AT&T is notifying 51 million former and current customers, warning them of a data breach that exposed their personal information on a hacking forum. However, the company has still not disclosed how the data was obtained.
The US government needs to take a more active role in coordinating hardening of infrastructure, including the networks of private companies. This is analogous to the safety regulations the USG puts on car and airplane manufacturers, chemical plants, etc. This is a case of technology outrunning regulation, plus a dash of Alan Greenspan’s “flaw in my model” thinking that the market will optimize around security.
Second, companies need to be held legally and financially responsible for the data breaches that occur. This would open up an insurance market, which would be motivated to audit the companies accurately in order to set rates.
Honestly, I think we’d be better served by having a department of cybersecurity than a Space Force, since right now there’s only spotty coverage divided among the various intelligence agencies.
I think we need to do two things:
The US government needs to take a more active role in coordinating hardening of infrastructure, including the networks of private companies. This is analogous to the safety regulations the USG puts on car and airplane manufacturers, chemical plants, etc. This is a case of technology outrunning regulation, plus a dash of Alan Greenspan’s “flaw in my model” thinking that the market will optimize around security.
Second, companies need to be held legally and financially responsible for the data breaches that occur. This would open up an insurance market, which would be motivated to audit the companies accurately in order to set rates.
Honestly, I think we’d be better served by having a department of cybersecurity than a Space Force, since right now there’s only spotty coverage divided among the various intelligence agencies.