// Comparison
Sandworm vs The Cyber Effect: Which Should You Read?
Two cybersecurity books on Narrative, compared honestly: who each is for, what each does best, and which to read first.
A New Era of Cyberwar and the Hunt for the Kremlin's Most Dangerous Hackers
Andy Greenberg
Long-form journalism on the GRU's hacking operations, the best non-technical book on what state-level cyber actually looks like.
A Pioneering Cyberpsychologist Explains How Human Behavior Changes Online
Mary Aiken
Mary Aiken's popular-science argument that online environments alter human behavior in measurable ways — escalation, disinhibition, time distortion — and that the security community underestimates the social-engineering surface this opens.
Read this if
Skip this if
Key takeaways
- NotPetya was not a ransomware accident; it was a wartime weapon that overshot.
- Attribution is slow, contested, and political, but it is also possible and increasingly precise.
- The line between cybercrime and statecraft is thinner than the threat-intel literature suggests.
- Online disinhibition is real and operationally relevant — it is the soil in which most social-engineering attacks grow.
- The book's strongest material is on the under-18 surface: the developmental case for why kids and teens are differently exposed than adult threat models assume.
- Take the empirical claims with a critical eye; the conceptual frame is more durable than any individual citation.
How they compare
We rate Sandworm higher (5/5 against 3/5 for The Cyber Effect). For most readers, that means Sandworm is the primary pick and The Cyber Effect is a useful follow-up.
Both books target beginner-level readers, so the choice is about topic, not difficulty.
Sandworm and The Cyber Effect both cover Narrative, so reading them in sequence reinforces the same material from different angles.