terrorist attacks magnify the impact of an attack, is considered critical for recruiting new followers to the terrorist’s cause and for is also useful for inspiring copycat attacks.

3. Terrorist Ideology: A group’s ideology dictates a wide range of factors from target selection to the tactics used in attacks. The permissibility of conducting suicide attacks and of creating civilian casualties are just two examples of ideological factors that help shape terrorist dynamics.

4. Technology: Obviously the miniaturisation of electronics has vastly changed bomb making tradecraft – and at the same time increased the ability for authorities to scan for explosives. Beyond that, technology has also dramatically changed the way terrorist organizations conduct surveillance, communicate, produce propaganda and move funds.

A group’s ideology dictates
a wide range of factors from target selection to the tactics used in attacks

5. Politics: Von Clausewitz called war the continuation of politics by other means and as a form of warfare, terrorism is inherently political. Because of this, politics have always played an important role in shaping terrorist trends. For example, the political upheaval created by the so-called Arab Spring had wide ranging terrorism repercussions across the Middle East.

Five Emerging Trends

Based on these drivers, we can expect to see the following five terrorism trends grow and evolve over the next few years.

1. Resurgence of domestic terrorism in the U.S. and Europe

The current highly polarised political environment in Europe and the United States with rising nationalism, distrust of government and conflict over a number of social issues, will lead to a resurgence in terrorism from both the extreme left and extreme right.

The immigration issue has energized ultranationalist and white supremacist groups on both sides of the Atlantic. At the same time we see a resurgence of anarchism and other extreme left ideologies. As a result, we are entering another cycle of domestic political violence such as that seen in the 1970s and more briefly in the late 1990s. Also, just like in those past periods, there are external actors fanning the flames. Russia is particularly active in this regard.

2. Escalation of simple jihadist attacks in the West

Al Qaeda in the Arabian Peninsula’s 2009 call for grassroots jihadists living in the West to conduct simple attacks in countries where they live – an approach later adopted by the Islamic State in Sept 2014 – has led to a dramatic increase in these types of attacks. This has been clearly noted in the current wave of vehicular assaults.

The use of unmanned aerial vehicles (drones) has garnered a great deal of attention
We continue to believe that it will be some time before terrorist actors in the West will be able to create effective improvised weaponised drones

Jihadists began conducting vehicular assaults in the early 2000’s but the tactic has become far more widely employed following the deadly and highly publicised truck attack in Nice, France in July of 2016. A similar trend has occurred with knife attacks and armed assaults, and as the Islamic State loses its core territory in Syria and Iraq, it and al Qaeda are doubling down on calls for these attacks. Given the intense media they have generated, even small-scale attacks are being considered a success and trumpeted by the jihadists. Simple attacks are the “new normal” now.

3. Increasing use of drones

While the use of unmanned aerial vehicles (drones) in lethal attacks by non-state actors such as the Islamic State and Hezbollah has garnered a great deal of attention, we continue to believe that it will be some time before terrorist actors in the West will be able to create effective improvised weaponised drones. However, that doesn’t mean they won’t try, and I expect to see plots or botched attacks in the coming year involving drones even if they are likely to create more panic than results.

The rapidly increasing number of items connected to the Internet will provide terrorists with far more
attack space

4. Online University of Terrorism

One drawback of the embrace of the leaderless resistance model of terrorism by jihadists, anarchists and white supremacists is that it makes it more difficult for would-be terrorists to get training in terrorist tradecraft. Due to advances in technology, people can now receive training in a number of different things over video conferencing links.

I expect terrorist trainers to take advantage of this technology to provide training in skills such as bomb making via encrypted video chat rooms on the Darknet. Inspire Magazine has helped equip many do-it-yourself terrorists to conduct attacks and interactive training sessions with master terrorists will help them become even more deadly.

5. Real cyber terrorism

To date, the terrorist offensive activity on the Internet has been confined mostly to cracking passwords; defacing websites or social media accounts; and providing personal information on military members, police officers and other potential targets.

However, the rapidly increasing number of items connected to the Internet, everything from cars to industrial control systems, will provide terrorists with far more attack space. I believe that we will soon see cyber terrorism become deadly through a targeted cyber attack on a hospital, utility or other critical node.

Share with LinkedIn Share with Twitter Share with Facebook Share with Facebook
Download PDF version

Author profile

Scott Stewart Vice President, Tactical Analysis, Stratfor

In case you missed it

What Are The New Trends And Opportunities For Biometrics?
What Are The New Trends And Opportunities For Biometrics?

A shift toward touchless devices during the coronavirus pandemic has been a boon to the biometrics sector. Another factor in the recent increase in use of biometrics is lower prices, which are a symptom of a maturing market and of new technology capabilities. Increasingly, integration of biometrics with access control and other security systems is expanding use cases and sales numbers. For additional insights, we asked this week’s Expert Panel Roundtable: What are the new trends and opportunities with biometrics (facial, fingerprint, iris and/or voice)?

