Cybersecurity and Cyberwarfare

[Commentary] The US publicly attributes the massive “WannaCry” cyberattack to North Korea. The attack spread indiscriminately across the world in May. It encrypted and rendered useless hundreds of thousands of computers in hospitals, schools, businesses and homes. While victims received ransom demands, paying did not unlock their computers. It was cowardly, costly and careless. The attack was widespread and cost billions, and North Korea is directly responsible. We do not make this allegation lightly. It is based on evidence. We are not alone with our findings, either.

Federal Communications Commission Chairman Ajit Pai asked the Universal Service Administrative Company Board of Directors to redouble its efforts at oversight -- specifically in the areas of information technology and security. He said USAC's technology problems are why the FCC does not have a fully functional E-Rate Productivity Center or a Lifeline National Verifier.

In a letter sent to the Federal Communications Commission , 18 attorneys general from around the country called on the agency to delay the Dec 14 vote on a repeal of net neutrality protections. The 11th-hour letter, sent by the Oregon attorney general and signed by representatives of 17 states and DC, follows a high-profile press conference from the New York attorney general, who said the FCC had declined to investigate net neutrality comments posted under stolen identities.

The Federal Communications Commissions' public comment period on its plans to repeal net neutrality protections was bombarded with bots, memes, and input from people who don't actually exist. So, with the FCC declining to investigate its own comments, we decided to undertake an analysis of our own. We confirmed six bots and 11 form letters.

The Wall Street Journal has uncovered thousands of fraudulent comments on regulatory dockets at federal agencies, some using what appear to be stolen identities posted by computers programmed to pile comments onto the dockets. After sending surveys to nearly 1 million people—predominantly from the FCC docket—the Journal found a much wider problem than previously reported, including nearly 7,800 people who told the Journal comments posted on federal dockets in their names were fakes.

President Donald Trump signed into law on Dec 12 legislation that bans the use of Kaspersky Lab within the US government, capping a months-long effort to purge the Moscow-based antivirus firm from federal agencies amid concerns it was vulnerable to Kremlin influence. The ban, included as part of a broader defense policy spending bill that Trump signed, reinforces a directive issued by the Trump administration in September that civilian agencies remove Kaspersky Lab software within 90 days. The law applies to both civilian and military networks.

Michael Morell is one of the career types who’s broken with decades of practice to confront President Donald Trump. A veteran of nearly three decades in the CIA, Morell rose from within the ranks to become the agency’s longtime deputy director, twice serving as its acting leader before retiring during President Barack Obama’s second term. In the summer of 2016, he broke with tradition to endorse Hillary Clinton over Trump, and he has continued to sound the alarm ever since.

Federal Communications Commission General Counsel Thomas Johnson said the agency must “respectfully decline” requests from New York Attorney General Eric Schneiderman as part of the AG’s investigation into the fraudulent use of names on comments in the net neutrality rollback proceeding. Johnson said revealing the logs of IP addresses for some comments raises “significant personal privacy concerns” and could also endanger the security of the commission’s comment system.