Tag Archive for: offense

Going from defense to offense against China’s Volt Typhoon APT group

/in


What do the Super Bowl and cybersecurity have in common?

To win the big games, teams need both offense and defense. On Jan. 31, the U.S. Government did just that when they disrupted the KV Botnet used by China-sponsored Volt Typhoon.

For far too long, cybersecurity has been considered “preventive” or “reactive.” The industry was developed around defending and protecting assets. The concept of active defense gained interest, but it was misinterpreted and thought of instead as hacking back.

The National Institute of Standards and Technology (NIST) has defined active cyber defense as “synchronized, real-time capability to discover, detect, analyze, and mitigate threats and vulnerabilities.” Active defense still means playing defense.

So, how do we go on offense? As an industry, our approach has become littered with legal pitfalls, significant risks and a lack of ongoing capability. Military organizations are uniquely designed to create and sustain long-term offensive cyberspace operations. As sexy and enticing as that sounds, it’s restricted to operations against foreign adversaries and nation-states as a matter of law. But that’s not the only option we have for a good offense.

Enter the FBI

The FBI operates as the primary federal investigative organization tasked with responding to cyberattacks and intrusions. We are now witnessing the rise of offensive cyber operations by a domestic law enforcement agency that has demonstrated a significant ability to identify, penetrate, and dismantle criminal and nation-state networks. What once was an anomaly has matured to become a standard part of the investigative arsenal available to actively engage and disrupt transnational criminal groups and nation-state actors.

In November 2022, I had the opportunity to participate in a panel discussion with the FBI Supervisory Special Agent, who led the investigation into the takedown of the Hive ransomware group. What was striking for me was how far the FBI had come since the days 23 years prior when I spent a year conducting in-service training for their Computer Analysis Response Team: CART. The student had become the master.

The dismantling of Hive was directed at a transnational criminal group,…

Source…

How prepared is the US to fend off cyber warfare? Better at offense than defense, author says

/in

  1. How prepared is the US to fend off cyber warfare? Better at offense than defense, author says  PBS NewsHour

  2. Confronting the reality of cyber warfare  Washington Times

    3. Full coverage

cyber warfare news – read more

Intel chief wants to ‘play offense’ on cyber warfare

/in

  1. Intel chief wants to ‘play offense’ on cyber warfare  The Hill

  2. Top intel official: We’re about to go on offense in cyberwar with Russia  Hot Air

    3. Full coverage

cyber warfare news – read more

‘Dicey Issue’ to Consider Going on Cyber Warfare Offense, Says DNI

/in

  1. ‘Dicey Issue’ to Consider Going on Cyber Warfare Offense, Says DNI  HSToday

  2. Senators demand answers on Russian cyber interference  Defense Systems
  3. Senators press DNI on Russian interference, cyber  FCW.com

    4. Full coverage

cyber warfare news – read more