"GAO: Comprehensive Strategy Needed to Overcome Cyber Threats"

The Government Accountability Office (GAO) calls on the federal government to develop and implement a comprehensive strategy to combat cyber threats to the US. In recent years, the FBI has observed Chinese state-sponsored hackers seeking to compromise unpatched network devices and infrastructure. The FBI announced in June of this year that Chinese state-sponsored hackers had been targeting and breaching major telecommunications companies and network service providers since at least 2020. In the same month, a phishing campaign targeted US military, software, supply chain, healthcare, and pharmaceutical organizations in order to compromise Microsoft Office 365 and Outlook accounts. In April, the US removed Russian malware from computer networks worldwide, and a social media platform disrupted two Iranian-linked cyber espionage campaigns involving phishing and other social engineering techniques to target activists, academics, and private companies. The US Treasury Department's Office of Foreign Assets Control (OFAC) linked a March 2022 Ronin Network hack to a North Korean hacking group and announced sanctions against the malicious actors behind it. These are just a few examples of recent nation-state attacks. The US must also defend against cybercriminal attacks. This article continues to discuss key points made in GAO's recent report emphasizing the need for a comprehensive strategy to combat cyber threats.

HSToday reports "GAO: Comprehensive Strategy Needed to Overcome Cyber Threats"