Twitter Facebook Google RSS
 
National Defense > Blog > Posts > More Reporting of Cyber Attacks Would Aid FBI, Official Says
More Reporting of Cyber Attacks Would Aid FBI, Official Says
By Valerie Insinna



The assistant director of the FBI’s cyber division urged businesses to report network intrusions, reiterating FBI director Robert Mueller’s recent statement that cyber threats could overtake terrorism as the biggest issue for the bureau in the future.

"Our lifeblood is being stolen and is being used for competitive advantage,” Joseph Demarest said in a Nov. 14 speech at the National Defense Industrial Association Homeland Security Symposium in Arlington, Va.   

In the past, the FBI has acknowledged businesses' hesitance to report cyber crimes because of factors such as possible erosion of shareholder confidence or exposing business practices.

“There's some concern on behalf of the private sector … [that] if they bring us something, it will wind up in a court of law,” he said. “If you have something, and you're concerned about reporting it and where it goes, how it's maintained, we should talk that through."

Companies should share information with the FBI before a bigger attack happens, Demarest added. "The time to form that relationship is when it's blue skies, the sun is shining, and not when it's 2 o’clock in the morning and realized you've just had a major breach and lost significant information technology.”  This relationship building is especially important for smaller businesses that do not have large IT teams or sophisticated defenses, he said.

In the past few years, the FBI has ramped up its attention to cyber crime. Statistics on the growing amount of attacks are “staggering,” Demarest said, pointing to a 4 percent growth in the number of complaints received by the bureau’s Internet Crime Complaint Center from 2010 to 2011.

In October, the bureau unveiled its Next Generation Cyber Initiative, which allows investigators to send information about suspicious cyber activity to a team of specialists who are available 24/7.  The FBI expects this will help identify the attacker and motive more quickly.

Additionally, the FBI is hiring computer scientists, aiming to assign one to each of its 56 field offices, Demarest said. The bureau also created a cyber task force in each office.

Even minor intrusions can have a major impact on businesses, Demarest said, pointing to spear phishing — when an intruder poses as a trusted entity such as a business associate or financial institution in an email in order to gain information. He advised businesses to educate their employees on basic security measures, such as identifying potentially malicious emails.

When asked whether the FBI’s call for more reporting could result in an overwhelming amount of complaints, Demarest said that although it might be difficult to “pick out the wheat from the chaff,” a broader set of data would help the bureau to more easily see trends.

Photo Credit: iStockphoto

Comments

There are no comments yet for this post.
Items on this list require content approval. Your submission will not appear in public views until approved by someone with proper rights. More information on content approval.

Name: *

eMail *

Comment *

Title

Attachments

Name: *


eMail *


Comment *


 

Refresh
Please enter the text displayed in the image.
The picture contains 6 characters.

Characters *

  

Legal Notice *

NDIA is not responsible for screening, policing, editing, or monitoring your or another user's postings and encourages all of its users to use reasonable discretion and caution in evaluating or reviewing any posting. Moreover, and except as provided below with respect to NDIA's right and ability to delete or remove a posting (or any part thereof), NDIA does not endorse, oppose, or edit any opinion or information provided by you or another user and does not make any representation with respect to, nor does it endorse the accuracy, completeness, timeliness, or reliability of any advice, opinion, statement, or other material displayed, uploaded, or distributed by you or any other user. Nevertheless, NDIA reserves the right to delete or take other action with respect to postings (or parts thereof) that NDIA believes in good faith violate this Legal Notice and/or are potentially harmful or unlawful. If you violate this Legal Notice, NDIA may, in its sole discretion, delete the unacceptable content from your posting, remove or delete the posting in its entirety, issue you a warning, and/or terminate your use of the NDIA site. Moreover, it is a policy of NDIA to take appropriate actions under the Digital Millennium Copyright Act and other applicable intellectual property laws. If you become aware of postings that violate these rules regarding acceptable behavior or content, you may contact NDIA at 703.522.1820.

 

 

Bookmark and Share