The importance of government protection for the cyber domain
A discussion about the rapid proliferation of hacks and destructive disinformation and the solutions for patching what’s broken.
kevin, you, you didn't have to disclose that there, that you that your company had been breached. But you chose to and you went public with this, uh, companies are getting hacked all over the place. And they also don't have these same requirements to disclose what's going on. Um, do you think that should change? Well, I think it will change. I think there will be a federal disclosure law and you know, we start to figure out covered entities that will probably be the companies that do business with the government. Uh, then you have to think about, what do you tell? Who do you tell? How fast do you tell? Uh, when you tell them, doesn't mean the world gets to know or is it just visibility for certain government agencies. So there's still things to work out. But our government, if we want to respond as a nation with some kind of coordinated response. Like I said earlier, diplomacy is a part of the solution. And now I'm gonna sound like a big, what is the big four consultant people process and technology is required to solve the problem. But just add the fourth, we need diplomacy hands down. We need rules of the road and risks and repercussions. When you look at what government's reform to do, they're performed to protect their citizens. They do so with espionage. They do so with war fighting and they do so with law enforcement. And when you get into cyber cyber security, if wherever information goes espionage is right there, wherever money goes, crime follows and wherever command and control goes, the war fighters got to be. So the cyber domain does need to be defended by the government. The government needs to have a role. The problem is the majority of critical infrastructure and command and control is actually in the hands of the private sector. So we got to figure out if the nation, how to get the government the visibility. It requires uh, to get the diplomacy right now. You said diplomacy a few times here, I'm just wondering for the audience, maybe you can provide some examples of like what that would look like, what kind of pressure could be applied to other countries to make them abide by some rules of the road. Well, I think it would be a fewer Putin. I turn to you and say, hey a little more you guys have some of the best technicians in the world. You got to help us solve this ransomware problem? Yeah. Right. And I think ransomware is where you start. I don't think there's actually a diplomatic you could to the espionage problem, it's just we do it all the time. I mean we just we have no place as a country. You know, we're not paying tens of thousands of people to sit in cyber command in N. S. A. All day and do nothing. They are doing exactly what the SVR did all the time. They probably don't get caught as often. Um, and so but on the ransomware, I think that's where we have to focus on from a diplomatic perspective because Russia especially to a lesser extent, other countries is that they are allowing criminal groups to operate completely freely in a way that is causing the huge amount of damage way down the value chain too small to medium businesses, too small law firms to mom and pop brick and mortar shops. And that is something that we should, we have to set the standard that that's not going to be appropriate. Putin says, hackers are artists, they wake up in the morning, they want to do some creative acts and they they go ahead and do it. Yeah, they are. I mean but it's just like it's also there are making way more money than artists these days, like in the in the kind of the Bitcoin era um the ability to make money from hacking this. This is not true when Kevin and I were coming up when we were young, there's no way you could utilize your skills to make tens of millions of dollars and that's that is now what these guys can get away with. It's actually it's pretty amazing the economic incentive to be a bad guy now