Workers remove a poster for ‘The Interview’ after Sony announced it was pulling the film from cinemas
Barack Obama has declared cyber threats from abroad a “national emergency,” as the US president took action to impose sanctions on overseas actors engaging in cyber attacks that threaten the country’s national security or economic health.
The president’s executive order gives his government new powers to target significant cyber threats that affect critical infrastructure, disrupt the availability of web sites or networks, or steal trade secrets and financial information, such as large troves of credit card data.
US officials declined to name potential targets of the new sanctions but said, as an example, that the executive order could be used against individual hackers hired by companies or countries.
The US has already ratcheted up its response to cyber breaches, imposing additional sanctions in January on agencies and officials in North Korea, which it blamed for the breach at Sony Pictures Entertainment last year. In May 2014, it indicted five Chinese soldiers for hacking into six US companies.
It remains to be seen whether the new authority will be used in cases that could raise political tensions, such as sanctions against Chinese officials.
Cyber threats pose one of the most serious economic and national security challenges to the United States
- Barack Obama
The new authority closes gaps that have posed a challenge to US law enforcement, such as cyber threats from countries that do not have extradition treaties with the US, lack strong cyber security laws or turn a blind eye to such attacks.
The US hopes the executive order will encourage other countries to consider such sanctions, said Michael Daniel, special assistant to the president and cyber security co-ordinator. Potential punishments include freezing assets under US jurisdiction, including bank accounts, and prohibiting US persons or entities from engaging in transactions with those under sanctions.
A spate of devastating cyber breaches at JPMorgan Chase, Target, health insurer Anthem and others has prompted the Obama administration to encourage more information sharing on cyber threats between government agencies and with the private sector.
Legislation that would encourage the private sector to share information with the government on cyber threats is again being considered in Congress. Similar bills have stalled in the past because of privacy concerns, but lawmakers are hoping recent cyber attacks will move the proposals forward this year.
“Cyber threats pose one of the most serious economic and national security challenges to the United States, and my administration is pursuing a comprehensive strategy to confront them,” Mr Obama said in a statement. “This executive order offers a targeted tool for countering the most significant cyber threats that we face.”
Dmitri Alperovitch, co-founder of cyber security firm CrowdStrike, said: “We are optimistic that the actions undertaken by the White House today will raise the cost to our cyber adversaries and establish a more effective deterrent framework to punish actors.”
US officials were quick to emphasise that the new executive order would not be used to police the internet or stifle innovation. The new sanctions powers will apply only to significant cyber threats and would be used against individuals or organisations that knowingly receive or use trade secrets stolen through cyber breaches.
Sanctions could also be imposed when the theft of trade secrets results in a significant threat to national security, foreign policy, or the economic health or financial stability of the US.
Copyright The Financial Times Limited 2015. You may share using our article tools.
Please don't cut articles from FT.com and redistribute by email or post to the web.
No comments:
Post a Comment