Recent foreign hacking into federal government systems is not the equivalent of a cyber Pearl Harbor, but experts say the feds are badly behind the private sector when it comes to addressing the threat.
A series of reported hacks from China and Russia into federal personnel databases is triggering the concern, as anywhere from four to fourteen million current and former government employees had their personal data compromised. Applicants for federal positions are also at risk.
“I don’t know whether I’d call it the Pearl Harbor. The cyber analysts have been trying to use that term for quite awhile now. I guess this is one of those times you could theoretically use the term,” said Heritage Foundation cyber security expert Riley Walters.
He says the data breach of millions of people is very serious and could lead to plenty of problems, but he says the most vital national security assets are much better protected and are not compromised.
“I think it comes down to risk. When you’ve got [the Defense Department], you’ve got technical equipment, actual undercover agents, state secrets and methods for security in the future. It’s very direct, kinetic security information,” said Walters.
But as impressed as Walters is with the defense and intelligence cyber security apparatus, he says the government overall is playing catch-up.
“The government, compared to the private sector, is not necessarily as good in some areas for their cyber security,” said Walters. “When you get into OPM or the VA it’s a little more system and a little more shaky. This is certainly an area where cyber hackers can find a way into federal systems.”
Walters says one major reason the feds are lagging behind the private sector and other governments in security is a simple lack of due diligence.
“The government is a bit slow in updating its systems. Since systems do upgrade so fast so regularly, it’s hard for them to keep pace like a private company does,” he said.
That inability to keep up with the competition has Walters very skeptical about a larger government role in running the internet.
“Here at the Heritage Foundation, we like to think that the federal government wouldn’t be so good at regulating cyber security. If they can’t even update their systems as regularly as they need to, then how can you update regulations as quick as you need to,” said Walters.
Walters says the greatest hacking threats come from China, Russia, Iran and North Korea. He says they have different specialties. China is focused on securing information on as many people as possible. Iran and North Korea prioritize the shutting down of websites. He says Russia is the best at not leaving any digital footprints.
The threat is only going to get worse. Walters says it’s a product of the insatiable demand for more data.
“Over the past several years, we’ve just seen more reliance on big data and the internet. So obviously there’s a correlation with the increasing number of cyber attacks,” he said.
