SEE THE 1787 CYBERSECURITY PLAN HERE
In early May 2021, Colonial Pipeline, a private company, announced it had been the victim of a ransomware attack. A Russian-speaking criminal extortion ring called DarkSide had taken control of a 5,500-mile pipeline operated by Colonial, then sent the company a ransom note that said, “Your computers and servers are encrypted, backups are deleted. We use strong encryption algorithms, so you cannot decrypt your data.”
The note continued: “You can restore everything by purchasing a special program from us — universal decryptor,” which “will restore all your network.” < Note: Remarkably, within a month, the U.S. Department of Justice had recovered $2.3 million of the Bitcoin ransom Colonial paid to DarkSide, defying the notion that cryptocurrency is untraceable. >
In addition, DarkSide stole over 6 million pages of Colonial’s proprietary data, threatening that the information would be “automatically published” online if the ransom was not paid. Colonial Pipeline provides 45 percent of the East Coast’s fuel supplies (i.e., gasoline, jet fuel and diesel) so needless to say, the disruption in the Northeast was massive.
Three weeks later, multiple meat processing plants operated by JBS – the world’s largest meat supplier — were the target of a massive cyberattack, as was Kaseya, an IT company, a few weeks after that. U.S. intelligence officials confirmed the perpetrator of both attacks to be REvil, a cybercriminal, “ransom for service” organization based in Russia that allows other criminal groups to use its software for a fee.
< In November 2021, American and European authorities announced the arrest of several members of REvil, two of which were found in Romania. Around the same time, a Ukrainian national named Yaroslav Vasinskyi was indicted for the attack against Kaseya. His alleged partner in crime, a Russian national, is still at large. >
Cyberattacks, cyber-terrorism and cyber-espionage pose an increasingly significant risk to the United States. This is a top national security priority of the highest order. It is imperative that we have a comprehensive national cybersecurity strategy that thoroughly protects everything from our infrastructure to our intelligence databases.
Cyber threats are more ominous now that we have become increasingly reliant on technology, and information technology and physical infrastructure have become more interconnected. Malicious cyber actors, nation-states and just plain bad people use cyberspace to do everything from steal information to disrupt the delivery of basic services to interfere in our elections, not to mention other crimes such as child pornography, financial fraud, and intellectual property theft.
A strong, responsible plan for cybersecurity is more important than ever. If you think about it, our national crisis-management system was put to the test when the coronavirus hit America. Needless to say, we didn't do so great.
A white paper released by the Cyberspace Solarium Commission — a commission established to "develop a consensus on a strategic approach to defending the United States in cyberspace against cyber attacks of significant consequences" — put it this way:
The COVID-19 pandemic illustrates the challenge of ensuring resilience and continuity in a connected world. Many of the effects of this new breed of crisis can be significantly ameliorated through advance preparations that yield resilience, coherence, and focus as it spreads rapidly through the entire system, stressing everything from emergency services and supply chains to basic human needs and mental health. The pandemic produces cascading effects and high levels of uncertainty. It has undermined normal policymaking processes and, in the absence of the requisite preparedness, has forced decision makers to craft hasty and ad hoc emergency responses.
Unless a new approach is devised, crises like COVID-19 will continue to challenge the modern American way of life each time they emerge. Read the entire report here.
Another of the Commission's reports had this to say:
The reality is that we are dangerously insecure in cyber. Your entire life — your paycheck, your health care, your electricity — increasingly relies on networks of digital devices that store, process, and analyze data. These networks are vulnerable, if not already compromised. Our country has lost hundreds of billions of dollars to nation-state-sponsored intellectual property theft using cyber espionage. A major cyberattack on the nation’s critical infrastructure and economic system would create chaos and lasting damage exceeding that wreaked by fires in California, floods in the Midwest, and hurricanes in the Southeast. Read the entire report here.
United States. Department of Homeland Security. "Russian Government Cyber Activity Targeting Energy and Other Critical Infrastructure Sectors." United
States Computer Emergency Readiness Team. 15 Mar 2018
United States. "Final Report." Cyberspace Solarium Commission. March 2020
United States. "Cybersecurity Lessons From the Pandemic." White Paper One. Cyberspace Solarium Commission. May 2020