Cybersecurity and Cyberwarfare

This report aims to address a key security vulnerability associated with the Border Gateway Protocol (BGP)—the protocol that underpins the way information is routed across networks. While there is no single solution to address all internet routing vulnerabilities, the roadmap advocates for the adoption of Resource Public Key Infrastructure (RPKI) as a mature, ready-to-implement approach to mitigate BGP’s vulnerabilities. The Roadmap provides 18 key recommendations to network operators, service providers, and federal agencies. They include:

On July 19, 2024, a major global outage was caused by a faulty software update issued by CrowdStrike, a prominent cybersecurity firm.

Federal Communications Commission Chairwoman Jessica Rosenworcel signed a Memorandum of Understanding with Privacy Commissioner of Canada Philippe Dufresne to strengthen information sharing and enforcement cooperation between the two regulators.

Chinese government-backed hackers have penetrated deep into U.S. internet service providers in recent months to spy on their users. The unusually aggressive and sophisticated attacks include access to at least two major U.S.

Rep August Pfluger (R-TX) introduced the Supporting National Security with Spectrum Act, which fully funds the “Rip and Replace” program to remove Chinese equipment from our telecommunications networks.

Seven recommendations to allow the Department of Commerce to assist the next President in implementing a bold agenda to deliver economic prosperity and strong national security, including: 

The Department of Justice's Office of the Inspector General undertook this evaluation to assess the effectiveness of the Department’s information-sharing system related to foreign malign influence directed at U.S. elections, evaluate the Department’s oversight and management of its response, and identify any gaps or duplication among the Department’s efforts in this area.

Across the world, critical businesses and services including airlines, hospitals, train networks and TV stations, were disrupted on July 19 by a global tech outage affecting Microsoft users. A series of outages rippled across the globe as information displays, login systems and broadcasting networks went dark.

A flawed software update sent out by a little-known cybersecurity company caused major computer outages around the world on July 19, affecting airlines, hospitals, emergency responders and scores of other businesses and services. How could that happen? The chaos stemmed from an update sent by CrowdStrike, a cybersecurity company based in Austin, Texas, to businesses that use its software to protect against hackers and online intruders.

In April 2024, AT&T learned that customer data was illegally downloaded from our workspace on a third-party cloud platform.