Chris Krebs on Next Frontier, China on Data Security, Ransomware Attacks Abound - September 8, 2020
And It's Patch Tuesday
Chris Krebs on the Next Frontier of Risk Management
The head of DHS’ CISA thinks that functionality disruption of remote management is the next frontier of risk management, which is why the agency sent out an alert on the topic a few weeks back.
”We're seeing remote maintenance of operational technology and industrial control systems,” he told folks attending the Billington Cybersecurity Summit. “And that just opens the door for bad activity to come into a network and operational environment and really disrupt functionality…for us probably the real next frontier of risk management is just disrupting functionality rather than compromising the privacy or security of data,” he said.
A couple of other noteworthy Krebs quotes from the Summit:
On paying off sanctioned Evil Corp attackers: “When you think about paying off a ransom, you can't do that under the sanctions and the law. You have to actually go to the Treasury Department and ask for a license or an exemption, and they have been loathe…
Keep reading with a 7-day free trial
Subscribe to Metacurity to keep reading this post and get 7 days of free access to the full post archives.