« previous next »
Pages: [1]   Go Down

Author Topic: An Experiment Showed that the Military Must Change Its Cybersecurity Approach  (Read 280 times)

0 Members and 1 Guest are viewing this topic.

Offline rangerrebew

  • TBR Contributor
  • *****
  • Posts: 167,540
An Experiment Showed that the Military Must Change Its Cybersecurity Approach
« on: August 18, 2022, 11:43:58 am »
An Experiment Showed that the Military Must Change Its Cybersecurity Approach
The Defense Department’s current “checklist” approach can’t keep its networks safe.
PATRICK TUCKER | AUGUST 16, 2022
CYBER NAVY JADC2
   
Two years ago, a pair of Navy information leaders decided to attack their own networks—and not just once or twice a year during scheduled exercises, but far more frequently, and unannounced. Now they’re trying to get the rest of the Navy—and the Pentagon—to follow suit.

Their experiment showed that frequent, automated red-teaming reveals which vulnerabilities are the most dangerous, the easiest for an attacker to exploit with the highest impact—information they wouldn’t have otherwise, said Aaron Weis, the Navy’s chief information officer, or CIO, and Scott Bischoff, the command information officer at the Naval Postgraduate School.

And it’s far more effective than the way the Defense Department currently handles cybersecurity: with checklists of steps taken, patches implemented, and so on.

https://www.defenseone.com/technology/2022/08/experiment-showed-military-must-change-its-cybersecurity-approach/375925/
Logged
The legitimate powers of government extend to such acts only as are injurious to others. But it does me no injury for my neighbor to say there are twenty gods, or no god. It neither picks my pocket nor breaks my leg.
Thomas Jefferson

Offline Kamaji

  • Hero Member
  • *****
  • Posts: 58,200
Re: An Experiment Showed that the Military Must Change Its Cybersecurity Approach
« Reply #1 on: August 18, 2022, 12:13:56 pm »
It's call pen testing (penetration testing) and companies that are really interested in actual security, rather than virtue-signalling, hire pen testing teams to do precisely this.  It's a little surprising that the military doesn't.
Logged

Offline rangerrebew

  • TBR Contributor
  • *****
  • Posts: 167,540
Re: An Experiment Showed that the Military Must Change Its Cybersecurity Approach
« Reply #2 on: August 19, 2022, 10:02:36 am »
Quote from: Kamaji on August 18, 2022, 12:13:56 pm
   It's a little surprising that the military doesn't.

Might the name Milley enter here? :pondering:
Logged
The legitimate powers of government extend to such acts only as are injurious to others. But it does me no injury for my neighbor to say there are twenty gods, or no god. It neither picks my pocket nor breaks my leg.
Thomas Jefferson

Offline EdinVA

  • Hero Member
  • *****
  • Posts: 8,584
  • Gender: Male
Re: An Experiment Showed that the Military Must Change Its Cybersecurity Approach
« Reply #3 on: August 19, 2022, 12:22:35 pm »
This whole cyber security thing just strikes me much the same way climate junk does....
Putting a 100% lock and internet access is impossible.  Last I read there are 10's of millions of serious hackers and 30,000 web sites are hacked per day.
A "lock" only keeps honest people honest, if a crook wants in, they will get in.  You can detect the intrusion and somewhat track it but prevention is nothing but a hole in the water to pour money into.

The only real security is to get sensitive information away from the web...
Logged
Pages: [1]   Go Up
« previous next »