Obama says hacks show need for cybersecurity law

The measure would criminalise sale of stolen financial data, require companies to notify consumers about data breaches


Afp January 13, 2015
President Barack Obama delivers remarks on protecting consumers and families in the digital age, at the Federal Trade Commission in Washington, DC. PHOTO: WHITE HOUSE

WASHINGTON: US President Barack Obama said on Tuesday that the cyber attacks against Sony and the Pentagon's Central Command highlight the need for toughened laws on cybersecurity.

Obama made the comment as the White House unveiled a proposal to revive cybersecurity legislation stalled over the past few years.

"With the Sony attack that took place, with the Twitter account that was hacked by militant sympathisers yesterday, it just goes to show how much more work we need to do -- both public and private sector -- to strengthen our cyber security," the President said at a meeting with congressional leaders.

Obama said he had spoken to the Republican leaders of the House and Senate and "I think we agreed that this is an area where we can work hard together, get some legislation done and make sure that we are much more effective in protecting the American people from these kinds of cyberattacks."

The proposal unveiled on Tuesday would allow increased sharing of information on cyber threats from the private sector with protection from liability. The measure also would criminalise the sale of stolen financial data, and require companies to notify consumers about data breaches.

A White House statement said the updated proposal "promotes better cybersecurity information sharing between the private sector and government, and it enhances collaboration and information sharing amongst the private sector."

The plan also "would allow for the prosecution of the sale of botnets, would criminalise the overseas sale of stolen US financial information like credit card and bank account numbers, would expand federal law enforcement authority to deter the sale of spyware used to stalk or commit ID theft, and would give courts the authority to shut down botnets engaged in distributed denial of service attacks and other criminal activity," the statement said.

The proposal would shield companies from liability if they share information about cyber threats with the Department of Homeland Security, which has been setting up special units for threat analysis and sharing.

Obama was expected to make comments on the initiative later Tuesday at the National Cybersecurity and Communications Integration Center.

Obama has pressed for cybersecurity legislation to allow the private sector to share data on threats without fear of liability for any adverse consequences from the disclosures.

Earlier efforts on cybersecurity legislation have stalled amid opposition from civil libertarians who feared it could allow too much government snooping and conservatives who argued it would create a new bureaucracy.

However, concerns have been heightened by the hacking of Sony Pictures and massive data breaches affecting retailers including Target and Home Depot.

On Monday, the US Central Command suspended its Twitter page after a group declaring sympathy for Islamic State hacked its social media accounts and posted internal documents.

DIA gets new chief

The first Marine Corps officer to lead the Defense Intelligence Agency will take command later this month, a Pentagon spokesperson said.

Maj-Gen Vincent R Stewart will be promoted to lieutenant general just prior to assuming command of the agency in a January 23 ceremony at DIA's Joint Base Anacostia-Bolling headquarters here, Warren said.

In addition to being the first Marine to hold the position, he added, Stewart will be DIA's first African-American commander.

COMMENTS

Replying to X

Comments are moderated and generally will be posted if they are on-topic and not abusive.

For more information, please see our Comments FAQ