White House releases cyberattack response plan
WASHINGTON — The White House warned Tuesday of a “revolution” of computer-generated threats to the U.S. stoked by growing cyberag gression by traditional U. S. foes like Russia and North Korea, and issued a color-coded response plan for the federal government to use after major c yberattacks.
Lisa Monaco, President Barack Obama’s homeland securit y and counter terror i sm advi ser, said that whi l e Ru s s i a a n d C h i n a grow “more assertive and sophisticated” online, Iran has attacked U.S. banks and North Korea is showing a willingness to attack companies and countries alike. She also warned that non-governmental actors, like the Islamic State group and “hacktivists,” are finding it easy to advance their goals through the internet.
“To put it bluntly, we are in the midst of a revolution of the cyber threat — one that is growing more persistent, more diverse, more frequent and more danger- ous every day,” Monaco said at a cybersecurity conference in New York. “Unless we act together — government, industry, and citizens — we risk a world where malicious cyber activity could threaten our security and prosperity. That is not a future we should accept.”
Aiming to streamline Washington’s response to major attacks, Obama released a presidential policy directive that establishes six levels of severity for attacks, a col- or-coded system that evokes the terror alert system formerly used by the Homeland Security Department.
A h i g h - l e v e l f e d e r a l response following the directive’s guidelines will be triggered anytime there is an attack at or above a level three — orange — indicating one that is likely to affect public health or safety, economic or national security or other U.S. interests. A level 5 — black — attack is an emergency that poses an “imminent threat” to critical infrastructure, government stability or U.S. lives.
T h e d i r e c t i ve l ays o u t which federal law enforcement and intelligence agencies will take the lead coordinating the various parts of the response to an attack.
Though long in the works, the directive comes amid heightened concern and attention to cybersecurity following the hack of Democratic National Committee emails, which Hillary Clinton’s campaign has blamed on Russi a . The U. S. government has not formally accused Russia of involvement and Moscow has called the accusations “paranoid.”