FBI warns Critical Infrastructure under attack: AS HEARD ON – WTAG NewsRadio 580 [03-20-18]
On This Episode…
Turns out “Critical” infrastructure really is Critical after all.. And the Russians are hacking the US but it is not elections they are after.
Jim and Craig discuss a little known FBI program that aims to get keep those important inside information to people in the private sector who deal with Critical Infrastructure.
90% of our IT is in private hands. Craig and Jim talk about why this is important and how companies and government are protecting us.
“Dirty Deeds Done Dirt Cheap” Craig explains to Jim about a new “As-A-Service” category that costs 600 Billion a year. What it is and how it is being used.
You can protect all your systems — Craig and Jim discuss the availability of some great software out there to protect systems — it is available from certified vendors and some companies are using it and why Craig uses it to protect his clients.
Are you In Charge of Critical infrastructure or systems ? — Find out about and Join FBI’s InfraGard.org
Share This Episode
For Questions, Call or Text:
Below is a rush transcript of this segment, it might contain errors.
Airing date: 03/20/2018
FBI – Our Critical Infrastructure Under Russian Attack – FBU InfraGard
Craig Peterson: [00:00:00] Hey, Jim and I had a little fun this morning. I guess at Danny’s expense. He’s a great guy though. And then we got into the FBI report about Russians hacking. What are they been hacking? What have they been doing? And what’s the government doing about all of this? So it gave me a chance to talk about my new position over with the FBI InfraGard. And this is the private-public sector alliance that helps to keep critical infrastructure safe. So it’s a fun time. I always enjoyed being on with Jim and there’s some great information here I think for everyone and some lessons to learn that obviously we just haven’t learned yet.
Jim Polito: [00:00:43] He is our favorite Canadian. And I’m talking about a really smart guy, now actually doing work for the FBI. See, I tell you. He’s a smart guy and he’s our friend. He’s our Tech Talk guru. Ladies and gentlemen. Craig Peterson. Good morning sir.
Craig: [00:01:02] Good morning Jim.
Jim: [00:01:04] How are you today?
Craig: [00:01:06] I’m doing good. Looking forward to that snow tomorrow.
Jim: [00:01:08] Of course. Of course we are. We’re just like you. We want it. We want to go outside and roll around in it. That’s you know we’re Canadians. You know. I mean, come on.
Craig: [00:01:20] Yeah, that’s what it is. Also Danny was saying he was just so looking forward to it tomorrow.
Jim: [00:01:24] He’s very, very excited. You should see Danny. It’s like a puppy at the door when you’re coming home you know. When there’s a snow storm in the forecast that tail is wagging. He just. And then he has an accident on the carpet.
Craig: [00:01:42] Is that why you’re? I noticed, you know, the people might not be aware of this but you’re in one studio and Danny’s in another with glass.
Jim: [00:01:47] And Danny’s in another. Yeah.
Craig: [00:01:49] And the door, is that why you taped the door shut so we can’t get in there and get excited and make him tittle on the floor?
Jim: [00:01:02] He gets very excited. And you know you want to encourage that excitement but you know. So listen I know you’re working for the FBI now but I know that that’s not how you got this story. But the story is that Russia actually is going after our energy, our water, our other critical infrastructure systems. I mean despite there being a false report a while back, I think in Vermont that they had shut down a power grid which turned out to be fake news. But you’re telling us hey they’re going in there. They’re testing it.
Craig: [00:02:37] Yeah this is what’s happening. First of all I don’t work for the FBI, ok.
Jim: [00:02:42] Oh no, I know that. They asked you to help them out with some stuff.
Craig: [00:02:49] Yeah exactly, on the infrastructure protection side. Exactly. So hosting webinars for people who are involved in the critical infrastructure. And this is the type of story Jim that I think is a perfect fit. Because we’ve got Russian hacking and we’ve known that for a long time. We’ve got the Iranians hacking us. We’ve got the Chinese right, the Red Chinese. They’re going after intellectual property as well. But what’s interesting now is with the position I’m in which is with the InfraGard running their webinars and getting the information out to the private sector. Now this is where we talk about these things months before you’ll hear about them in the news. So it just came out in the news this week and what Russia has been doing is apparently the Kremlin behind this whole thing is called Dragonfly. But what Russia has been doing is breaking into our grids. And in fact there is some reconstructed fragments of the human machine interface shown here. This is it from Thursday, the FBI Department of Homeland Security report they’ve included this graphic that shows a power plant and all of the controls for the power plant. And this is what the Russians got. And this is really scary because they’re not only targeting these big places, they’re targeting small commercial facilities, networks. They’re staging malware. They’re conducting spear phishing attacks. They’ve gained remote access to energy sector networks. And one of the really, to me anyways, really scary thing is there was a hack recently that was apparently, now this is just based on what the results were, but apparently whoever it was was actually trying to make the plant explode. Now that’s a very, very big deal. Right.
Jim: [00:04:49] I would think so yeah.
Craig: [00:04:52] Yeah. So what are you going to do with something like that? You don’t want these guys and gals getting in. Russia is funding it. They’re trying to just so disarray I thing right? We’ve got all of these other countries that are going after us as well. So what do we do? And that’s where we have to step forward. That’s where we have to be proactive. We have to stop some of these stuff. Overall this is terrible. It’s going to get worse and worse and worse. You know we’re talking about really a potential world war where people are killed but it isn’t because of bombs or bullets being fired.
