Cybersecurity: The Evolving Nature of Cyber Threats Facing the Private Sector, Hearing Before the Committee on Oversight and Government Reform, Subcommittee on Information Technology, U.S. House of Representatives, One Hundred Fourteenth Congress, First Session, March 18, 2015 [open pdf - 4MB]
This is a testimony compilation of the March 18, 2015 hearing "Cybersecurity: The Evolving Nature of Cyper Threats Facing the Private Sector," held before the House Committee on Oversight and Government Reform. From the testimony of Richard Bejtlich: "Who is the threat? We [FireEye, Inc.] have discovered and countered nation-state actors from China, Russia, Iran, North Korea, Syria, and other countries. The Chinese and Russians tend to hack for commercial and geopolitical gain. The Iranians and North Koreans extend these activities to include disruption via denial of service and sabotage using destructive malware. Activity from Syria relates to the regional civil war and sometimes affects Western news outlets and other victims. Eastern Europe continues to be a source of criminal operations, and we worry that the conflict between Ukraine and Russia will extend into the digital realm. Threat attribution, or identifying responsibility for a breach, depends on the political stakes surrounding an incident.1 For high-profile intrusions, such as those in the news over the last few months, attribution has been a priority. National technical means, law enforcement, and counter-intelligence can pierce anonymity. Some elements of the private sector have the right experience and evidence to assist with this process. Attribution is possible, but it is a function of what is at stake." Statements, letters, and materials submitted for the record include those of the following: Richard Bejtlich, David French, Daniel Nutkis, Doug Johnson, and Ed Mierzwinski.
U.S. House Committee on Oversight and Government Reform: http://oversight.house.gov/