In a recent blog post, CISA Director Jen Easterly raised concerns about China’s cyber program and its potential threats to US critical infrastructure. According to Easterly, China’s cyber program is both sophisticated and well-resourced, posing the most serious and significant cyber threat to the nation.
Over the past two years, CISA and its industry partners have been actively working to deter China’s cyber aggression. Easterly highlighted the agency’s focus on identifying and evicting Chinese cyber actors targeting espionage activities, such as the recent ‘Salt Typhoon’ campaign against US telecommunications companies, as well as disruption efforts like the ‘Volt Typhoon’ campaign aimed at disrupting or destroying critical infrastructure.
Despite attempts by PRC cyber actors to evade detection by using stealthy tactics like living off the land methods, which involve hiding their activity within the native processes of computer operating systems, CISA’s threat hunting team has been successful in detecting and removing them from critical infrastructure networks. This collaborative approach between CISA and its partners has been crucial in mitigating the threat posed by Chinese cyber actors.
However, Easterly’s stance on prioritizing the protection of critical infrastructure over countering disinformation has not been without controversy. Some Republicans have criticized CISA for allegedly focusing more on countering disinformation rather than safeguarding critical infrastructure, raising concerns about the agency’s overall priorities.
With the possibility of a new administration coming into power, there may be changes on the horizon for CISA and its leadership. Easterly’s tenure as director may be at risk, as calls for a shift in focus towards protecting critical infrastructure intensify. The debate over the agency’s mandate and priorities continues to be a point of contention among policymakers and stakeholders in the cybersecurity community.
In conclusion, the ongoing threat posed by China’s cyber program to US critical infrastructure underscores the need for vigilance and collaboration in countering cyber threats. As the landscape of cybersecurity continues to evolve, it is imperative for government agencies, industry partners, and cybersecurity experts to work together towards strengthening the nation’s resilience against sophisticated threats like those presented by China’s cyber activities.