According to the nation’s top cyber defender, the US military has gone on the offensive against ransomware groups as US corporations increasingly become targets of malware attacks.
According to Gen. Paul M. Nakasone, the chief of US Cyber Command and director of the National Security Agency, reining ransomware attacks was considered as the job of law enforcement agencies until about nine months ago. Attacks on the Colonial Pipeline and JBS meat facilities, on the other hand, have been “impacting our key infrastructure,” according to Nakasone, prompting federal agencies to step up intelligence gathering and sharing on ransomware organizations. According to the nation’s top cyber defender, the US military has gone on the offensive against ransomware groups as US corporations increasingly become targets of malware attacks.
According to Gen. Paul M. Nakasone, the chief of US Cyber Command and director of the National Security Agency, reining in ransomware attacks was considered as the job of law enforcement agencies until about nine months ago. Attacks on the Colonial Pipeline and JBS meat facilities, on the other hand, have been “impacting our key infrastructure,” according to Nakasone, prompting federal agencies to step up intelligence gathering and sharing on ransomware organizations.
Following a series of cyberattacks on the federal government and commercial organizations, the heightened activity has reignited concerns about the vulnerability of critical infrastructure. In May, a catastrophic ransomware attack forced the shutdown of a major US petroleum pipeline, raising fears of massive gas shortages throughout the East Coast. A month later, JBS USA, one of the country’s largest meat producers, was hit by ransomware, which briefly shut down processing units.
Attackers utilize code to grab control of a computer system, like the one used on Colonial, and then demand money to unlock it. For example, the global WannaCry ransomware attacks in 2017 paralyzed computer systems at hospitals, banks, and phone companies. Ransomware attacks have also hampered city governments in the United States. In May, President Joe Biden issued an executive order aimed at strengthening the United States’ cybersecurity defenses, citing the attack on the Colonial Pipeline as evidence of the need to do more to defend critical infrastructure. The order outlined a number of steps aimed at strengthening the country’s cybersecurity, including the removal of contractual barriers to reporting federal agency breaches, the reporting of severe cyberattacks within three days, and the creation of a Cybersecurity Safety Review Board to investigate major incidents.
