US Cyber Command to be expanded

[Grey Havoc]

Via the Drudge Report:

Pentagon to boost cybersecurity force (Washington Post)

The Pentagon has approved a major expansion of its cybersecurity force over the next several years, increasing its size more than fivefold to bolster the nation’s ability to defend critical computer systems and conduct offensive computer operations against foreign adversaries, according to U.S. officials.

The move, requested by the head of the Defense Department’s Cyber Command, is part of an effort to turn an organization that has focused largely on defensive measures into the equivalent of an Internet-era fighting force. The command, made up of about 900 personnel, will expand to include 4,900 troops and civilians.

Details of the plan have not been finalized, but the decision to expand the Cyber Command was made by senior Pentagon officials late last year in recognition of a growing threat in cyberspace, said officials, who spoke on the condition of anonymity because the expansion has not been formally announced. The gravity of that threat, they said, has been highlighted by a string of sabotage attacks, including one in which a virus was used to wipe dat a from more than 30,000 computers at a Saudi Arabian state oil company last summer.

The plan calls for the creation of three types of forces under the Cyber Command: “national mission forces” to protect computer systems that undergird electrical grids, power plants and other infrastructure deemed critical to national and economic security; “combat mission forces” to help commanders abroad plan and execute attacks or other offensive operations; and “cyber protection forces” to fortify the Defense Department’s networks.

Targeting ‘malicious actors’

Although the command was established three years ago for some of these purposes, it has largely been consumed by the need to develop policy and legal frameworks and ensure that the military networks are defended. Current and former defense officials said the plan will allow the command to better fulfill its mission.

“Given the malicious actors that are out there and the development of the technology, in my mind, there’s little doubt that some adversary is going to attempt a significant cyberattack on the United States at some point,” said William J. Lynn III, a former deputy defense secretary who helped fashion the Pentagon’s cybersecurity strategy. “The only question is whether we’re going to take the necessary steps like this one to deflect the impact of the attack in advance or . . . read about the steps we should have taken in some post-attack commission report.”

Although generally agreed to by the military’s service chiefs, the plan has raised concerns about how the Army, Navy, Marines and Air Force will find so many qualified cybersecurity personnel and train them. It also raises deeper issues — which are likely to intensify as the Cyber Command grows over the years — about how closely the command should be aligned with the National Security Agency, the giant electronic-spying agency that provides much of its intelligence support.

The head of the Cyber Command, Gen. Keith B. Alexander, is also the director of the NSA, which employs some of the nation’s most advanced cyber-operations specialists.

The new force structure was alluded to last fall in a major speech by Defense Secretary Leon E. Panetta, who said, “Our mission is to defend the nation,” and noted that the department was “putting in place the policies and organizations we need to execute the mission.”

Hmmmm.

 

[Grey Havoc]

http://www.washingtonpost.com/world/national-security/white-house-to-preserve-controversial-policy-on-nsa-cyber-command-leadership/2013/12/13/4bb56a48-6403-11e3-a373-0f9f2d1c2b61_story.html

 

[jsport]

Military Must Do More to Tackle Cyber Threats to 3D Printing, Watchdog Says

Another key problem identified in the report is the ongoing failure to update computer operating systems.

www.military.com

 

[jsport]

Information Warfare Looms Larger in Russia’s New Security Strategy

Kremlin’s first update in six years decries foreign influence, calls for more Russian info ops.

www.defenseone.com

 

[jsport]

China tightens control over cybersecurity in data crackdown

The ruling party’s military wing is a global cyber warfare leader, and Beijing is increasingly sensitive about control over information about its people and economy.

www.c4isrnet.com

 

[jsport]

What you should know about ‘Bitskrieg: The New Challenge of Cyberwarfare’

It’s less about an arms race and more about an organizational race.

www.militarytimes.com

 

[jsport]

Pentagon creates new overseer for innovation: chief digital and artificial intelligence officer - Breaking Defense

The Joint Artificial Intelligence Center, Defense Digital Service and Chief Data Officer will now report a new Chief Digital and Artificial Intelligence officer

breakingdefense.com

 

[jsport]

It Is Time to Counter China’s Data Strategy

The Cyberspace Administration of China (CAC) closed public feedback last month on a draft regulation to secure and manage data according to its importance to national security. While ostensibly a technical...

www.fdd.org

 

[jsport]

Geopolitics keeps overruling cyber norms, so what's the alternative? - Breaking Defense

Laura G. Brent of the Center for a New American Security argues that cyber weapons have become a built-in part of the geopolitical strategies for governments around the world - and norms of behavior are now in the rear view mirror.

breakingdefense.com

 

[jsport]

Viral letter begging the military to ‘fix our computers’ reaches Pentagon leaders