Rule Triggering ‘Blacklist’ Provision of NDAA Ready to Take Effect
Rule Triggering ‘Blacklist’ Provision of NDAA Ready to Take Effect

Within days, a rule will take effect that bans from U.S. government contracts any companies that “use” video products from Chinese companies Hikvision and Dahua. The Federal Acquisition Regulation (FAR) rule implements the “blacklist” (or “Part B”) provision of the National Defense Authorization Act (NDAA), which is understood in the security industry as prohibiting dealers and integrators that do business with the federal government from selling Chinese-made video products to any of their customers (even for non-government projects). The rule, which is officially still interim, states: “On or after August 13, 2020, [federal] agencies are prohibited from entering into a contract, or extending or renewing a contract, with an entity that uses any equipment, system, or service that uses covered telecommunications equipment or services as a substantial or essential component of any system, or as critical technology as part of any system.” Federal rules  Within days, a rule will take effect that bans U.S. government contracts any companies that “use” video products from Chinese companies Hikvision and DahuaFederal agencies issuing the rule are the Department of Defense (DoD), the General Services Administration (GSA) and the National Aeronautics and Space Administration (NASA). GSA provides centralized procurement for the federal government. Because the COVID-13 crisis delayed issuance of the rule, the usual 60 days will not be allowed for public comment before the rule is implemented. However, public comments are welcome and will be addressed in subsequent rulemaking. “Telecommunications equipment” refers to equipment or services provided by Huawei Technology or ZTE Corp, both Chinese telecommunications giants. The rule also specifies that it applies to “certain video surveillance products or telecommunications equipment and services produced or provided by Hytera Communications Corp., Hangzhou Hikvision Digital Technology Company, or Dahua Technology Company (or any subsidiary or affiliate of those entities).” Hytera is a Chinese manufacturer of radio systems. Hikvision and Dahua are major international manufacturers of video surveillance equipment. Limits and prohibitions  The rule states: “This prohibition applies to the use of … equipment or services, regardless of whether that use is in performance of work under a Federal contract.” In the industry, this clause is taken to mean that integrators that “use” any of the covered equipment are prohibited from selling to the government. “Use” presumably covers an integrator deploying the equipment in their own facilities and/or selling it to other customers. The rule also prohibits “service … related to item maintenance,” which in the case of a security integrator would include providing service contracts on previously installed systems. Security Industry Association (SIA) The Security Industry Association (SIA) comments: “Due to applicability [of the rule] to uses by entities with federal contracts even unrelated to their federal work, this broad interpretation is expected to have widespread impact on the contracting community across many sectors, as covered video surveillance equipment is some of the most commonly used in the commercial sector in the United States.” Security integrators that do business with the federal government have largely anticipated the new rule and already switched their Chinese camera lines for NDAA-compliant competitors. However, as SIA points out, extensive common uses of the Chinese equipment in various commercial sectors raises additional concerns.   Easing compliance burdens The interim rule adopts a “reasonable inquiry” standard when an offeror (government contractor) represents whether it uses covered equipment. “A reasonable As SIA points out, extensive common uses of the Chinese equipment in various commercial sectors raises additional concerns. inquiry is an inquiry designed to uncover any information in the entity’s possession about the identity of the producer or provider of covered telecommunications equipment or services used by the entity. A reasonable inquiry need not include an internal or third-party audit.” SIA notes that this provision may be aimed at easing the compliance burden by suggesting that contractors only need to inquire based on what information they already possess. The 'blacklist' The new rule covers Paragraph (a)(1)(B), which has informally been referred to as the “blacklist” provision of the NDAA, the John S. McCain National Defense Authorization Act for fiscal year 2019. However, the “Chinese ban” provision [Paragraph (a)(1)(A)] already went into effect a year after the law was signed by President Trump (August 13, 2018). “Part A” covers use of Chinese-made products in fulfilling government contracts. A growing threat Seeking to justify the new restrictions, the FAR rule states: “Foreign intelligence actors are employing innovative combinations of traditional spying, economic espionage, and supply chain and cyber operations to gain access to critical infrastructure and steal sensitive information and industrial secrets. The exploitation of “Telecommunications equipment” refers to equipment or services provided by Huawei Technology or ZTE Corp, both Chinese telecommunications giantskey supply chains by foreign adversaries represents a complex and growing threat to strategically important U.S. economic sectors and critical infrastructure.” SIA has urged a delay in implementing the “Part B” provision, stating: “The federal government estimates that it will cost contractors well over $80 billion to fully implement this prohibition on the use of certain Chinese telecommunications and video surveillance equipment, yet endless delays in publishing the rule now mean that federal suppliers have just weeks to understand and comply with the new rule, which raises as many questions as it answers.” SIA continues: “Federal suppliers across a wide range of industries have increasingly concluded that Part B is unworkable without clarification of the scope and meaning of key terms in the provision, which the rule does not do enough to define. For example, Part B bans agencies from contracting with a provider that “uses” any covered equipment or service. This term is not clearly defined in law or regulation, yet contractors must certify compliance beginning Aug. 13, 2020.” The Part B rule, which only applies to prime contractors, enables agency heads to grant a one-time waiver on a case-by-case basis, expiring before Aug. 13, 2022.

