The US Navy Is Leaking Secrets

A US Navy review provided to the Wall Street Journal paints a dire picture regarding an ongoing cyber war pitting hackers against the sea service. The 57 page review was brought to Navy Secretary Richard Spencer recently, depicts the Navy and its contractors “under cyber siege” by a host of nefarious actors, including Chinese government hackers, who have exploited critical flaws in US cyber security to steal troves of national security secrets from the defense industry.

“For years, global competitors, and adversaries, have targeted and breached these critical contractor systems with impunity,” the review reads, according to the Journal.

“These enterprises, regardless of their relationship with the department, are under cyber siege.”

The review is sourced from research and interviews with senior officials in President Donald J. Trump’s administration, according to the Journal. The threat is posed not only to the naval service, but its contractors and subcontractors as well.
Focusing on a series of data breaches over the previous 18 months, the review was launched in October, according to a memo authored by the SECNAV’s office.

The final report claims that although the US is aware of cyber-attacks by foreign hackers, the government has struggled to respond to the large number of breaches and has failed to effectively warn its defense contractors.

In one incident during January and February of 2018, Chinese government hackers compromised the computers of a Navy contractor and harvested sensitive data dealing with undersea warfare, including plans for a supersonic anti-ship missile, the Washington Post reported in June.

The Journal said the audit also faults Navy leaders for failing to anticipate that adversaries would attack the defense industry.
“We are under siege,” a senior Navy official said in the report. “People think it’s much like a deathly virus, if we don’t do anything, we could die.”

The document reports that China’s involvement in hacking has boosted its military prowess, "thereby altering the calculus of global power,” the Journal added.

Navy Times

You Might Also Read:

Chinese Hackers Steal Naval Warfare Secrets:

 

« WordPress Comprises 90% Of Hacked Sites
Three In Five Politicians’ Websites Don’t Use Cyber Security »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

Resecurity, Inc.

Resecurity, Inc.

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

BackupVault

BackupVault

BackupVault is a leading provider of completely automatic, fully encrypted online, cloud backup.

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

Kirkland & Ellis

Kirkland & Ellis

Kirkland & Ellis LLP is an international law firm with offices in the USA, Europe and Asia. Practice areas include Data Security & Privacy.

Skybox Security

Skybox Security

Skybox combines firewall and network device data with vulnerability and threat intelligence, putting security decisions in your unique network context.

CANVAS Consortium

CANVAS Consortium

The CANVAS Consortium aims to unify technology developers with legal and ethical scholar and social scientists to approach the challenges of cybersecurity.

Zivver

Zivver

Zivver provide pioneering software that prevents data leaks when sending an e-mail, chat message or sharing a file.

BlueID

BlueID

BlueID is an IDaaS technology product which enables your objects to securely connect and interact with your users’ smart phones and smart watches.

IQ Solutions

IQ Solutions

IQ Solutions is a Digital Integrator and an ICT Services Provider, focusing on innovative Cyber Secured ICT managed solutions tailored to the needs of the Maritime Industry.

Cyber Force

Cyber Force

Cyber Force provide a range of cyber security services including Consultancy & Advisory, Security Assessments, Compliance, Managed Security Services, Training & Certification.

Exire Technologies

Exire Technologies

Exire Technologies is comprised of a team of professionals who are specialised in cybersecurity and a value added reseller and integrator of ICT security systems.

Hawk Network Defense

Hawk Network Defense

HAWK.io is the First Fully Automated, Multi-Tenant, Cloud-Based, MDR Service Company.

NJVC

NJVC

NJVC delivers IT automation, optimization and security to empower mission-enabling IT for customers with secure requirements.

Microchip Technology

Microchip Technology

Microchip Technology Inc. is a leading provider of smart, connected and secure embedded control solutions.