Alan W. Dowd is a Senior Fellow with the American Security Council Foundation, where he writes on the full range of topics relating to national defense, foreign policy and international security. Dowd’s commentaries and essays have appeared in Policy Review, Parameters, Military Officer, The American Legion Magazine, The Journal of Diplomacy and International Relations, The Claremont Review of Books, World Politics Review, The Wall Street Journal Europe, The Jerusalem Post, The Financial Times Deutschland, The Washington Times, The Baltimore Sun, The Washington Examiner, The Detroit News, The Sacramento Bee, The Vancouver Sun, The National Post, The Landing Zone, Current, The World & I, The American Enterprise, Fraser Forum, American Outlook, The American and the online editions of Weekly Standard, National Review and American Interest. Beyond his work in opinion journalism, Dowd has served as an adjunct professor and university lecturer; congressional aide; and administrator, researcher and writer at leading think tanks, including the Hudson Institute, Sagamore Institute and Fraser Institute. An award-winning writer, Dowd has been interviewed by Fox News Channel, Cox News Service, The Washington Times, The National Post, the Australian Broadcasting Corporation and numerous radio programs across North America. In addition, his work has been quoted by and/or reprinted in The Guardian, CBS News, BBC News and the Council on Foreign Relations. Dowd holds degrees from Butler University and Indiana University. Follow him at twitter.com/alanwdowd.

ASCF News

Scott Tilley is a Senior Fellow at the American Security Council Foundation, where he writes the “Technical Power” column, focusing on the societal and national security implications of advanced technology in cybersecurity, space, and foreign relations.

He is an emeritus professor at the Florida Institute of Technology. Previously, he was with the University of California, Riverside, Carnegie Mellon University’s Software Engineering Institute, and IBM. His research and teaching were in the areas of computer science, software & systems engineering, educational technology, the design of communication, and business information systems.

He is president and founder of the Center for Technology & Society, president and co-founder of Big Data Florida, past president of INCOSE Space Coast, and a Space Coast Writers’ Guild Fellow.

He has authored over 150 academic papers and has published 28 books (technical and non-technical), most recently Systems Analysis & Design (Cengage, 2020), SPACE (Anthology Alliance, 2019), and Technical Justice (CTS Press, 2019). He wrote the “Technology Today” column for FLORIDA TODAY from 2010 to 2018.

He is a popular public speaker, having delivered numerous keynote presentations and “Tech Talks” for a general audience. Recent examples include the role of big data in the space program, a four-part series on machine learning, and a four-part series on fake news.

He holds a Ph.D. in computer science from the University of Victoria (1995).

Contact him at stilley@cts.today.

Navy CIO: ‘Malicious Cyber Actors’ Attacking Military Telework Infrastructure

Friday, September 4, 2020

Categories: ASCF News Emerging Threats Cyber Security

Comments: 0

Source: https://news.usni.org/2020/09/02/navy-cio-malicious-cyber-actors-attacking-military-telework-infrastructure

Adversaries are taking on the Navy’s shift to remote work in the wake of the coronavirus pandemic, according to the service’s chief information officer.

Speaking at the Department of the Navy’s Gold Coast Small Business Procurement event today, Navy CIO Aaron Weis said the service saw a jump in malicious activity as employees began teleworking to prevent the spread of COVID-19.

“We’ve seen a number of potential exploits by malicious cyber actors. Kind of the easiest stuff and because everyone is super responsive and working from home – lots of phishing activity. And Especially early on, if it said COVID-19 in the subject line, you were going to open it,” Weis said.“And really then that’s the front door and then getting somebody to click on an attachment or whatnot that you can get into somebody’s face with a COVID-themed message,” he continued. “The other is – there was an uptick in the registration of domain names that contain COVID, COVID-19, along with DOD specific variants of that, as the services rushed to push out tracking, tracing capability services, etc, for use in this teleworking environment.”

Weis did not provide details as to where the attacks originated. In addition to phishing and using registered domain names, Weis said the Navy also saw an increase in “spoofing” activities, with attackers sending messages looking like they were from “trustworthy sources.” Weis praised U.S. Cyber Command, Marine Corps Cyberspace Command and U.S. Fleet Cyber Command for swiftly responding to the attempts.

“Especially early on, we ramped up the communication around this to help educate the user base on these potential exploits,” he said.“We also had to work in conjunction with the deployment of that new technology. So as that Teams client — that [Commercial Virtual Remote] capability — was deployed, we also saw adversaries try to exploit those seams,” Weis added, referring to the Commercial Virtual Remote (CVR) initiative the Pentagon created in the early days of the pandemic.

The Pentagon at the end of March started to introduce CVR, which includes Microsoft Office 365 and its Teams platform, as a short-term fix for the remote work many Americans moved to when widespread lockdowns took effect. The Navy and Marine Corps currently average approximately 200,000 personnel who are teleworking each day, Weis said.

The plan for CVR was to have it “burned down” once the pandemic ended, according to Weis.

Before the pandemic, the Navy planned to implement Microsoft Office 365 in the next few years, Weis said. In January, the service had a pilot program with 10,000 users for the platform.

But the new teleworking reality has forced the Navy and Marine Corps to roll out Microsoft Office 365’s availability much more quickly. Weis said the Navy expects to reach 160,000 users for the platform by the conclusion of Fiscal Year 2020. The Marine Corps is slated to have 150,000 users on the platform across its uniformed and civilian personnel.

“What’s happened is we’ve created a capability which we now have as an expectation. And that expectation is becoming a requirement and people are saying ‘I need that going forward,’” Weis said. “So what will happen and what is happening is that the Navy and Marine Corps are working to deploy Office 365 broadly.”

The fast-tracked shift to Microsoft Office 365 means the Navy can shed legacy cyberinfrastructure and move on to a more modern system.

“As we move to this new environment, which will enable these capabilities, we will obsolete that legacy infrastructure,” Weis said. “And there is goodness to be gained there, from a cybersecurity perspective, from an operational perspective, from a cost perspective.”

The Navy CIO said he expects to eliminate the use of CVR in about a year

Photo: Master Chief Navy Counselor Stephen Callaghan, (far left), chief recruiter at Navy Talent Acquisition Group Philadelphia, conducts virtual leading petty officer (LPO) qualification boards, subscribing to the maximum teleworking directive as COVID-19 preventative measures. US Navy Photo

Comments RSS feed for comments on this page

There are no comments yet. Be the first to add a comment by using the form below.

Search