This is a perfect example of a shift from quantity to quality in terms of the Chinese cyber threat.
This breach in the greater context of other compromises and data losses within the federal government should cause everyone to pause. Great debate has taken place in our nation’s capital over the last several months concerning cyber legislation to encourage data exchanges between and within the public and private sectors and to more firmly regulate cyber preparedness for US businesses. Yet in that same period of time, we have this latest breach couples with significant losses at the State Department and the IRS. I sincerely believe our government needs to have an inward focus in the short term before pushing for larger legislative initiatives.
This article details yet another example of an attack against the freedoms of the Internet potentially by an oppressive nation state.
As always, this is an interesting insight by Mr. Krebs. Anthem should be on the radar of most Americans. This breach was damaging enough, but in reality it could have been much worse. We should take to heart the threats at hand and prepare accordingly.
Feel free to insert your “Chinese hackers caused polar vortex” jokes here…
All kidding aside, this article exposes yet another chilling flaw in our national infrastructure. The fact that so many critical systems had so few basic security features installed and lacked even fundamental patching and vulnerability management should disturb and outrage all Americans. These satellites were not private entities or simply the resources of the Department of Commerce. These were shared devices with the US Air Force and a critical component of several key systems. Initial vulnerabilities were discovered on July but still remain unaddressed. That window of time is simply too large.
Congress loves hearings. Why are they not meeting about this? Where is the outrage? Where is the concern? If homerun records were at stake, I bet someone would have spoken up by now.