"The software is not getting that much better and the attack surface is only growing."
Attacks from China-aligned groups should require immediate action from the U.S. government.
According to former U.S. Cyber Command and National Security Agency Director Gen. Paul Nakasone, and reported by The Record, increased compromise of U.S. critical infrastructure by Chinese state-backed threat groups Volt Typhoon and Salt Typhoon should cause the U.S. to adopt an expanded approach in cyber defense.
Speaking on The Record’s podcast, Nakasone said that “everything has to get better — from our offensive capabilities to our defensive capabilities to our general understanding of the software.”
He went on to claim that after decades of talking about hygiene and patching, “the software is not getting that much better and the attack surface is only growing,” adding that the U.S.'s focus on cyber threat deterrence has hampered its capabilities in countering ever-evolving nation-state adversaries.
Written by
Dan Raywood is a B2B journalist with 25 years of experience, including covering cybersecurity for the past 17 years. He has extensively covered topics from Advanced Persistent Threats and nation-state hackers to major data breaches and regulatory changes.
He has spoken at events including 44CON, Infosecurity Europe, RANT Forum, BSides Scotland, Steelcon and the National Cyber Security Show, and served as editor of SC Media UK, Infosecurity Magazine and IT Security Guru. He was also an analyst with 451 Research and a product marketing lead at Tenable.
