Cyberattacks threaten global security

Director of US National Security Agency discusses cyber warfare at ASU event

Graphic of a lock on a shield with coding and computer chips around it.
|
December 01, 2022

The United States is engaged in a quiet but potentially devastating intelligence, cyber and information war, with the greatest threats to national security coming from China, Russia, Iran and North Korea. 

That was the topic of a webinar on “Confronting Current and Future Cybersecurity Threats,” hosted Wednesday by Arizona State University’s Center on the Future of War.

“As you think about what computers have evolved to these days, they've gotten so much more entwined in everything we do — whether it's the information on our computer desktop all the way out to the military's weapons,” said Rob Joyce, director of the U.S. National Security Agency’s cybersecurity directorate.

Part of the mission of the agency is to partner with allies, private industry and academics to strengthen awareness and collaboration, and advance the state of cybersecurity.

Joyce was joined by retired Lt. Gen. Robert Schmidle, professor of practice in the Center on the Future of War and School of Politics and Global Studies, and Daniel Rothenberg, a professor of practice in the School of Politics and Global Studies and co-director of the Center on the Future of War.

Rothenberg asked if a devastating and fundamentally destabilizing cyberattack is imminent and inevitable in American society.

“Yeah it is,” said Joyce, citing the 2021 ransomware attack on the Colonial Pipeline, which was caused by one compromised password that led to major fuel shortages.  

“So, it is not unimaginable.” 

Beyond government computers

A cyberattack on the U.S. government would be far-reaching, going beyond its official web of networks to thousands of partner companies, defense contractors, subcontractors and more.  

According to Joyce, the ecosystem consists of 30,000 cleared companies that work as subcontractors and 300,000 companies that feed into the defense department. It is an enormous amount of tech surface that adversaries can get into in order to steal information, manipulate data and more.

“So we were frankly seeing a lot of stuff lost in that ecosystem,” Joyce said. 

Joyce said that anything from civic governments to companies that are assaulted are a national security issue. Hospitals, schools and manufacturing plants are all driven and dependent on computers. 

“Criminals understand that If you have something that people depend on, they can exploit it,” Joyce said.

Cyber solutions

The NSA’s Cybersecurity Collaboration Center works with industry partners to prevent and eliminate foreign cyber threats. 

Joyce explained there are ongoing offensive and defensive efforts to comprehend and combat cyber threats — exploiting the enemy’s web system while at the same time trying to keep them out of U.S. networks. 

Finding out the enemy's secrets puts the U.S. on the path to security, he said.

What do adversaries know or intend to do against those military communication systems? And what are the adversaries doing to get our classified communications? These are questions the NSA must ask, Joyce said.  

“You know, it takes a thief to catch a thief,” Joyce said. “So when you work on both sides of this … you get a better appreciation for the practical things the adversary will do to win, and that's really what it's all about.” 

Desktop defense 

Schmidle asked what people could do to protect their personal computers from attacks.

Joyce said the number one thing to do is install updates as soon as they come out and have a solid password management system. Security that is breached on one site can be an entry point to all personal information. 

“Criminals are going around, and they're rattling the doorknobs,” Joyce said.

“It's the equivalent of a criminal finding a car that's unlocked and just taking whatever they find inside. If you lock your car, you're safe.” 

Joyce said that there is a real need to be vigilant in improving the technology but, “it is not going to be any one entity that solves the problem.”  

It's not just regulation, or collaboration between government and private industry, or international coalitions or laws that are the answer, he said.

“But it's going to be a bit of all of that.”

Top photo courtesy iStock

More Law, journalism and politics

 

Portrait of professor in his office

School of Politics and Global Studies director's new book explores mass violence

Why do people commit atrocities and why are certain groups, including religious and ethnic, more vulnerable to large-scale violence? These questions are explored in a new book by Güneş Murat Tezcür…

Read more
Social justice Politics
A group of four faculty members pose for a photo in an office.

ASU faculty contributing to improvement of Wikipedia

Many academics have a love-hate relationship with Wikipedia. While the website has information about almost anything you can imagine, the credibility of that information is sometimes suspect. Tracy…

Read more
Education Social science Technology
Exteriror of the ASU California Center building in Los Angeles.

ASU Law students gain vital experience through Los Angeles location

Students at the Sandra Day O’Connor College of Law at Arizona State University may be concentrated in the school’s downtown Phoenix headquarters, but they have more choices than ever when it comes to…

Read more
Law Arts and Entertainment Sports