In a recent virtual interview with VentureBeat, security expert Chris Krebs discussed various aspects of cybersecurity and infrastructure security. Krebs, who previously served as the director of the U.S. Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA), emphasized the importance of organizations improving their cyber and physical security infrastructure. He also shed light on the increasing trend of supply chain attacks, particularly in the healthcare and manufacturing sectors. Additionally, Krebs discussed the role of generative AI in strengthening human-centric security.
When it comes to addressing national security strategies around cyber and physical security, Krebs highlighted the need to consider historical attacks and the evolving capabilities of threat actors. He mentioned Russia’s military intelligence team, the GRU, which has shown significant effectiveness in recent years. Krebs urged organizations to think about where these threat actors might be in the future and work towards closing potential vulnerabilities.
Krebs also discussed China’s shift in infrastructure targeting strategy. While their previous focus was on intellectual property theft and commercial espionage, they are now pre-positioning themselves in U.S. critical infrastructure, potentially tied to their military plans. Krebs emphasized the importance of considering the psychological manifestations of physical attacks, as demonstrated by both Russian and Chinese strategies.
In terms of supply chain attacks, Krebs explained that healthcare organizations are particularly vulnerable due to legacy tech, lack of investment, and the life-and-death nature of their operations. Similarly, manufacturing organizations face significant bottom-line impacts when their operations are disrupted. While defenses against ransomware are improving, Krebs highlighted the need for policymakers to consider different types of payments, such as encryption/decryption and data extortion/deletion.
Regarding generative AI, Krebs acknowledged that it has been overhyped and that defense currently outpaces offense. He mentioned the primary uses of gen AI by threat actors, including social engineering, research of targets and personnel, and automation of basic tasks. However, he expressed optimism about the use of gen AI for defense purposes, making cybersecurity more accessible and less technically complex for organizations.
Overall, Krebs emphasized the need for organizations to adopt a forward-thinking mindset, focusing not only on addressing current threats but also on anticipating future attack vectors. By strengthening infrastructure security, considering psychological impacts, and leveraging technologies like generative AI, organizations can better protect themselves against evolving cyber threats.