“The acting director of the Cybersecurity and Infrastructure Security Agency today acknowledged the weaknesses in a premiere cybersecurity program and previewed a range of issues CISA is now examining in the wake of the massive breach into multiple federal networks.
‘There are things that clearly need to be done to enhance our ability to stop attacks like this in the future. One that we are working on is better insights and visibility into the end points,’ Brandon Wales, acting CISA chief, said today at an event hosted by the Business Council for International Understanding.
Wales’ comments come the day after Anne Neuberger, the deputy national security advisor for cyber and emerging technology, said the White House is planning ‘executive action’ both to mitigate the damage done by the breach involving SolarWinds Orion as well as options for a response against those responsible…”
“Wales on Thursday when asked about Einstein, a core component of the government’s National Cybersecurity Protection System, acknowledged the program could not stop the supply chain attack the government discovered in December 2020…”
“Wales said CISA is exploring ways to monitor activities internally for ‘anomalous activities’ such as a network management system communicating through an encrypted channel to an entity outside the network…” Read the full article here.
Source: CISA eyes changes to combat future supply chain hacks – By Justin Katz, February 18, 2021. FCW.