In a recent move aimed at safeguarding American tech and telecommunications infrastructure from foreign threats, United States Federal Communications Commission (FCC) chair Brendan Carr has announced the establishment of a Council on National Security. The primary focus of this council will be to combat the ongoing menace posed by foreign adversaries, notably highlighting the risks associated with the Chinese Communist Party (CCP).
With the rapid advancements in technology, the vulnerability of American networks, devices, and technology ecosystem has become a growing concern. Foreign bad actors are constantly exploring ways to breach these systems, creating a need for proactive measures to counter such threats. The Council on National Security will play a pivotal role in addressing these challenges with three key objectives in mind.
The first goal is to reduce the reliance of the American technology and telecommunications sectors on foreign adversaries in terms of trade and supply chain dependencies. By strengthening domestic capabilities and minimizing external dependencies, the council aims to enhance the resilience of critical infrastructure against potential threats.
The second goal focuses on mitigating America’s vulnerabilities to cyberattacks, espionage, and surveillance orchestrated by foreign adversaries. With the increasing sophistication of cyber threats, it is essential to fortify defenses and implement robust cybersecurity measures to safeguard sensitive information and infrastructure from malicious activities.
Lastly, the council aims to ensure that the United States maintains a competitive edge in the strategic competition with China over critical technologies such as 5G, 6G, AI, satellites and space, quantum computing, robotics, autonomous systems, and the Internet of Things. By investing in research, innovation, and strategic partnerships, the council seeks to secure American leadership in these key technological domains.
While the specific operational details of the council have not yet been disclosed, questions remain regarding its collaboration with existing cybersecurity entities such as the Cybersecurity and Infrastructure Security Agency (CISA). The disbandment of CISA’s Cyber Safety Review Board under the previous administration raises concerns about the coordination and synergy between different cybersecurity initiatives.
In a related development, the attention shifts to the critical vulnerabilities of the week, with Ivanti coming under attack. Last week’s Patch Tuesday addressed several critical flaws, including the CVE-2024-57968 vulnerability in Advantive’s VeraCore. Additionally, CISA issued a warning about the exploitation of multiple CVEs affecting Ivanti EPM, highlighting the urgency of addressing these vulnerabilities to prevent potential exploits.
In a separate incident, the arrest of a Garantex administrator in India underscores the global reach of cybercrime activities. The apprehension of Aleksej Besciokov in Thiruvananthapuram follows the takedown of the Russian crypto exchange and cybercrime hub, shedding light on the interconnected nature of international cyber threats.
Furthermore, the discovery of North Korean spyware apps on Google Play and third-party app stores emphasizes the evolving landscape of cyber espionage. The emergence of KoSpy malware attributed to North Korean cybercriminals underscores the need for increased vigilance and security measures to counter such malicious activities.
In Australia, FIIG Securities Limited faces legal action over alleged cybersecurity failures that resulted in a data breach and subsequent sale of client information on the dark web. The incident serves as a stark reminder of the consequences of inadequate cybersecurity practices and the importance of robust cybersecurity measures to safeguard sensitive data.
As threats to cybersecurity continue to evolve and intensify, the establishment of the Council on National Security signals a proactive approach towards enhancing the resilience of American tech and telecommunications infrastructure. Collaborative efforts between government agencies, private sector stakeholders, and cybersecurity experts will be crucial in addressing the complex challenges posed by foreign adversaries and ensuring the security of critical technologies.