8 Big Changes Expected After The Colonial Pipeline Hack: RSA 2021
From new disclosure rules to the hardening of critical infrastructure systems to retaliatory actions from the U.S. government, here are eight big changes expected after the Colonial Pipeline hack.
Centralized Policymaking To Learn From Mistakes
The cybersecurity industry needs an organizing agency akin to the National Transportation Safety Board, said Cisco Security Chief Strategy Officer Dug Song. The drive to understand and analyze cyberattacks from a national security perspective is important and requires the right technology and policies, he said.
“In cybersecurity, we keep crashing the plane and saying, ‘Woe is me,’” Song told CRN. “We are the country at the most risk of digital disruption because we are the most advanced.” Song said the interdependence of our system and technology has left us exposed to random critical attackers who never wanted to get the attention of or be chased by the U.S. government.
A list of the materials used during the software build process should be readily available since—like an ingredient list for a food product—it allows the user to get a better sense of if there’s anything in there that could harm them, Song said. “Sometimes the dog does catch the car,” Song said. “We are all now targets of chance as much as targets of choice.”