The Evolution of Cyber Warfare: Insights from ISC2 Security Conference
In today’s ever-evolving threat landscape, nation-state actors and profit-driven attackers pose significant challenges to cybersecurity professionals. This was the central theme of Nicole Perlroth’s keynote address at the ISC2 Security Conference in Las Vegas, held from Oct. 13-16.
Nation-state attackers look for ‘target-rich, cyber-poor’ victims
Perlroth highlighted the changing dynamics of cyber warfare over the past decade, illustrating a timeline of nation-state attacks from 2011 to 2021. She emphasized how entry barriers for attackers have significantly worsened, with ransomware-as-a-service becoming a thriving underground economy.
She pointed out that traditional notions of geographic isolation no longer safeguard against cyber threats, as the digital “edge” has shifted to encompass cloud environments, software as a service, and hybrid workforces. Perlroth emphasized that the new edge is now defined by people and endpoints.
Specific examples of nation-state attacks, such as the Chinese-sponsored cyber assault on the Marriott hotel chain in 2018, underscored the concept of “target-rich, cyber-poor” environments. Entities like Marriott or Change Healthcare may lack robust cybersecurity defenses but possess valuable data that can be exploited by adversaries.
Perlroth also highlighted the vulnerability of critical infrastructure, such as water treatment facilities, which often lack dedicated cybersecurity personnel. She warned that tampering with water utilities could have catastrophic consequences, stressing the importance of recognizing code as critical infrastructure.
Russia, China explore cyberattacks in connection with military action
Looking at broader geopolitical implications, Perlroth shed light on Russia’s military activities and China’s potential plans regarding Taiwan. Threat actors could seek to disrupt U.S. military mobility or influence public opinion through social engineering tactics. She highlighted the evolving dynamics of cyber attacks in conjunction with military actions.
Despite the surprise over the lack of cyber attacks from Russia during the Ukraine conflict, Perlroth pointed to incidents like DDoS attacks and service interruptions as significant disruptions. The emergence of generative AI systems presents a new frontier in cyber warfare, enabling attackers to craft sophisticated zero-day exploits and prompting defenders to bolster their AI-powered responses.
How can cybersecurity professionals prepare for large-scale attacks?
Perlroth stressed the importance of conducting sector-specific assessments to identify vulnerable entities within each industry. She commended cybersecurity professionals for their heightened awareness of threats and emphasized the role of CISOs as drivers of business continuity planning.
Addressing both technical and organizational aspects, Perlroth urged cybersecurity professionals to prioritize safeguarding critical assets and fostering a culture of cybersecurity within their organizations. While acknowledging the pervasive nature of threats, she sought to inspire hope and collaboration in the ongoing battle for cyber defense.
Disclaimer: ISC2 sponsored Nicole Perlroth’s participation at the ISC2 Security Congress event in Las Vegas.