Data Security

Homeland Security Warns Cyber 9/11 Could Shut Down U.S.

Homeland Security Warns Cyber 9/11 Could Shut Down U.S.
January 30, 2013 9:47AM

Bookmark and Share
"Ideally, Congress would recognize and act on the threat we face as a nation when it comes to defending ourselves against cyber war and cyber terrorism," said security expert Chris Petersen. "If signing an executive order does nothing other than help move cyber security spending up the stack of 2013 IT budgets, it will be a win for us all."

APC has an established a reputation for solid products that virtually pay for themselves upon installation. Who has time to spend worrying about system downtime? APC makes it easy for you to focus on business growth instead of business downtime with reliable data center systems and IT solutions. Learn more here.

U.S. Secretary of Homeland Security Janet Napolitano said Friday she believes a "cyber 9/11" could happen "imminently." A coordinated terrorist cyberattack could effectively shut down the country, she says, and more needs to be done to prepare.

"We shouldn't wait until there is a 9/11 in the cyber world," Napolitano told Reuters news service, referring to the massive terrorist attacks against the U.S. on September 11, 2001. "There are things we can and should be doing right now that, if not prevent, would mitigate the extent of damage."

The Real Risk

Chris Petersen, chief technology officer of LogRhythm, a log management and SIEM 2.0 provider, said in reaction to Napolitano's comments that it's unfortunate President Obama needs to consider signing an executive order on cyber security.

"Ideally, Congress would recognize and act on the threat we face as a nation when it comes to defending ourselves against cyber war and cyber terrorism. These threats are real and will only increase in the years to come -- drastically and swiftly," Petersen said. "If signing an executive order does nothing other than help move cyber security spending up the stack of 2013 IT budgets, it will be a win for us all."

As Petersen sees it, there are real and valid concerns when it comes to cyber security legislation, a main concern being additional compliance burdens on U.S. companies. While concerns are understandable, he said, the reality is that without a measuring stick, companies won't know if they have gone far enough in protecting themselves. Without enforcement, some companies will just kick the can down the road and hope for the best.

"We appreciate that there are valid concerns and criticisms that will be disclosed through discussion. However, there is real risk in delaying action as we wait years for all opinions and concerns to be aired," Petersen said. "We need immediate action with continued refinement in years to come. For example, this refinement could be an industry taking a self-regulating approach similar to NERC-CIP in the energy sector or PCI in retail."

A Troubling Concept

Amrit Williams, CTO of Lancope, said, given the events of 9/11 it would seem logical that under a massive sustained attack on our critical infrastructure and our digital assets -- both public and private -- it would be warranted for the administration to do whatever would be required to regain control and eliminate the threat. Of course, he admitted, that's easier said than done.

"This is a massive logistical problem, growing even more so as technology advances and becomes adopted as part of our digital fabric. Unfortunately there will be mistakes, errors in judgment, and poorly written policies that may very well lead to significant self-inflicted damage," Williams told us.

The concept that the president, under an emergency situation, can take control of aspects of the Internet -- including non-governmental infrastructures -- is very troubling to Williams. Ultimately, he said, this provides a very real vector for attacking the entire United States in a way that would not normally be afforded to those who wish to do us harm.

"We are entering an era that will be marked by unprecedented attacks on our critical infrastructure," Williams said. "I also believe that ultimately the U.S. government needs to be accountable for ensuring that services are available and the U.S. thrives."

Significant concern comes, as Williams pointed out in conclusion, because, "the U.S. is ill-prepared to deal with mainstream malware outbreaks and unsophisticated network intrusions, let alone a highly coordinated attack that would actually justify such a response."

Tell Us What You Think
Comment:

Name:

PatM.:

Posted: 2013-02-09 @ 5:14am PT
Most of the legislation I'm hearing about has very little to do with security and has everything to do with control. Invoking 9/11 and waving the flag does not impress me at all.

Micaela Gordon:

Posted: 2013-02-01 @ 4:06pm PT
I agree with Petersen. The cyber network needs to be protected now rather then waiting for people to voice their opinions. What could it hurt?

Doomed:

Posted: 2013-01-30 @ 6:41pm PT
I think we are just plain DOOMED!!

CliffOnTheRoad:

Posted: 2013-01-26 @ 9:42pm PT
Too little too late. We need better understanding and government. Dedicated phone lines, not Internet open-doors for power companies. Doom.

Confused:

Posted: 2013-01-26 @ 11:10am PT
@Dave-O: Huh????

Dave-O:

Posted: 2013-01-26 @ 11:08am PT
The Neo-Cons must be close to having all their Cyber Ducks in row.

File Under False Flag.



 Data Security
1. Juniper DDoS for High-IQ Networks
2. Google Hacker Team to Hunt Bugs
3. Cloud Firms Offer Azure Starter Kit
4. FBI Cyber-Expert's Humble Start
5. Chinese Hackers Hit U.S. Officials




 Most Popular Articles
1. IBM Earmarks $3B for Next-Gen Cloud Computing Chips
2. Microsoft Targets CRM in Government Cloud
3. Amazon Unveils Zocalo for Cloud-Based Collaboration
4. Google CEO: Is the 40-Hour Workweek Really Necessary?
5. More Than Half of Networks Not Ready for Internet of Things

Have an informed opinion on this story?
Send a Letter to the Editor.
We want to know what you think.
Send us your Feedback.

 Related Topics  Latest News & Special Reports

  Lenovo Still in Small Windows Tablets
  How Chrome Eats Your Battery Life
  Cisco Woos More Devs with DevNet
  Investor Wants EMC To Spin Off VMware
  Schools Buy Million Chromebooks in Q2

 Technology Marketplace
Big Data
Unlock your enterprise data's potential. Learn how in the research report.
Are you getting everything you can out of your business data?
 
Business Intelligence
Get real-time, cloud-based information services with Neustar.
 
CIO Issues
Secure and retain skilled technology professionals. Learn how.
 
Cloud Computing
Are you getting everything you can out of your business data?
 
Data Storage
Unlock your enterprise data's potential. Learn how in the research report.
 
Enterprise Hardware
Protect your network with APC Smart-UPS battery backup
Cisco UCS Invicta Series flash memory systems
 
Enterprise I.T.
Register for an upcoming ISACA® certification exam today
Secure and retain skilled technology professionals. Learn how.
 
Enterprise Software
Unlock your enterprise data's potential. Learn how in the research report.
 
Hardware
Protect your network with APC Smart-UPS battery backup
Ferocious productivity. A fearless team of pros. Find Out More
Cisco UCS Invicta Series flash memory systems
 
Network Security
Protect your network with APC Smart-UPS battery backup
 
Small Business
Ferocious productivity. A fearless team of pros. Find Out More