8 Big Changes Expected After The Colonial Pipeline Hack: RSA 2021
From new disclosure rules to the hardening of critical infrastructure systems to retaliatory actions from the U.S. government, here are eight big changes expected after the Colonial Pipeline hack.
Improve Information-Sharing Practices
The industry needs to find better ways to share cyberthreat information so that defenders can have a comprehensive view of the world and more effectively combat the threats they face, according to Barracuda President and CEO BJ Jenkins. Information, however, is a competitive weapon, and it’s therefore hard to get attack victims to share details that could be helpful to competitors, he said.
The government has an important role to play around coordination, standards and awareness, and Jenkins would like to see data-sharing standards as well as minimum requirements around for incident disclosure. Companies tend to be very parochial and have historically been too interested in protecting their brand or reputation rather than the security or privacy of their customers, according to Jenkins.
Information sharing today just takes way too long even though speed and coordination are needed when responding to a widespread incident like the Colonial Pipeline ransomware attack, Jenkins said. Improving processes and engagement around data sharing will help ensure that knowledge, fixes and remediation strategies quickly make their way to companies that could be targeted in the future.