As Congress gears up to press CEOs from SolarWinds, Microsoft, CrowdStrike, and FireEye about the massive data breach that impacted several U.S. government agencies and nearly 18,000 SolarWinds customers last year, Senator Mark Warner (D-Va.) said that aside from getting to the bottom of the hack, there needs to be a clear message sent that cyber warfare against the United States will not be tolerated.

"We need to have some common standards where we warn our adversaries that you take this kind of action, there's going to be consequences," Warner told Cheddar. 

Last month, law enforcement, security, and intelligence agencies released a joint statement following an investigation into the breach that said Russia was the likely culprit, though the Biden White House has yet to release a statement on the findings. According to Warner, it isn't a question if Russia is engaging in "asymmetrical warfare" but rather how the U.S. will respond.

"For a long time in America, because we are so I.T. dependent because we are so technology-driven, we were reluctant to hold the bad guys accountable," he said. "We saw that when the Chinese attacked the OPM files of all the government employees or when they attacked Equifax, 150 million Americans had their personal information exfiltrated. We were reluctant to punch back because we were afraid of cyber escalation." 

"We can't be timid in this space going forward," Warner stated. 

When it comes to grilling the tech companies during the Senate Intelligence Committee hearing, Warner said he plans to press them about avoiding future incidents, what methods of protection are being adopted, and if other cloud-based systems are currently susceptible to similar attacks. 

Though Russia has been implicated by U.S. intelligence agencies in the recent attack, the senator said he believes the affected businesses had a responsibility to protect their customers, have to be held liable as well, and be held to mandatory reporting rules.

"There were certain things, obviously, SolarWinds could have done better, but when we're dealing with a tier-one adversary, bringing their A-team, very few private sector companies, on their own, can prevent an intrusion," Warner noted. "But that does not mean that suddenly we're going to let these private sector companies off the hook for having responsible cyber hygiene behavior because even if the bad guys get in if you've got good cyber hygiene, you can spot them earlier."

Share:
More In Politics
What’s in the legislation to end the federal government shutdown
A legislative package to end the government shutdown appears on track. A handful of Senate Democrats joined with Republicans to advance the bill after what's become a deepening disruption of federal programs and services. But hurdles remain. Senators are hopeful they can pass the package as soon as Monday and send it to the House. What’s in and out of the bipartisan deal has drawn criticism and leaves few senators fully satisfied. The legislation includes funding for SNAP food aid and other programs while ensuring backpay for furloughed federal workers. But it fails to fund expiring health care subsidies Democrats have been fighting for, pushing that debate off for a vote next month.
Federal Reserve cuts key rate as shutdown clouds economic outlook
The Federal Reserve cut its key interest rate Wednesday for a second time this year as it seeks to shore up economic growth and hiring even as inflation stays elevated. The move comes amid a fraught time for the central bank, with hiring sluggish and yet inflation stuck above the Fed’s 2% target. Compounding its challenges, the central bank is navigating without much of the economic data it typically relies on from the government. The Fed has signaled it may reduce its key rate again in December but the data drought raises the uncertainty around its next moves. Fed Chair Jerome Powell told reporters that there were “strongly differing views” at the central bank's policy meeting about to proceed going forward.
Load More