Jim: [00:05:36] We’re talking with Craig Peterson, our Tech Talk guru. And at the end of this segment we’ll give you a number you can text my name to and get a lot of great information from Craig. It’s free. He doesn’t annoy you. He doesn’t sell your name. Craig, I read a statistic yesterday that was frightening. Ok. The IT in our country, basically 90 percent of it is in private hands. Not in government hands. You know so I think sometimes like OK they can’t hack that because the government’s really good at making sure you can’t hack them. And you know, well I know. But I mean it’s I guess it’s a little bit of false hope. But then when I read no, 90 percent of it is just in private hands so we’re relying on businesses, you know, organizations to put up these walls to protect us. And you know it’s frightening as you said it’s like civilian warfare it’s like during World War 2 when we bomb civilians, that was a big step in warfare. Bombing civilians you went after military targets. Well hackers are not going after the military or government targets. They’re going after civilians.
Craig: [00:06:58] Yeah, you know, yesterday we were sitting around having a meeting and we were trying to decide what’s the problem people are having that we can really help with. And you know I’ve boiled it down to this, people are confused. They’re discouraged. And they’re hoping there’s something better when it comes to protecting their systems right. The FBI has been hacked. The NSA has been hacked. Look at all of our hacking tools, right, were stolen. And you know it just goes on and on and on. And there is stuff that’s better. There is new software that is available right now. There’s very few people that can install it and put it in place. But some of the government agencies are starting to use it. My clients are using it now. So it is going to get better. But I also look at it and you know this is private versus public thing right. I look at it and say that the federal government certainly they’ve got the military systems which are well protected. They’ve got the regular bureaucracy systems if you will right. They would mention some of the law enforcements and others. And those aren’t protected very well at all. Look at what happened with Debbie Wasserman Schultz and hiring these guys from Pakistan that may have been the leak. Ok. You know they are not even paying attention to them Jim.
Jim: [00:08:31] I know. It’s just. That’s why I’m glad you’re doing this work. Let me get to the bottom line. That’s why I’m glad you’re doing this work and there’s others like you out there sounding the alarm. Speaking of sounding the alarm because we’re kind of running out of time but I want to get to this. You know we talk about the automobile industry. Oh, the automobile industry as is a 500 billion dollar a year industry. And you know agriculture is a 750 billion dollar global industry. Cybercrime is now its own industry?
Craig: [00:09:12] Yeah. Yeah. Well right now, certainly, it’s hit a six hundred billion dollar point now, income. I don’t know what you call it right? Theft after a year?
Jim: [00:09:21] Yeah, yeah. It’s like well, when you say the automobile industry is say a 500 billion dollar industry. That means in gross revenue in the economic activity it produces.
Craig: [00:09:35] Right. Exactly. So here you are worth talking about. You’ve heard of cloud service or software as a service right? Well now there is cybercrime as a service and yeah, yeah. Ok so here’s what’s happening now. There’s this nonprofit think tank called the Center for Strategic and International Studies. It is bipartisan right. There’s a bunch of security companies involved. They have had a close look at this, looked at the FBI reports and others. It said six hundred billion dollars a year up from 440 billion in 2014. And the list goes on and on here. But basically what we’re talking about Jim, if you want a crime committed you can hire these companies.
Jim: [00:10:24] Great. Great. Can you give me an 800 number and a website? I want to. I’ve got a few people on my list and I want them to go out. That’s sickening Craig.
Craig: [00:10:33] Isn’t it. It’s dirty deeds done dirt cheap right? They finally hit the scale here. This is huge. It is expanding dramatically here. It’s getting much more sophisticated. You can go just like if you’re a software developer you can buy libraries of code for a user interface. You can buy libraries now for cybercrime. And the sophistication keeps increasing. This is getting more and more difficult. The only solution I can think of is to get involved. if you are involved in security physical or electronic, make sure you join or try and join because there’s an FBI background check. But the InfraGard. I-N-F-R-A-G-A-R-D. http://infragard.org. You’ll see it online. The FBI will help keep you up to date and you can attend my webinars. And get the best soccer out there right now. Cisco Talos has the best team right now without a doubt. The Cisco anti malware protection. You know it is the best I guess maybe we should wring the cash drawer here
Jim: [00:11:45] And listen but we don’t have to wring the cash drawer to get all this other information from you which is very simple because if you text my name to this number.
Craig:[00:12:00] 855-385-5553. That’s 855-385-5553.
Jim: [00:12:04] Craig Peterson will send you this information and other information for free. He will not pester you any he will not sell your name. Craig, great work. Great segment. We’ll talk to you next week.
Craig: [00:12:17] Hey thanks. Take care Jim. Bye-bye.
Jim: [00:12:15] All right folks. When we return a final word.
Don’t miss any episode from Craig. Visit http://CraigPeterson.com/itunes. Subscribe and give us a rating!
Thanks, everyone, for listening and sharing our podcasts. We’re really hitting it out of the park. This will be a great year!