Cyberattacks Anger Lawmakers As They Prepare a US Response

May 20, 2021 by Tom Ramstack
Cyberattacks Anger Lawmakers As They Prepare a US Response
(Photo via Wikimedia Commons)

WASHINGTON — Lawmakers who listened to Defense Department officials explain recent cyberthreats Friday gave unmistakable hints that some kind of large-scale U.S. response is coming soon.

The hearing of the House Armed Services subcommittee on cyber, innovative technologies and information systems assessed how much of a risk from hackers the United States faces.

“We are in a period of strategic competition,” said Gen. Paul M. Nakasone, commander of the U.S. Army Cyber Command.

Defense analysts name Russia, China, North Korea, Iran and Syria as some of the greatest cyberworld adversaries. Other risks come from what they call “non-state actors,” which normally refers to criminals who use ransomware to get money.

Ransomware is computer code launched by hackers to encrypt an organization’s software, thereby making it unusable. The hackers then demand money in exchange for unlocking the files.

The most devastating incident mentioned during the congressional hearing was the May 7 ransomware attack against Colonial Pipeline that shut down the nation’s biggest fuel pipeline, causing gasoline shortages and higher prices in 11 states. Service resumed on the pipeline this week after the company paid hackers using the name DarkSide nearly $5 million in cryptocurrency.

In another example, the Washington, D.C. police department is negotiating with hackers to avoid having them release confidential police files on the Internet. Thieves who stole the information are demanding a $4 million ransom.

In both cases, the hackers have been traced to gangs of sophisticated computer programmers. Other times, Russian government agents were blamed, such as when they tapped into sensitive files of U.S. agencies in the 2020 SolarWinds attack or sought to use the Internet to influence the 2016 presidential election.

In another case, the U.S. Defense Department accused the Chinese military of hacking attacks intended to steal American technology and potentially disrupt the economy.

In March, Microsoft Corp. warned the world that Chinese hackers using the name Hafnium infected tens of thousands of Microsoft Exchange servers, most commonly used by small to mid-sized businesses.

“Cyber security is national security,” Nakasone told the congressional subcommittee.

Further evidence of the government’s renewed cybersecurity emphasis came from an executive order President Joe Biden issued on May 12. It requires more information-sharing about potential hacking attacks among government agencies and greater outreach to organize public-private joint ventures.

“Incremental improvements will not give us the security we need,” the executive order says. “Instead, the federal government needs to make bold changes and significant investments in order to defend the vital institutions that underpin the American way of life.”

Biden is proposing $2.1 billion for cybersecurity in his 2022 federal budget.

Mieke Eoyang, a deputy defense secretary for cyberpolicy, said at the congressional hearing that identifying computer-based threats is difficult because the attacks are launched anonymously from many places in the world.

“It’s always a challenge to pull that apart and determine who are the non-state actors and who are the state actors,” she said.

She also said the U.S. government is unlikely to succeed alone. Instead, cybersecurity requires assistance from allies and corporations most likely to be targeted.

Members of the subcommittee mentioned “strategy,” “tactics” and “funding” as the key issues to the U.S. response before moving to a closed-door classified discussion.

None of them expressed opposition to a bigger Defense Department cybersecurity initiative.

Rep. James R. Langevin, D-R.I., said that until recently, skeptics of the Defense Department downplayed cyberthreats against the U.S. government and economy.

“I hope the last year has changed those perspectives,” Langevin said.

Rep. Mike Gallagher, R-Wis., said he hoped the federal government would set aside cybersecurity funds that match the dangers to the United States.

“I think it’s safe to say that challenge is only going to grow in the short-term,” Gallagher said.

A+
a-
  • cyberattacks
  • Defense Department
  • Hackers
  • In The News

    Health

    Voting

    Cybersecurity

    Insider Q&A: Pentagon AI Chief on Network-Centric Warfare, Generative AI Challenges

    The Pentagon's chief digital and artificial intelligence offer, Craig Martell, is alarmed by the potential for generative artificial intelligence systems... Read More

    The Pentagon's chief digital and artificial intelligence offer, Craig Martell, is alarmed by the potential for generative artificial intelligence systems like ChatGPT to deceive and sow disinformation. His talk on the technology at the DefCon hacker convention in August was a huge hit. But he's anything... Read More

    October 31, 2023
    by Tom Ramstack
    US Workforce Unprepared for AI, Technology Experts Tell Senate

    WASHINGTON — President Joe Biden’s executive order Monday setting regulatory standards for artificial intelligence prompted witnesses at a Senate hearing... Read More

    WASHINGTON — President Joe Biden’s executive order Monday setting regulatory standards for artificial intelligence prompted witnesses at a Senate hearing Tuesday to say it is only a first step in a process likely to transform American workplaces. “Artificial intelligence will not only disrupt lives, it will... Read More

    July 18, 2023
    by Tom Ramstack
    Congress Told AI Holds Great Risks and Benefits for US Military

    WASHINGTON — Artificial intelligence experts warned Tuesday during a congressional hearing of ominous dangers for the United States if it... Read More

    WASHINGTON — Artificial intelligence experts warned Tuesday during a congressional hearing of ominous dangers for the United States if it falls behind in developing the technology but a bright future by taking the lead. One of the greatest risks would be defending against a foreign enemy... Read More

    July 17, 2023
    by Dan McCue
    DOE, Sandia Labs to Host Bioenergy Cybersecurity Workshop

    WASHINGTON — The Department of Energy’s Bioenergy Technologies Office is partnering with the Sandia National Laboratories in New Mexico to... Read More

    WASHINGTON — The Department of Energy’s Bioenergy Technologies Office is partnering with the Sandia National Laboratories in New Mexico to present a virtual workshop on the cybersecurity risks in biofuel and bioproduct manufacturing. The Microsoft Teams session will be held on Sept. 11 from 1 p.m.... Read More

    May 17, 2023
    by Tom Ramstack
    US Prosecutors Indict Russian for Ransomware Attacks

    WASHINGTON — The Justice Department indicted a Russian citizen Tuesday prosecutors accused of ransomware campaigns that netted him and his... Read More

    WASHINGTON — The Justice Department indicted a Russian citizen Tuesday prosecutors accused of ransomware campaigns that netted him and his conspirators about $200 million in stolen payments. The victims were mostly in the United States. They included nonprofits, hospitals and police departments, such as the Washington,... Read More

    Congress Eyes New Rules for Tech: What's Under Consideration

    WASHINGTON (AP) — Most Democrats and Republicans agree that the federal government should better regulate the biggest technology companies, particularly... Read More

    WASHINGTON (AP) — Most Democrats and Republicans agree that the federal government should better regulate the biggest technology companies, particularly social media platforms. But there is very little consensus on how it should be done. Should TikTok be banned? Should younger children be kept off social... Read More

    News From The Well
    scroll top