Countries are increasing their cyber response budgets — but spending still varies widely
Nations around the world don’t seem to agree on the appropriate amount of money to earmark for cyber defense and incident response, according to an analysis by The Record. But in recent years, almost every country examined has boosted its cyber spending. Through interviews with government officials, public records requests, and estimates from academic and government bodies, The Record was able to obtain a snapshot of the huge gap in spending between cybersecurity programs…
SolarWinds CEO apologizes for blaming an intern, says attack may have started in January 2019
Corporate keynotes at the annual RSA Conference are generally uneventful PR opportunities for executives and vendors. But the chief executive of SolarWinds on Wednesday gave a candid assessment of the company’s supply chain compromise, apologizing for the way the company initially blamed the incident on an intern and providing new details about the timing of the attack…
A CISO describes the emotional impact of ransomware attacks
In the cybersecurity industry, a lot of attention is given to the attackers. Figuring out who is behind an incident, what tools they’re using, and who they might target next can help organizations prevent future breaches. But often very little notice is given to the defenders—the front-line security personnel who work around-the-clock to remediate incidents and recover corporate systems. Jason Lewkowicz talked to The Record recently about the challenges of working through one of these attacks, which included 20-hour days, skipped meals, and intense periods of stress….
How Biden’s new executive order plans to prevent another SolarWinds attack
President Biden signed a sweeping executive order on Wednesday aimed at protecting federal networks, as the East Coast continues to deal with the fallout from a ransomware attack that shut down one of the nation’s largest fuel pipelines for several days. The Biden administration has been drafting the order over the last few months, and is designed less to address an incident like the one experienced by Colonial Pipeline, a privately-owned critical infrastructure operator that is believed to have been hit by a criminal gang, than it is aimed at preventing a future SolarWinds-like incident…
New ransomware task force wants more support for victims who don’t pay
A new government and industry coalition on Thursday put its weight behind a number of aggressive measures aimed at curbing ransomware, including financially supporting victims who refuse to pay attackers and making it easier to track cryptocurrency payments. The Ransomware Task Force, which is being spearheaded by the nonprofit Institute for Security and Technology, contains dozens of members from leading cybersecurity firms and government agencies…
How law enforcement can stay a step ahead of hackers
Cybercrime presents a range of challenges for law enforcement officials around the globe. Investigating and responding to these incidents requires technical expertise, the ability to see beyond borders, and the willingness to pursue cases when attribution may be incredibly difficult, just to name a few. “Generally, [law enforcement agencies] know who the traditional criminals are, but have a hard time to prove what they are doing. In cyber, this is turned around,” says Erik van de Sandt, operational specialist with the Dutch National Police’s National High Tech Crime Unit. “They know what crimes are committed, but not who are behind these acts.”
Cybersecurity investor Ted Schlein: ‘I think the whole landscape needs to be completely rethought’
As someone who has been in the cybersecurity business for three decades, it might come as a surprise that Ted Schlein wants to tear a lot of it up. Schlein, a 25-year veteran of the venture capital giant Kleiner Perkins, thinks both the government and private sector need to embrace radical change to stay competitive in cybersecurity. Companies are too dependent on outdated technologies and practices, like passwords and signature-based detection tools, Schlein says. Organizations and developers must adopt new technologies if they’re going to defend against new threats like deepfakes and SolarWinds-style attacks….
Singapore’s deputy cyber chief on how the city-state became a laboratory for security initiatives
Last spring, professional services firm Deloitte published a study that ranked Singapore as the most exposed country to cyberattacks in the Asia-Pacific region. The city-state was also deemed the most prepared at defending against them. Over the last decade, Singapore has aggressively rolled out a slew of cybersecurity initiatives aimed at protecting its nearly 6 million highly-connected citizens from cyber threats. As a global financial and shipping hub, it took early steps at bolstering critical infrastructure security and reducing barriers to information sharing. More recently, the country has rolled out cybersecurity labels for consumer smart devices, and awards marks of distinctions to companies that have invested heavily in cybersecurity….
‘They knew I was running late to meetings’: Former DHS chief on reports that SolarWinds hackers targeted his emails
Former Acting Secretary for the Department of Homeland Security Chad Wolf on Monday recounted the intense first days of the SolarWinds crisis, and remarked on recent reports that the suspected Russian hackers behind the attack had gained access to his email account. “My first question was: were these unclassified email accounts? The answer was yes,” Wolf said at a virtual talk hosted by the Heritage Foundation. “It’s still concerning, but it would have been even more of a concern if they had access to the lines that DHS does its most sensitive work on.”
White House announces leadership picks for CISA and National Cyber Director role
The Biden administration on Monday said it has picked two National Security Agency veterans to serve in top cybersecurity leadership roles. Chris Inglis will be nominated to serve as the country’s first National Cyber Director, and Jen Easterly will be tapped to run the Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency, or CISA. Both positions require Senate confirmation, which could take several months…