US Cyber Defense Weaknesses

“The Russians are really good at this. Better than us"I disagree. US LE and intelligence services are at least as good at subverting the security of US information systems as Russians. State and local governments have taken all practical and legal measures to make it worse for my entire life by:--banning and nerfing crypto (from the old export ban to present),--hoarding vulnerabilities,--prosecuting whistle-blowers who threaten to embarrass large companies,--chilling research

US agency for cyber security thinks otherwise.

You were most probably still at grunt-like level by the time you left, this is a very recent article co-written by Mark Milley and Eric Schmidt: America Isn’t Ready for the Wars of the Future [1]You must of have also missed the tens of billions of dollars (and more) that the people in DC are now more than happy to throw at the US IT industry, all in the name of national security. And you think they’re going to kill one of their golden geese for competition-related reasons? That’s just delusio

the u. s. government has hacked CA providers so even companies following best practices are vulnerable. how can any company possibly compete against nation state attack?

If you're concerned that Rust has been compromised you should consider where that leaves Python. The NSA is both offensive and defensive. Part of their mandate is to protect American infrastructure for foreign attacks. A switch like this is one of the easier ways to protect against foreign threats and it is something that is routinely advocated for by most large tech companies and cloud providers.As for that Datacenter in Utah - it is a large Government project. The idea that the US Gove

The US government official cybersecurity people have a different opinion. https://www.whitehouse.gov/oncd/briefing-room/2024/02/26/pre...

No, fortunately for the world ... The satire was a state of US /Worldwide government networks security.I expect things to change in 2021, rather quickly.And it is 3-5 years too late, but better now than never.US and other western countries must:1)start producing their own chips / boards / hw etc, end-to-end, no exceptions2) Disconnect networks from "non-partner jurisdictions" (and I don't care about FooBacks and Gargle Ads driven business models and t

I used to think like that. But consider two things. The capabilities of the state actors are high. They cooperate with chipmakers and OS makers (or subvert or hack them). They compromise routers and hard drive firmware. Second, Kaplan's book documents multiple waves of cyber-fear in the US government; multiple US presidents starting with Reagan have tried and failed to secure our vulnerable systems. Simply put, corporations are not going to let NSA dictate security practices to them, becau

I suspect this will be the norm going forward.Big tech was taken over by bean counters long ago, the fact that it’s all running on duct tape and popsicle sticks under the hood will come back to bite us when we have a digital Pearl Harbor event.China will invade Taiwan and the first shot won’t be physical, it will be activating the 30 years of assets they grew in AWS/GCP/cloudfare/level3/AT&T/EtcMost of their HR/engineering departments are completely ret

This is a national security issue — malicious actors based in other nation-states are raiding American companies. It seems that US defense forces are not up to the task of repelling these invaders — yet we're expecting individual companies to go up against them??It will be a long, long time before the marketplace evolves sufficient technological measures to guard against state-sanctioned/possibly-state-sponsored malicious actors operating with impunity in a lawless environment.