US Military Warns Senate About Foreign Cyber Threats

February 16, 2019 by Tom Ramstack
Sen. Jim Inhofe, R-Okla., speaks with reporters following a policy lunch on June 12, 2018 at the U.S. Capitol in Washington, D.C. (Alex Edelman/CNP/Zuma Press/TNS)

WASHINGTON — Senators at a congressional hearing Thursday thanked the Defense Department’s cyber security force for protecting the 2018 midterm elections but warned that foreign hacking threats are likely to only get worse.

Americans sometimes unrealistically convince themselves they have the world’s best defenses against cyber-attacks, said Sen. James Inhofe, chairman of the Senate Armed Services Committee.

The truth is that terrorist groups and foreign governments that threaten U.S. cyber security “remain resilient,” said Inhofe, an Oklahoma Republican. “They are advancing,” he said.

Congress has increased the budget and authorities of Defense Department cyber security since intelligence agencies reported the Russian government tried to break into computer systems that tallied votes for the 2016 presidential election.

This year, the U.S. Cyber Command is operating with a $610 million budget and a full-time staff of 1,520 military personnel and civilians. In addition, the National Security Agency’s cyber security program and the U.S. Cyber Command started operating last year with a single director to increase the capabilities of both of them.

Part of the reason for the Armed Services Committee hearing this week was for the Senate to consider how much money should be dedicated to cyber security in its next annual National Defense Authorization Act.

Paul M. Nakasone, commander of the U.S. Cyber Command, said in his Senate testimony, “We are seeing what we term corrosive threats, in which malicious cyber actors weaponize personal information, steal intellectual property and mount influence campaigns. Such measures have had and will have strategic effects on our nation and allies.”

Despite warnings for the future, both Republican and Democratic members of the Senate committee said the U.S. Cyber Command already demonstrated its effectiveness during last year’s midterm elections.

The Justice and Homeland Security departments reported last week that no foreign government had “a material impact” on the midterm elections.

A key component of protecting the election was what the U.S. Cyber Command called its counter-Russia campaign.

Its “Russia Small Group” followed a “persistent engagement” strategy of confronting Russians with cyber threats that forced them to divert resources to protect their own computer systems. The group also sent signals to Russian hackers that notified them Americans knew how to tap into their command systems if they want.

Members of the Senate committee said they could not publicly reveal details of the U.S. Cyber Command’s operations but acknowledged being impressed by them.

“The enemies know what they’re doing,” said Sen. Richard Blumenthal, a Connecticut Democrat. “We know what they’re doing. . . . They know we know what they’re doing. The only ones who are in the dark, really, are the American people.”

The Defense Department described threats facing the United States in its 2017 “Cyber Strategy” report that has become the cornerstone of U.S. cyber security.

“We are engaged in a long-term strategic competition with China and Russia,” the report says. Both countries “have expanded that competition to include persistent campaigns in and through cyberspace that pose long term strategic risk to the nation as well as to our allies and partners.”

China is catching up quickly with the U.S. military’s capabilities, which includes threats to the nation’s economic vitality by “exfiltrating sensitive information from U.S. public and private sector institutions,” the report says.

Russians have tried to influence both U.S. public opinion and elections, according to military witnesses at the Senate hearing. Other countries, such as North Korea and Iran, also have launched cyber-attacks against U.S. interests.

Despite any previous successes, “We should not take this as a sign that we should let our guard down,” said Sen. Jack Reed, a Rhode Island Democrat.

Cybersecurity

October 14, 2021
by Victoria Turner
Cybersecurity Experts Point to More Investment Needed in Detection, Response

WASHINGTON -- If everyone were to employ proper cyber hygiene like multi-factor authentication or not clicking on links in phishing... Read More

WASHINGTON -- If everyone were to employ proper cyber hygiene like multi-factor authentication or not clicking on links in phishing emails, more than 85% of cyberattacks would be prevented, said Sen. Angus King, I-Maine, Thursday.  “The best hack is the one that doesn’t happen,” King said... Read More

October 5, 2021
by Victoria Turner
Cybersecurity Minimum Standards Needed to Keep North America Secure

North American governments should come together to create a trilateral strategy to assess and address threats in a holistic risk-based... Read More

North American governments should come together to create a trilateral strategy to assess and address threats in a holistic risk-based approach to cybersecurity that includes a minimum set of standards, said three experts yesterday. As much as the pandemic has accelerated the rate in which governments... Read More

September 29, 2021
by Victoria Turner
Aspen Cyber Summit Explores Collective Defense in a Digital World

WASHINGTON -- The Cybersecurity Infrastructure and Security Agency has met President Biden’s cybersecurity executive order’s “highly aggressive deadlines so far,”... Read More

WASHINGTON -- The Cybersecurity Infrastructure and Security Agency has met President Biden’s cybersecurity executive order’s “highly aggressive deadlines so far,” but there is “still a lot of work to do,” said CISA Director Jen Easterly Wednesday.  Kicking off the 6th annual Aspen Cyber Summit, Exploring Collective... Read More

September 22, 2021
by Victoria Turner
Identity Authentication Key Piece of Cybersecurity Puzzle

WASHINGTON -- Identity authentication is taking a front-and-center role in the administration's approach to ensuring robust cybersecurity across the U.S.... Read More

WASHINGTON -- Identity authentication is taking a front-and-center role in the administration's approach to ensuring robust cybersecurity across the U.S. government, according to Carole House, director of cybersecurity and secure digital Innovation at the White House National Security Council.  It “sits at the heart of zero... Read More

September 1, 2021
by Tom Ramstack
Executives Advocate for Legislation to Unite Government and Private Cybersecurity

WASHINGTON -- A cybersecurity expert told a congressional panel Wednesday that private industry alone cannot be expected to effectively confront... Read More

WASHINGTON -- A cybersecurity expert told a congressional panel Wednesday that private industry alone cannot be expected to effectively confront the kinds of cyberattacks that have wreaked havoc on U.S. computer networks in recent years. He testified to a House Homeland Security subcommittee as it considers... Read More

August 27, 2021
by Reece Nations
FBI Warns of New Hive Ransomware Threat

WASHINGTON — The Federal Bureau of Investigation distributed a Flash report on Friday warning of indicators of compromise from the... Read More

WASHINGTON — The Federal Bureau of Investigation distributed a Flash report on Friday warning of indicators of compromise from the Hive ransomware known to have infiltrated business networks. The ransomware utilizes multiple mechanisms as attachments to gain access and “Remote Desktop Protocol” to operate once embedded,... Read More

News From The Well
Exit mobile version