The Washington Post reports that the White House is creating a Cyber Threat Intelligence Integration Center modeled on the National Counterterrorism Center. The new center will be fall under the Office of the Director of National Intelligence. The center will focus on identifying threats and acting as a crisis center when major attack like Sony and Anthem occur. The new center “is a good and important step,” [former NCTC Director Michael] Leiter said. “But it is far from a panacea.”
The Washington Post also reports on good cybersecurity work being done in South Korea -- which is under cyberattack from North Korea.
Kwon Seok-chul, CEO at computer security firm Cuvepia Inc., said it has been tough to convince executives that it’s more effective to catch bad guys after they’ve infiltrated a network instead of trying to keep them out, which he believes is impossible anyway.The article explains that this software acts as a police officer to monitor server firewalls. This is an encouraging article.
Kwon said his company’s latest monitoring product keeps a log of all activity, dividing it into authorized users and possible attackers. When certain conditions are met, the program sounds an alarm. A response team, he said, can sit back and watch what hackers copy and respond before damage is done. The security team can cut the hacker’s connection or trick the intruder into stealing empty files.
“Because hackers are in your palm, you can enforce any measures that you want,” said Kwon, member of an advisory board for South Korea’s cyberwarfare command.