Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Cyberwarfare

US Cyber Commander Says Hackers to ‘Pay a Price’

The US strategy of “deterrence” for cyber-attacks could involve a wide range or responses, potentially including the use of conventional weapons, the nation’s top cyber-warrior said Monday.

The US strategy of “deterrence” for cyber-attacks could involve a wide range or responses, potentially including the use of conventional weapons, the nation’s top cyber-warrior said Monday.

Admiral Michael Rogers, who heads the US Cyber Command as well as the National Security Agency, told a Washington forum that the idea of cyber-deterrence is evolving but that there are many ways to get that message across.

“Because an opponent comes at us in the cyber domain doesn’t mean we have to respond in the cyber domain,” Rogers told a cybersecurity forum at George Washington University.

“We think it’s important that potential adversaries out there know that this is part of our strategy.”

He said the US administration demonstrated this recently by ordering economic sanctions against North Korea following a damaging cyber-attack against Sony Pictures.

Asked whether conventional military weapons could be used to respond to attacks in cyberspace, Rogers said that many options are on the table.

“It’s situational dependent,” he said. “What you would recommend in one scenario is not what you would recommend in another.”

Rogers added that responding in cyberspace is complex because of the different kinds of attacks and motivations, coming from individual hackers, organized crime or nation-states.

Advertisement. Scroll to continue reading.

But he noted that there are “ways to apply pressure against a wide variety of actors from individuals to groups to nation-states” to get the message across that “you don’t want go down this road and if you do, you need to know there is a price to pay.”

The comments come following an epidemic of cyber incidents against US firms and growing concerns that attacks could target “critical infrastructure” such as power grids or air traffic control.

Rogers has spoken of the idea of deterrence before, but said US policy is still evolving to respond to potential threats.

He said the general policy of deterrence is based on the idea of conveying the message to potential attackers that they will not succeed or that “the price they will pay will far outweigh any benefit.”

Written By

AFP 2023

Click to comment

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join the session as we discuss the challenges and best practices for cybersecurity leaders managing cloud identities.

Register

SecurityWeek’s Ransomware Resilience and Recovery Summit helps businesses to plan, prepare, and recover from a ransomware incident.

Register

Expert Insights

Related Content

Cyberwarfare

WASHINGTON - Cyberattacks are the most serious threat facing the United States, even more so than terrorism, according to American defense experts. Almost half...

Cyberwarfare

Russian espionage group Nomadic Octopus infiltrated a Tajikistani telecoms provider to spy on 18 entities, including government officials and public service infrastructures.

Cybercrime

Patch Tuesday: Microsoft calls attention to a series of zero-day remote code execution attacks hitting its Office productivity suite.

Cyberwarfare

Several hacker groups have joined in on the Israel-Hamas war that started over the weekend after the militant group launched a major attack.

Application Security

Virtualization technology giant VMware on Tuesday shipped urgent updates to fix a trio of security problems in multiple software products, including a virtual machine...

Cyberwarfare

The war in Ukraine is the first major conflagration between two technologically advanced powers in the age of cyber. It prompts us to question...

Cybercrime

On the first anniversary of Russia’s invasion of Ukraine, cybersecurity companies summarize the cyber operations they have seen and their impact.

Application Security

Fortinet on Monday issued an emergency patch to cover a severe vulnerability in its FortiOS SSL-VPN product, warning that hackers have already exploited the...