Chief Master Sergeant of the Air Force JoAnne Bass and Air Force Secretary Frank Kendall said there's "no excuse."

taskandpurpose.com

 

[jsport]

NSA Can Now Order Other Agencies to Fix Their IT Systems

A White House memo grants the intelligence agency new powers under the May 2021 executive order on cybersecurity.

www.defenseone.com

 

[jsport]

Trollfare: How to Recognize and Fight Off Online Psyops

It starts by understanding common tactics: distort, distract, dismiss, deny, and dismay.

www.defenseone.com

 

[jsport]

Proposed 'Hack-Back' Bill Tells DHS To Study Allowing Companies To Retaliate - Breaking Defense

"So what will happen is you'll be destroying your grandmother's computer in Kansas that has been taken over," cyber policy expert Herb Lin said. "It's not clear to me that that's the best way."

breakingdefense.com

 

[jsport]

Senators Introduce Bill Requiring Notification Of Cyber Incidents Within 24 Hours - Breaking Defense

"We shouldn’t be relying on voluntary reporting to protect our critical infrastructure," Sen. Warner said.

breakingdefense.com

 

[jsport]

Russia’s Latest Hack Shows How Useful ‘Criminal Groups’ Are to the Kremlin

Russian coders have little choice but to work with their government, which in turn denies any knowledge of their activities. That’s why hacking activity shows no sign of slowing.

www.defenseone.com

 

[jsport]

Russia and China devote more cyber forces to offensive operations than US, says new report

Russia and China have each dedicated significantly more military cyber forces to conducting cyber effects than the United States, according to IISS.

www.defensenews.com

 

[jsport]

The Intelligence Game is Changing. Are We Ready?

The former CIA Officers lend their perspective to the the issue of using more commercially-sourced data in Intelligence.

www.thecipherbrief.com

 

[jsport]

Demilitarize civilian cyber defense, and you’ll gain deterrence

By constantly flexing the military’s cyber muscles to defend the homeland from inbound criminal cyber activity, the public demand for a broad federal response to illegal cyber activity is satisfied. Still, over time, the potential adversary will understand our military’s offensive cyber...

www.defensenews.com

 

[jsport]

Are we ready for war in the infosphere?

How can the U.S. and rule-of-law democracies counter increasingly sophisticated and weaponized disinformation? How should they wage “information warfare” during period of putative peac…

sites.duke.edu

 

[Forest Green]

Hughes wins bid for 5G/satellite network under DoD experiment - Breaking Defense

For DoD applications, 5G needs high levels of cybersecurity. Stand-alone 5G networks, like the Hughes network, are inherently more secure than older networks where 5G is added onto the existing network," Rajeev Gopal, vice president, Advanced Programs, told Breaking Defense.

breakingdefense.com

 

[aonestudio]

View: https://www.youtube.com/watch?v=VA4e0NqyYMw

 

[X-39]

DoD releases zero-trust strategy to thwart hackers who ‘often’ breach network ‘perimeter’​

After months of teasing its zero-trust strategy, the Defense Department today released its plan outlining what it’ll take to achieve “targeted zero trust” by fiscal 2027 to address current threats, including those posed by adversaries like China — starting with a zero-trust cloud pilot this fiscal year.

“With zero trust we are assuming that a network is already compromised and through recurring user authentication and authentic authorization, we will thwart and frustrate an adversary from moving through a network and also quickly identify them and mitigate damage and the vulnerability they may have exploited,”

The strategy is broken down into types of zero-trust goals: “targeted” zero trust, which is a required minimal set of activities DoD and its components need to achieve by FY27, and “advanced” zero trust, which provides the highest level of protection

“So we defined target as that level of ability where we’re actually containing, slowing down or stopping the adversary from exploiting our networks,” Resnick said. “So compared to today, where an adversary could do an attack and then go laterally through the network frequently under the noise floor of detection, with zero trust, that’s not going to be possible.”

DoD releases zero-trust strategy to thwart hackers who 'often' breach network 'perimeter' - Breaking Defense

“Naysayers will argue that the strategy is five years or more too late, and although they might be correct, the bigger takeaway is that the DoD has found religion on cybersecurity and they are addressing it architecturally, aiming for a lasting and measurable effect,” Eric Noonan, CEO of...

breakingdefense.com

 

[X-39]

Hopefully with this new strategy they might be truly able from now in preventing the would be hackers from doing anything they want after god knows how many times US military networks have been breached and instead ruin their day with something that resembles this scenario

 

[jsport]

The NSA’s Brain Drain Has a Silver Lining

Agency leaders should use former employees to recruit new talent and cement public-private working relationships.

www.defenseone.com