Rioters who breached the U.S. capitol building have been spotted sitting at congressional desks with physical access to desktop computers and other devices. According to experts, there’s low risk that the rioting will pose a direct threat to the security of the Capitol’s computer networks or information on devices.
But the chaos may be a golden opportunity for malicious actors, including America’s enemies, to mount cyberattacks elsewhere.
In theory, elements within the seditious uprising or other actors using the rioters as cover might attempt to install malware on, say, Nancy Pelosi’s desktop. That could spread to compromise other computers on the network.
But such an attempt would face barriers far beyond guessing a congressperson’s password.
“You’d need a CAC card to install anything on a government network. It’s an actual physical ID card you have to put into the computer,” according to Vinny Troia, a former longtime Defense Department cybersecurity contractor and founder of Night Lion Security. CAC refers to a Common Access Card issued to Defense Department workers and military personnel.
“They could always force someone at gunpoint to login with the card or steal it, but I think that’s a low probability,” adds Troia.
A supporter of US President Donald Trump sits inside the office of US Speaker of the House Nancy Pelosi as he protest inside the US Capitol in Washington, DC, January 6, 2021
SAUL LOEB—AFP via Getty Images
Furthermore, according to Troia, the USB ports of all government employee devices should be disabled, a rule put into effect after Edward Snowden was able to exfiltrate sensitive government documents via a USB key. That would make it more difficult to install malware or remove information.
It’s also unlikely the mob will gain access to staff or legislators’ cell phones. Though once banned in legislative chambers, cell phones are now allowed, making it likely that lawmakers and others were carrying their devices when they were evacuated. And any government phones or laptops that go missing can be wiped remotely, according to Jonathan Reiber, former head of strategic cybersecurity policy in the Defense Department.
A supporter of US President Donald Trump sits at a desk after invading the Capitol Building on January 6, 2021, in Washington, DC.
SAUL LOEB—AFP via Getty Images
However, even if it doesn’t lead to a direct attack on the Capitol network, the right-wing insurrection will be an enticing opportunity for attacks elsewhere.
“Any adversary is going to look at what’s happening in the United States right now and try to do more,” warns Reiber. The chaos provides potentially strong cover for either state-backed or criminal cyberattacks on hospitals, city governments, or corporate networks.
Reiber strongly urges cybersecurity leaders to be vigilant.
“For CISOs across the world and around the United States, I’d be exercising my controls right now to increase my effectiveness … because hostile actors are going to go against them, too.”
More politics coverage from Fortune:
The biggest conspiracy theories of 2020 (and why they won’t die)
Under Biden, expect more scrutiny of Big Tech and mergers
Why a key Georgia county flipped from red to blue—and what it means for Democrats
Pfizer, Trump, and Biden: A twisted triangle that’s complicating COVID-19 relief
Biden’s first 100 days: Student loan debt won’t go anywhere
The fatal shooting of a 13-year-old boy by the Chicago police spark protests, a new documentary sheds light on six survivors of the Titanic, and the Methodist church welcomes its first drag queen minister-candidate. Read More
We use cookies on our website to give you the most relevant experience by remembering your preferences and repeat visits. By clicking “Accept”, you consent to the use of ALL the cookies.
This website uses cookies to improve your experience while you navigate through the website. Out of these, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may affect your browsing experience.
Necessary cookies are absolutely essential for the website to function properly. This category only includes cookies that ensures basic functionalities and security features of the website. These cookies do not store any personal information.
Any cookies that may not be particularly necessary for the website to function and is used specifically to collect user personal data via analytics, ads, other embedded contents are termed as non-necessary cookies. It is mandatory to procure user consent prior to running these cookies on your website.