WASHINGTON—Congressman Paul D. Tonko highlighted Capital Region services and organizations that have already been impacted by ransomware attacks at an Energy and Commerce Subcommittee on Oversight and Investigations hearing today. During his questioning of the hearing, he pressed the witness panel—made up of experts in technology and cybersecurity—for recommendations on how businesses and governments government can better protect vital services and vulnerable industries from the growing threat of ransomware.
Rep. Tonko’s opening statement and questions as prepared for delivery:
Thank you M. Chair.
The government has an important role in ensuring the nation’s cybersecurity, especially related to critical infrastructure.
I’m sorry to say that high profile government entities have also been victims of ransomware attacks themselves. In my district alone, the Albany airport, local 9-1-1 systems, police departments, and the Albany city government have been among those attacked.
So, with many government agencies involved – both as targets and as protective actors – I would like to try to get clarity from our witnesses today on how the government can be better positioned to address this threat and help respond.
QUESTIONS
- Mr. Lee, can you first give us a sense of how it works now? When a critical infrastructure company is attacked with ransomware and they seek assistance from the federal government, who do they call, which agencies get involved and, most importantly, what services does the government provide?
Ms. Walden, you spent nearly a decade working on cybersecurity and other national security issues at the Department of Homeland Security.
- Ms. Walden, based on your experience, do you think there are opportunities for improvement in terms of the role of federal agencies here? As we consider solutions, are there more services that the government could provide that are currently either in short supply or not being provided at all?
While it may sound reasonable to have one agency in charge, one concern is that each industry or sector has very specific circumstances and needs. One agency cannot be expected to understand all the complications of a ransomware attack against a power plant versus a hospital, for example.
That is why we have “sector-specific agencies” to coordinate cyber information sharing with their industry and act as industry partners. Over the years, however, there has been some challenges about how such agencies coordinate with DHS.
- Mr. Reiner, what improvements can we making regarding coordination between DHS, sector-specific agencies, and the private sector to address the ransomware threat?
- Mr. Lee, similar question: Do you think that improvements can be made regarding how sector specific agencies coordinate with DHS to rapidly assist a company affected by a ransomware attack? If so, what recommendations would you make?
###