BlocksInform
The regulatory framework that I think is going to emerge needs a high level of consultation, a light touch, and some harmonization, So we're not duplicating, so we're wasting time in one or several places." — With Emily Birnbaum and Courtney Rozen on hand.
The Biden administration is set to release an aggressive new national cybersecurity strategy on Thursday that seeks to shift the blame from companies that get hacked to software manufacturers and device makers, putting it on a potential collision course with big technology companies.
The Biden administration is set to release an aggressive new national cybersecurity strategy on Thursday that seeks to shift the blame from companies that get hacked to software manufacturers and device makers, It could run up against large technology firms.
The thirty-five-page strategy, previously shared with a group of journalists, states that software manufacturers must be "held accountable for failing to comply with the duty of care owed to consumers, critical infrastructure businesses and suppliers."
"We need to empower those who can best take action to prevent poor results, not on the end-users that often bear the consequences of insecure software nor on the open-source developer of a component that is integrated into a commercial product,” according to the document.
The new strategy commits the government to work with Congress and the private sector "to develop a law establishing responsibility for software products and services."
President Joe Biden said in a statement that the strategy “takes on the systemic challenge that too much of the responsibility for cybersecurity has fallen on individual users and small organizations.”
Senior US officials have publicly complained that technology companies, including Microsoft Corp.Twitter Inc., have failed to sufficiently secure user accounts.
Camera: Lauren Justice/Bloomberg.
Such an ambitious effort comes despite the failure of the Biden administration to advance legislation in its first two years to rein in the power of the biggest tech companies including Alphabet Inc.’s Google, Apple Inc.Amazon.com Inc.Meta Platforms Inc.
The White House approved such measures, although critics said it did not sufficiently push the democratic leader of the Senate majority. Schumer failed to get a technological reform project passed last year.
A senior officer in the administration, who spoke anonymously for the purpose of informing journalists, Granting the transfer of responsibility for cybersecurity breaches to software companies would require legislative measures and was part of a long-term process that could take up to a decade. The grievor added that the administration was not expecting to see new book legislation in the coming year.
The upcoming presidential election will take place in less than two years, raise the question of whether the administration can even move closer to the most ambitious objective of its new strategy to protect Americans against pirates.
The senior civil servant said later bloomberg news that the administration would seek to capitalize on bipartisan support for increased cybersecurity. However, with the exception of legislation, Clients may take civil action against software and device manufacturers for the purpose of improving safety standards and changing market forces, an approach that has the approval of the administration, the grievor indicated.
The grievor testified that there was room to collaborate with the software industry rather than to be confrontational. Furthermore, the administration hopes that its plan will force companies to better secure its software in order to gain customers in a competitive market, the official said.
The government's strategy also promises a stronger position against ransomware, where criminals encrypt a victim's files until an extortion fee is paid. (many attackers now steal files, too, and threaten to publish them publicly without being paid).
An increasing aggressiveness to disrupt these groups, the justice department last year closed down crypto exchanges used by ransomware criminals through the use of sanctions and the fbi earlier this year took down the hive ransomware group by seizing control of servers and websites used by its members in coordination with german and dutch officials.
More and more aggressively to disrupt these groups, the Justice Department last year closed down crypto exchanges used by ransomware criminals through the use of sanctions and the FBI earlier this year took down the Hive ransomware group by seizing control of servers and websites used by its members in coordination with German and Dutch officials.
Read more: Viasat Hack from Russia exposed security vulnerabilities in the satellite industry.
Camera: Leigh Vogel/UPI/Bloomberg.
Anne Neuberger, Assistant National Security Advisor on Cybersecurity and Emerging Technologies, told journalists that the administration recognized that sharing information and partnering with industry alone was not enough to overcome the risks to U.S. critical infrastructure, and that the administration must now "implement minimal terms of reference".
Chris inglis, who worked on the strategy during his term as national director of cybersecurity for Mr. Biden, said Bloomberg news in his last days in the post last month that the congress was "getting a vote" on the plan.
We will continue to work with Congress to determine what it wants to do, what it is prepared to do. We will continue to work with Congress to determine what it wants to do, what it is ready to do.
We should also use executive powers," he said.
