FBI working to 'burn down' cyber criminals' infrastructure

Despite cyber attacks, data breaches, IBM expert says people aren’t changing their passwords

IBM X-Force head Wendi Whitmore discusses the IBM X-Force Threat Intelligence Index for 2020, which breaks down the largest cybersecurity threats of last year.

CHESTNUT HILL, Mass.  — To thwart increasingly dangerous cybercriminals, law enforcement agents are working to “burn down their infrastructure” and take out the tools that allow them to carry out their devastating attacks, FBI Director Christopher Wray said Wednesday.

Continue Reading Below

Unsophisticated cybercriminals now have the power to paralyze entire hospitals, businesses and police departments, Wray said during a conference on cybersecurity at Boston College. The ever-changing threat has forced law enforcement to get creative and target the dark web sites and other tools at hackers’ disposal, he said.

“The reality is: We are long past the days where we can fight this threat just one by one, one bad guy at a time … one victim company at a time. We’ve got to figure out ways to tackle the cyber-threat as a whole,” Wray told the crowd of FBI agents, university officials and others on the Chestnut Hill campus.

FBI Director Christopher Wray speaks during an interview with The Associated Press in Washington. (AP Photo/Jacquelyn Martin, File)

The U.S. had a nearly 40 percent increase in ransomware attacks between 2018 and 2019, said Joseph Bonavolonta, the head of the FBI’s office in Boston. There was an even more dramatic uptick in such attacks in just the four states — Massachusetts, Maine, Rhode Island and New Hampshire — covered by the Boston office, he said.

“The threat of ransomware is continuing to grow and evolve and we are seeing a shift to more sophisticated, smaller-scale ransomware campaigns, which maximizes the impact on the victims to extort higher ransoms,” Bonavolonta told the conference.


Foreign cybercriminals, especially those from China, are also using cyberattacks to steal research from the defense contractors and other companies to “avoid the hard slog of innovation,” Wray said, adding that the thieves are then turning around and using that information to compete against the very companies they ripped off.

A specialist works at the National Cybersecurity and Communications Integration Center (NCCIC) in Arlington, Va., Tuesday, Sept. 9, 2014. (AP Photo/Manuel Balce Ceneta)

“In effect, they are cheating twice over,” Wray said.

Wray stressed the importance of indicting cybercriminals, even when they are outside the grasp of U.S. law enforcement in places like Russia, China or Iran, saying such criminals must be held accountable “no matter where they are.”

Those countries “aren’t the tourism destinations they used to be and one day they will slip up and when they do, we are there. Because the FBI has a broad reach and an even broader memory,” Wray said.


Assistant Attorney General for National Security John Demers was among other speakers expected at the conference, which was organized by the FBI and the Masters in Cybersecurity Policy and Governance Program at Boston College’s Woods College of Advancing Studies.

Source: Read Full Article