// Comparison

Dark Territory vs The Hacker and the State: Which Should You Read?

Two cybersecurity books on Geopolitics, compared honestly: who each is for, what each does best, and which to read first.

Beginner

4/52016

Dark Territory

The Secret History of Cyber War

Fred Kaplan

Fred Kaplan's policy-side history of US cyber capability, from Reagan-era panic about WarGames to the institutional buildup of NSA's offensive arm and the political fights over its use.

Beginner

5/52020

The Hacker and the State

Cyber Attacks and the New Normal of Geopolitics

Ben Buchanan

Ben Buchanan's argument that state-on-state cyber operations are not deterrence-shaped (like nuclear) but signaling-shaped: countries use cyber to shape the environment, not to threaten escalation. Builds the case from declassified incidents.

Read this if

Anyone who needs the political backstory of US cyber capability: how doctrine, contracting, and inter-agency turf wars shaped what NSA, CYBERCOM, and FBI Cyber actually do. The institutional history that operational books skip.

Anyone trying to think clearly about state-sponsored cyber: policy staff, threat-intel analysts, journalists, and security leaders who have to brief on "the cyber threat" without resorting to vendor decks. The single best academic-grade synthesis of the last twenty years of state cyber operations.

Skip this if

Practitioners wanting technical detail on specific operations. Kaplan is a Pulitzer-winning policy reporter; the depth is in the inter-agency politics, not the implementation.

Readers wanting forensic detail on specific operations. Buchanan synthesizes; for the procedural blow-by-blow on Stuxnet, NotPetya, or the SolarWinds incident, go to Zetter, Greenberg, and the post-incident reports respectively.

Key takeaways

US cyber capability grew in fits, not strategy: each major investment was driven by a specific embarrassment (Solar Sunrise, Moonlight Maze, Buckshot Yankee, OPM) rather than coherent doctrine.
The civilian/military divide and the NSA-vs-FBI turf wars predict more about policy outcomes than any classified document the author had access to.
Stuxnet was the apex of an institutional learning curve that started with Reagan watching WarGames; the book makes the line continuous.

Cyber is poorly modeled by deterrence theory: states use it constantly, below the threshold of war, to shape the environment rather than to threaten escalation.
The signaling/shaping distinction (espionage, sabotage, destabilization, election interference) is the right taxonomy for analyzing modern campaigns and is the book's most reused contribution.
Attribution and accountability remain genuinely hard, and that asymmetry is itself a structural feature of cyber statecraft, not a temporary condition awaiting better tools.

How they compare

We rate The Hacker and the State higher (5/5 against 4/5 for Dark Territory). For most readers, that means The Hacker and the State is the primary pick and Dark Territory is a useful follow-up.

Both books target beginner-level readers, so the choice is about topic, not difficulty.

Dark Territory and The Hacker and the State both cover Geopolitics, Narrative, so reading them in sequence reinforces the same material from different angles.

Keep reading