The US Navy Is Leaking Secrets

Uploaded on 2019-03-25 in GOVERNMENT-National, GOVERNMENT-Defence, FREE TO VIEW, INTELLIGENCE--USA, NEWS-Cybersecurity News, TECHNOLOGY--Hackers

A US Navy review provided to the Wall Street Journal paints a dire picture regarding an ongoing cyber war pitting hackers against the sea service. The 57 page review was brought to Navy Secretary Richard Spencer recently, depicts the Navy and its contractors “under cyber siege” by a host of nefarious actors, including Chinese government hackers, who have exploited critical flaws in US cyber security to steal troves of national security secrets from the defense industry.

“For years, global competitors, and adversaries, have targeted and breached these critical contractor systems with impunity,” the review reads, according to the Journal.

“These enterprises, regardless of their relationship with the department, are under cyber siege.”

The review is sourced from research and interviews with senior officials in President Donald J. Trump’s administration, according to the Journal. The threat is posed not only to the naval service, but its contractors and subcontractors as well.
Focusing on a series of data breaches over the previous 18 months, the review was launched in October, according to a memo authored by the SECNAV’s office.

The final report claims that although the US is aware of cyber-attacks by foreign hackers, the government has struggled to respond to the large number of breaches and has failed to effectively warn its defense contractors.

In one incident during January and February of 2018, Chinese government hackers compromised the computers of a Navy contractor and harvested sensitive data dealing with undersea warfare, including plans for a supersonic anti-ship missile, the Washington Post reported in June.

The Journal said the audit also faults Navy leaders for failing to anticipate that adversaries would attack the defense industry.
“We are under siege,” a senior Navy official said in the report. “People think it’s much like a deathly virus, if we don’t do anything, we could die.”

The document reports that China’s involvement in hacking has boosted its military prowess, "thereby altering the calculus of global power,” the Journal added.

Navy Times

You Might Also Read:

Chinese Hackers Steal Naval Warfare Secrets:

 

« WordPress Comprises 90% Of Hacked Sites
Three In Five Politicians’ Websites Don’t Use Cyber Security »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

Reed Smith LLP

Reed Smith LLP

Reed Smith LLP is an international law firm with offices in the USA, Europe, Middle East and Asia. Practice areas include Information Technology, Privacy & Data Security.

National Trading Standards eCrime Team (NTSeCT) - United Kingdom

National Trading Standards eCrime Team (NTSeCT) - United Kingdom

The National Trading Standards eCrime Team tackles online consumer scams, rip-offs and fraud, as well as those committed by text or email.

Cyber Akademie (CAk)

Cyber Akademie (CAk)

Cyber Akademie is a training and education center providing high-quality training and information events on information security and data protection.

SecureMetric Technology

SecureMetric Technology

SecureMetric is one of SE Asia’s leading players in the field of digital security with a focus on Software Licensing Protection, 2-Factor Authentication, Advanced Identity and Access Management, Publi

4Stop

4Stop

4Stop is a global KYC, compliance and anti-fraud risk management company.

Assac Networks

Assac Networks

Assac Networks ShieldIT is an app that completely protects any BYOD smartphone from both tapping and hacking.

Leidos

Leidos

Leidos is a recognized leader in cybersecurity across the federal government, bringing more than a decade of experience defending cyber interests globally.

Cyphere

Cyphere

Cyphere is a cyber security company that helps to secure most prized assets of a business. We provide technical risk assessment (pen testing/ethical hacking) and managed security services.

Appsian Security

Appsian Security

Appsian provides powerful solutions that help organizations take control of their business critical data and financial transactions.

CodeHunter

CodeHunter

CodeHunter is a malware hunting SaaS platform designed to detect all variations of malware, known and unknown, without the need for source code or signatures.

O'Reilly Media

O'Reilly Media

O’Reilly’s help professionals learn best practices and discover emerging trends that will shape the future of the tech industry.

StrongBox IT

StrongBox IT

Strongbox IT provides solutions to secure web applications and infrastructure.

Framework Security

Framework Security

With Framework Security, you get more than a consultancy; you get a partner dedicated to simplifying cybersecurity and protecting your business in the most efficient way possible.

Logiq Consulting

Logiq Consulting

Logiq Consulting provide a full range of Cyber Security, Information Assurance and System Engineering services.

Paramount Defenses

Paramount Defenses

Paramount Defenses have unrivaled capability in two of the most critical areas in cyber security today – Active Directory Security and Privileged Access.

Black Cipher Security

Black Cipher Security

Black Cipher is a New Jersey-based cybersecurity and incident response consulting firm.