CISA is the U.S. government’s leading agency for protecting the country from cybersecurity threats. The acting director specified threats posed by China.
WASHINGTON—The acting director of the Cybersecurity and Infrastructure Security Agency (CISA) testified to Congress on May 8 about efforts to counter cyberattacks by the Chinese Communist Party (CCP) in the United States.
Bridget Bean, appearing before a House Appropriations subcommittee, was asked by lawmakers about hostile cyber actions by the CCP against U.S. entities. In response, Bean indicated that CISA was encouraging private sector partners to be more vigilant about the CCP.
The cybersecurity agency, she said, is helping companies with mitigation strategies against Chinese cyber threats.
“The more we can make it hard for them to get into our critical infrastructure, the better it is,” Bean said, in response to a question from Rep. Dan Newhouse (R-Wash.) about the adequacy of U.S. infrastructure to defend against the Chinese regime.
The United States has faced several CCP-backed cyberattacks in recent years, most notably in connection with the hacking group “Salt Typhoon.” The Chinese state-backed group penetrated U.S. telecommunications networks to collect metadata from calls and texts made by Americans.
The hacking group has also gained access to actual call and text data of high-level U.S. officials, prompting CISA to issue an urgent guidance for top officials to only communicate on messaging apps with end-to-end encryption.
Bean said that the core capability of CISA was its “attack surface management program,” whereby the agency detects common types of hacking and then advises private companies on how to issue “software patches” that will protect against them.
“The attack search management, not only is it one of our most scalable [and] cost-effective tools we have, [but also] it’s the most effective [in] identifying vulnerabilities and providing an entity to fix that, to mitigate that challenge,” Bean remarked in response to a question from Rep. Ashley Hinson (R-Iowa).
Bean also described how the agency was advocating against the use of TikTok, a social media platform owned by the Chinese company ByteDance that is subject to Chinese national security laws, which require companies to furnish any personal data they possess to Beijing.
The United States has enacted a law requiring TikTok to be banned within the country unless its ownership changes, though President Donald Trump has issued executive orders staying the effect of that law since taking office.
“China is the most prolific, dominant threat we have, and they are [hacking us] for three reasons. They are doing it for espionage, they’re doing [it] to steal our intellectual property, and they are getting into our critical infrastructure,” Bean said.
“They are waiting to disrupt or destroy our critical infrastructure at the time and place of their choosing, and they want … to discourage us should there be a conflict with China over Taiwan.”