Why Biometrics is Key for the New Era of Convenient Workplace Security
Why Biometrics is Key for the New Era of Convenient Workplace Security

The modern working world has evolved dramatically over the last few decades - from how and when we work, to the places we work from. Widespread internet connection advances, alongside the growth of cloud-based shared working platforms, have not only created the possibility for increasingly flexible working arrangements, but also fueled a desire to do so – particularly among millennials. The preference for flexible working has now created a widespread need for more agile workforces, saddling IT departments around the world with the task to maintain ‘business as usual’ without compromising corporate privacy. With flexible working forecasted to stay for the long haul and passwords increasingly under scrutiny, evaluating alternative secure authentication methods to keep companies’ data and networks safe is important to protect these ‘new normal’ ways of working.   The end of the humble password? A recent report by Raconteur found that the most common method of authentication for securing the digital aspects of workplaces is passwords. Unfortunately, however, between phishing, hacking and simple guesswork, passwords are easily compromised – a problem that is only getting worse, with IT professionals reporting an increase in phishing attacks in the last few years. Once compromised, passwords can be used to enter untrusted apps or websites and, worst and most commonly of all, give rise to even greater data breaches. Between phishing, hacking and simple guesswork, passwords are easily compromised Alongside security concerns, 6 in 10 people worry about forgetting their passwords and, according to a recent Balbix study, 99% of people reuse the same password across different work accounts. This, undoubtedly, is a side effect of the increasingly complex character requirements implemented by many enterprises. This stress and effort leads to frustrated employees, but, more worryingly, forgotten passwords can also cost IT departments millions of dollars a year. In our flexible, hyper-connected world, it is clear then that the humble password is no longer effective. Additional or alternative layers of authentication are needed to help enterprises maintain their workplace security in a more convenient and cost-effective way.   Smarter workplace authentication with biometrics Often, hacking incidents involve the use of stolen credentials. One authentication solution that could bring an end to these large-scale hacking attacks is biometrics, as unique biological traits are extremely hard to steal and spoof. In addition to being a more secure method to authenticate users and prevent fraud in companies’ networks, it is also possible to layer biometric modalities to create a highly convenient and secure multi-modal authentication solution for sensitive areas or information. Spoofing two biometric modalities, such as fingerprint and iris, in the same attack is virtually impossible, but that doesn’t mean this level of security needs to impair the UX. After all, you can put your finger on a touch sensor, while at the same time glancing at a sensor. For businesses, biometrics can be used in a wide variety of use cases, from securing laptops and applications to authenticating employees at secured access and entry points. It can also be used to add frictionless layers of additional security to any aspect of current security systems, such as key fobs or USB sticks, or to access personalized settings or employee accounts when using shared devices, such as a printer system. This way, beyond playing a role in securing the modern workplace, biometrics can also give employees greater flexibility and convenience over how, when and where they work. Privacy and biometrics - explained Many employers and employees worry about safeguarding privacy in the workplace. Considering biometric data is highly personal, it is no wonder, then, that many are concerned about collecting this data for the purpose of workplace security and what liabilities this may expose them to. For businesses, biometrics can be used in a wide variety of use cases, from securing laptops and applications to authenticating employees Employers must adhere to the relevant workplace privacy laws, such Europe’s GDPR, and this duty extends to biometrics, of course. But, providing biometrics is implemented in line with best practice, it can actually protect employees’ privacy far more effectively than its predecessor, passwords. When employers use an on-device approach, their employees can rest assured no one will be able to access or steal their biometric data, as all biometric data is stored and processed on the device - whether that is a laptop, smartphone, USB stick or key fob. Removing the need for data to ever enter the cloud, this also removes the technical and legal complexities of managing a biometric database and, if a key fob is lost for example, all parties can rest assured there is no chance of anyone else being able to use it. A win-win. Precisely because biometric data is so difficult to steal and spoof, adding biometric authentication to end-point devices can considerably reduce data breaches to keep both sensitive employee and corporate data safe and secure. Reimagining workplace security As people work more flexibly, systems are shared more frequently, and attacks get smarter, it is clear to see that passwords alone are no longer enough to secure the modern-day workplace. Adding biometric authentication to end-point devices can considerably reduce data breaches Now is the time to reassess the physical and logical access control infrastructure. To keep personal and corporate data safe, it is crucial to add new and additional authentication methods to the security infrastructure. Luckily, the benefits of biometrics are often far simpler to realize than many enterprises imagine. The beauty of biometrics is its combination of both security and convenience. Compared to other forms of authentication, biometrics offers considerably stronger protection and an enhanced UX that can easily be integrated into existing enterprise security infrastructure – without the need for huge biometric databases to manage or fear. So, whether to replace outdated passwords or as part of a multi-modal authentication system, biometrics can play an important role in pushing workplace security into a new era for both physical and logical access control.