Crucial Point founder and CTO Bob Gourley published an opinion piece in TheCipherBrief.com titled “Sanctions for NotPetya? You Betcha.”
It concludes with:
In selecting real sanctions, policymakers have a range of options that can deliver real messages while keeping us off an escalation ladder with a nuclear power. Some options include:
- Further economic sanctions
- Expulsion of businesses and Russian citizens from nations effected by the attacks
- Reduction of diplomatic ties including expelling a number of diplomats from nations affected
- Sport sanctions designed to send the message that fair play is required in all endeavors with the civilized world
- Coordinated activities to restrict Russian use of the internet or to limit internet use to be through key points, which can be monitored and blocked as required
There is another series of actions that this incident should compel every nation to consider. Every law-abiding country, not just the Five-Eyes nations, needs to establish mechanisms to collaborate and coordinate on cybercrime. Organizations like the U.K.’s National Cyber Security Centre (NCSC) or the U.S’s National Cybersecurity and Communications Integration Center (NCCIC) provide value in helping share information not just with other nations, but internally to help raise the defenses of citizens, businesses and infrastructure providers. Every law-abiding nation needs a collaborative cyber center like this.
Every business should also consider what this means for digital risk. One thing is clear, attacks will continue. Those businesses that have agile defenses are much better prepared to mitigate the impact of attacks.
For more see: “Sanctions for NotPetya? You Betcha.”
Have questions about your security at work or home? See Crucial Point CTO services for more insights.