DHS cyber unit CISA wants to subpoena ISPs to identify vulnerable systems

guest · Oct 9, 2019

DHS cyber unit wants to subpoena ISPs to identify vulnerable systems
October 9, 2019
https://techcrunch.com/2019/10/09/cisa-subpoena-powers-isp-vulnerable-systems/

Homeland Security’s cybersecurity division is pushing to change the law that would allow it to demand information from internet providers that would identify the owners of vulnerable systems, TechCrunch has learned.

The new proposal would allow CISA to use its new powers to directly warn businesses of threats to critical devices, such as industrial control systems — typically used in critical infrastructure. These systems are highly sensitive and are increasingly the target of hackers to disrupt real-world infrastructure, like the power grid and water supply.

The move is likely to spark fresh debate over how much responsibility the federal government has to proactively warn private-sector businesses about possible vulnerabilities in their defenses.

Jake Williams, founder of Rendition Infosec and former NSA hacker, called the move a “huge power grab,” and warned that the proposed new powers are flawed and could be misused.
A CISA official speaking to TechCrunch on background said that the proposals, which have already been submitted to Congress, would ensure that businesses would be “more motivated” to take action if the advisory came directly from government.
Click to expand...

mirimir · Oct 9, 2019

Hmmm. That's not far from demanding traffic logs. Maybe just diagnostic scans, though.

guest · Dec 4, 2020

CISA set to receive subpoena powers over ISPs in effort to track critical infrastructure vulnerabilities
December 3, 2020
https://www.scmagazine.com/home/sec...rack-critical-infrastructure-vulnerabilities/

The Cybersecurity and Infrastructure Security Agency is set to receive new administrative authorities that will allow the agency to obtain subscriber information for vulnerable IT assets related to critical infrastructure. The provision was included in the final conference version of the National Defense Authorization Act.

A legislative proposal from CISA disclosed last year revealed that the agency was having trouble identifying owners of insecure, unpatched systems or devices that were connected to the internet.
In an interview hours before the finalized conference bill was publicly released, Rep. Jim Langevin, D-R.I., sponsor of House legislation pushing the idea and a chief proponent in Congress, said he was excited to see the provision make it into the final NDAA.

“It goes a long way toward allowing [the federal government] to be proactive at being able to reach out to vulnerable parties to let them know they have a security vulnerability that they need to close, as opposed to waiting until after the fact, [when] it’s the FBI knocking on your door saying ‘the bad guys are already in,’” Langevin said.
Click to expand...

CISA can only issue subpoenas to fulfill “a cybersecurity purpose” and the agency cannot request information for more than 20 covered devices in a single subpoena.
CISA officials have pitched the new authorities as being in line with the agency’s mission to engage with critical infrastructure and fix cybersecurity holes that could have cascading negative affects across society.
Click to expand...

Log in or Sign up

DHS cyber unit CISA wants to subpoena ISPs to identify vulnerable systems

guest Guest

mirimir Registered Member

guest Guest

Log in or Sign up

DHS cyber unit CISA wants to subpoena ISPs to identify vulnerable systems

guest Guest

mirimir Registered Member

guest Guest

Useful Searches