Cybersecurity

No agencies hit by WannaCry so far

Margie Graves

Acting federal CIO Margie Graves credits patching under the cybersecurity sprint with protecting federal networks from a global ransomwear.

It's been nearly two years since the govermentwide cybersprint following the massive Office of Personnel Management data breaches. Yet acting federal CIO Margie Graves said on May 17 that those efforts are still paying dividends.

The latest example, Graves said, is the WannaCry ransomware attack. While the malware, which relies in part on software exploits, hit computers in more than 150 countries of the past few days, federal systems seem to have emerged unscathed.

"To date, I have not heard of a federal government victim of this particular incident," she said to audience applause at FedScoop's Public Sector Innovation Summit.

"We picked the things in the cyber sprint for a reason," Graves told reporters after her speech, "because they were primary threat vectors, and because we knew we needed to fix them."

Particularly important for a threat like WannaCry, she said, was ensuring that agencies could "truly scan" their network environments and report back on vulnerabilities almost immediately. If more organizations did the same, she said, the latest RansomWare attack might have found far fewer vulnerable systems.

Federal systems remain far from impervious, Graves said, "because there are always zero day attacks," but she said it was gratifying to see the hard work of two years ago "starting to show results." 

In her public remarks, Graves said the government was probably due for another sprint -- though perhaps not quite so speedy as the 2015 exercise. "I wouldn't wish that on anybody," she said "trying to do all that in 30 days."

About the Author

Troy K. Schneider is editor-in-chief of FCW and GCN.

Prior to joining 1105 Media in 2012, Schneider was the New America Foundation’s Director of Media & Technology, and before that was Managing Director for Electronic Publishing at the Atlantic Media Company. The founding editor of NationalJournal.com, Schneider also helped launch the political site PoliticsNow.com in the mid-1990s, and worked on the earliest online efforts of the Los Angeles Times and Newsday. He began his career in print journalism, and has written for a wide range of publications, including The New York Times, WashingtonPost.com, Slate, Politico, National Journal, Governing, and many of the other titles listed above.

Schneider is a graduate of Indiana University, where his emphases were journalism, business and religious studies.

Click here for previous articles by Schneider, or connect with him on Twitter: @troyschneider.


The Fed 100

Read the profiles of all this year's winners.

Featured

  • Shutterstock image (by wk1003mike): cloud system fracture.

    Does the IRS have a cloud strategy?

    Congress and watchdog agencies have dinged the IRS for lacking an enterprise cloud strategy seven years after it became the official policy of the U.S. government.

  • Shutterstock image: illuminated connections between devices.

    Who won what in EIS

    The General Services Administration posted detailed data on how the $50 billion Enterprise Infrastructure Solutions contract might be divvied up.

  • Wikimedia Image: U.S. Cyber Command logo.

    Trump elevates CyberCom to combatant command status

    The White House announced a long-planned move to elevate Cyber Command to the status of a full combatant command.

  • Photo credit: John Roman Images / Shutterstock.com

    Verizon plans FirstNet rival

    Verizon says it will carve a dedicated network out of its extensive national 4G LTE network for first responders, in competition with FirstNet.

  • AI concept art

    Can AI tools replace feds?

    The Heritage Foundation is recommending that hundreds of thousands of federal jobs be replaced by automation as part of a larger government reorganization strategy.

  • DOD Common Access Cards

    DOD pushes toward CAC replacement

    Defense officials hope the Common Access Card's days are numbered as they continue to test new identity management solutions.

Reader comments

Please post your comments here. Comments are moderated, so they may not appear immediately after submitting. We will not post comments that we consider abusive or off-topic.

Please type the letters/numbers you see above

More from 1105 Public Sector Media Group