The US Navy Is Leaking Secrets

Uploaded on 2019-03-25 in GOVERNMENT-National, GOVERNMENT-Defence, FREE TO VIEW, INTELLIGENCE--USA, NEWS-News Analysis, TECHNOLOGY--Hackers

A US Navy review provided to the Wall Street Journal paints a dire picture regarding an ongoing cyber war pitting hackers against the sea service. The 57 page review was brought to Navy Secretary Richard Spencer recently, depicts the Navy and its contractors “under cyber siege” by a host of nefarious actors, including Chinese government hackers, who have exploited critical flaws in US cyber security to steal troves of national security secrets from the defense industry.

“For years, global competitors, and adversaries, have targeted and breached these critical contractor systems with impunity,” the review reads, according to the Journal.

“These enterprises, regardless of their relationship with the department, are under cyber siege.”

The review is sourced from research and interviews with senior officials in President Donald J. Trump’s administration, according to the Journal. The threat is posed not only to the naval service, but its contractors and subcontractors as well.
Focusing on a series of data breaches over the previous 18 months, the review was launched in October, according to a memo authored by the SECNAV’s office.

The final report claims that although the US is aware of cyber-attacks by foreign hackers, the government has struggled to respond to the large number of breaches and has failed to effectively warn its defense contractors.

In one incident during January and February of 2018, Chinese government hackers compromised the computers of a Navy contractor and harvested sensitive data dealing with undersea warfare, including plans for a supersonic anti-ship missile, the Washington Post reported in June.

The Journal said the audit also faults Navy leaders for failing to anticipate that adversaries would attack the defense industry.
“We are under siege,” a senior Navy official said in the report. “People think it’s much like a deathly virus, if we don’t do anything, we could die.”

The document reports that China’s involvement in hacking has boosted its military prowess, "thereby altering the calculus of global power,” the Journal added.

Navy Times

You Might Also Read:

Chinese Hackers Steal Naval Warfare Secrets:

 

« WordPress Comprises 90% Of Hacked Sites
Three In Five Politicians’ Websites Don’t Use Cyber Security »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

Cyber Security Supplier Directory

Cyber Security Supplier Directory

Our Supplier Directory lists 6,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

Resecurity, Inc.

Resecurity, Inc.

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

Cybsecurity Foundation (CSF)

Cybsecurity Foundation (CSF)

Cybsecurity is a non-profit NGO, which aims to work on improvement of security levels in the Polish cyberspace.

Secure Technology Alliance

Secure Technology Alliance

Secure Technology Alliance is a multi-industry association working to stimulate the adoption and widespread application of secure solutions.

Kudelski Security

Kudelski Security

Kudelski Security is an international cybersecurity company providing innovative, independent and tailored security solutions for large enterprise and public sector clients.

The Security Awareness Company (SAC)

The Security Awareness Company (SAC)

The Security Awareness Company provides cyber security awareness training programs for companies of all sizes.

Vicarious

Vicarious

Vicarious identify the vulnerabilities in the software without involving the vendor and protect it before the hackers take advantage of it, even in compiled applications.

Cyber Defense Agency (CDA)

Cyber Defense Agency (CDA)

Cyber Defense Agency is a premier professional services firm specializing in cyber security, computer network defense, and information security.

Seavus

Seavus

Seavus is a software development and consulting company with a proven track-record in providing successful enterprise-wide business solutions including Managed Security Services.

Sonda

Sonda

SONDA is the leading systems integrator and IT service provider in Latin America.

SEON Technologies

SEON Technologies

At SEON we strive to help online businesses reduce the costs, time, and challenges faced due to fraud.

IAR Systems

IAR Systems

IAR Systems are a frontrunner in a changing industry, and a future-proof software supplier enabling the IoT.

Abacode

Abacode

Abacode is a Managed Security Services Provider (MSSP). We help businesses consolidate all of their Regulatory Compliance & Cybersecurity needs, under one roof.

US Cyber Range

US Cyber Range

US Cyber Range is a scalable, cloud-hosted infrastructure providing students with virtual environments for realistic, hands-on cybersecurity labs and exercises.

Two Six Technologies

Two Six Technologies

Two Six Technologies delivers R&D, innovation, productization and implementation expertise in cyber, data science, mobile, microelectronics and information operations.

SilverEdge Government Solutions

SilverEdge Government Solutions

SilverEdge is a next generation provider of innovative and proprietary cybersecurity, software, and intelligence solutions for the Defense and Intelligence Communities.

TrustCloud

TrustCloud

TrustCloud is a global company specializing in the orchestration and custody of secure digital transactions including identification, signature, payments, and electronic custody.

DART Consulting & Training

DART Consulting & Training

DART is a leading cyber training and consultancy company. We enhance our clients’ cyber capabilities by growing and strengthening their frontline defense – the cyber teams.

Reach Security

Reach Security

Reach is the first generative AI platform purpose-built to empower enterprise security teams. With Reach, organizations measure, manage, and improve their enterprise security posture at scale.