Deleted tweet detection is currently running at reduced
capacity due to changes to the Twitter API. Some tweets that have been
deleted by the tweet author may not be labeled as deleted in the PolitiTweet
interface.
Showing page 249 of 2161.
Eric Geller @ericgeller
@NoTheOtherLeft lol — PolitiTweet.org
Eric Geller @ericgeller
U.S. authorities took down a Russian government-run botnet last month, disrupting its access to thousands of infected machines. DOJ says Russia's Sandworm (GRU) hacking team ran the botnet, which relied on the Cyclops Blink malware. https://t.co/Xehuk72gIH https://t.co/uQZBDGkCEZ — PolitiTweet.org
Eric Geller @ericgeller
The hearing has ended. — PolitiTweet.org
Eric Geller @ericgeller
Goldstein: "Thus far, we have shown great success in building trusted partnerships ... and by building that trust, we are able to catalyze information sharing to the degree needed to execute our mission." — PolitiTweet.org
Eric Geller @ericgeller
Clarke asks a bunch of questions about CISA's authority to compel SIEs to disclose info about their security posture, supply chains, etc. Goldstein says CISA can't compel disclosure of any of that and emphasizes that their goal is voluntary disclosure. — PolitiTweet.org
Eric Geller @ericgeller
Langevin: How will CISA actually use its SIE list? Goldstein: Bringing entities into the JCDC for prioritized cyber aid, and, if they don't need that immediate aid, analyzing their supply chains to help them mitigate future risks. — PolitiTweet.org
Eric Geller @ericgeller
Knake: "We're really trying to look at, how could we actually, with the systemically important entities, really bring them into some kind of collaborative environment, where we could trust that that environment is secure and this kind of information can be shared?" — PolitiTweet.org
Eric Geller @ericgeller
Knake agrees with Langevin. He says many SICI entities are well resourced and already pay for cyber services. "When we talk to these large, systemically important entities, the thing that they really do emphasize is that intelligence piece." — PolitiTweet.org
Eric Geller @ericgeller
Jim Langevin notes that support to SICI should be based on entities' maturity. More mature orgs (e.g. banks) will find prioritized CISA services less helpful, and prioritized intelligence more helpful. — PolitiTweet.org
Eric Geller @ericgeller
Sheila Jackson Lee asks about authorities gaps. Goldstein says they're not sure yet. Focused on implementing new authorities. Knake says CISA lacks capacity to do full "census" of entire CI community but not sure yet if it needs that capacity given its existing info channels. — PolitiTweet.org
Eric Geller @ericgeller
Goldstein says CISA wants "this to be both a rigorous and strongly methodological approach, but also one that is transparent and gets input from our partners" so that "the list is understood and credible by those organizations who are so designated on the list." — PolitiTweet.org
Eric Geller @ericgeller
Second, CISA is factoring in the possibility of cascading effects, so they're looking at smaller organizations that don’t immediately stand out as critical. Third, they're focused on entities that support national critical functions (https://t.co/wrHNh41P1H). — PolitiTweet.org
Eric Geller @ericgeller
First, Goldstein says, the effort is focused on entities, not assets, because the goal is figuring out which organizations to partner with. — PolitiTweet.org
Eric Geller @ericgeller
Goldstein describes three elements of CISA's work to identify "systemically important entities." — PolitiTweet.org
Eric Geller @ericgeller
Garbarino: Do you have the resources you need? Goldstein: "Today we are able to execute the mission ahead of us in the immediate future, but certainly we’ll want to continue and work together to ensure that we continue growing to meet the risk." — PolitiTweet.org
Eric Geller @ericgeller
Garbarino: Will these partnerships suffer if there are new regulations? Goldstein: "CISA’s role...as a trusted partner in cybersecurity...is one that's invaluable, and that's a relationship that we work very hard to preserve and advance with partners across sectors." — PolitiTweet.org
Eric Geller @ericgeller
Clarke: Does CISA support the Solarium proposal for SICI codification? Goldstein doesn't answer but says “our work in developing this Systemically Important Entity list aligns closely to the definition and the approach proposed by the Solarium Commission." — PolitiTweet.org
Eric Geller @ericgeller
Katko says that he and some of his colleagues disagree about SICI legislation but "I think we can all agree that allowing CISA to maintain its close partnerships with the private sector is a keystone to its long-term success and the cybersecurity of our nation." — PolitiTweet.org
Eric Geller @ericgeller
Amid talk of new CI cyber regulations, committee RM John Katko says "we can't lose sight of the value of [CISA's] voluntary relationships," which allow it to collect and redistribute "timely and valuable" threat intelligence "in a trusted manner." — PolitiTweet.org
Eric Geller @ericgeller
Sherman: “We have recommended to [DHS] that it strengthen efforts between public and private partners. The department has communicated to us that they are taking steps to implement our recommendations. We urge them to do so even more expeditiously..." — PolitiTweet.org
Eric Geller @ericgeller
Sherman: “As relatively new federal entities, both CISA and ONCD are uniquely positioned to play a significant role in protecting our nation's critical infrastructure.” — PolitiTweet.org
Eric Geller @ericgeller
GAO's Tina Won Sherman: "The diffuse and voluntary nature of the critical infrastructure landscape continues to pose a range of challenges to this community..." — PolitiTweet.org
Eric Geller @ericgeller
Knake: "[What] we've heard from every private sector company we talked to, is to make sure that we can provide the one thing that private companies can't do on their own, which is intelligence." — PolitiTweet.org
Eric Geller @ericgeller
Deputy NCD Rob Knake: “Our office is evaluating, in partnership with [sector risk management agencies like EPA, HHS, etc.], what are their capabilities, what are the resources they need, what are the gaps, and how can we help fill them?" — PolitiTweet.org
Eric Geller @ericgeller
Subcommittee RM Andrew Garbarino, who has sponsored SICI legislation, says “designating key elements ... will signal to the private sector the assets that they should specifically prioritize in order to secure our nation's critical sectors." — PolitiTweet.org
Eric Geller @ericgeller
Clarke notes that the govt has made priority CI lists before (e.g. Section 9 entities). "The throughline for all these efforts is that, at some point, Congress or the administration or both decided to punt on the question of benefits and burdens." — PolitiTweet.org
Eric Geller @ericgeller
Clarke cites a few examples of extra help for these SICI entities: "Better access to threat intelligence, enhanced operational collaboration, or other priority access to resources and support." — PolitiTweet.org
Eric Geller @ericgeller
Clarke: "It's not enough to simply make a list of our most vital assets. We need to know how we're going to operationalize that." — PolitiTweet.org
Eric Geller @ericgeller
SICI classification is a @CyberSolarium proposal that has been championed by Solarium commissioners like @JimLangevin, who have described it as one of the top remaining priorities from the Solarium's work. — PolitiTweet.org
Eric Geller @ericgeller
Clarke says the next challenge for policymakers is identifying the nation's "systemically important critical infrastructure," deciding what extra govt resources they should get, and deciding what extra burdens they need to meet. — PolitiTweet.org
