top | item 39470407

(no title)

relbeek2 | 2 years ago

> However, the US Cybersecurity and Infrastructure Security Agency is “working closely with AT&T to understand the cause of the outage and its impacts, and stand[s] ready to offer any assistance needed,” Eric Goldstein, the agency’s executive assistant director for cybersecurity, said in a statement to CNN.[1]

[1] - [https://www.cnn.com/2024/02/22/tech/att-cell-service-outage/...

This isn't telling of anything, right? Wouldn't CISA be involved with anything that impacts Public Infrastructure at this level?

discuss

red-iron-pine|2 years ago

by itself, not telling of anything per se.

like, you could commit a dumb BGP config and break lots of stuff. have done that in the past, actually...

but any time a national-tier ISP has a national-level outage, that warrants a look from multiple orgs. and given the number of threat actors like china, NK, iran, and russia, who are, and have, made aggressive efforts in this space -- and have strong reasons to do so now -- its not crazy for the US fed'gov to want to know a little more, and offer to help. but again, entirely possible it's unrelated.

overstay8930|2 years ago

This is normal for high profile outages, even if you are small you can still engage with the CISA if you think there's foul play.

relbeek2|2 years ago

from the same article above, it seems like it's a critical part of this.

> “Everybody’s incentives are aligned,” the former official said. “The FCC is going to want to know what caused it so that lessons can be learned. And if they find malfeasance or bad actions or, just poor quality of oversight of the network, they have the latitude to act.”

If AT&T gets to decide if they are at fault, they will, of course, never be at fault. So a third-party investigation makes a lot of sense.

I would also suspect that the FCC would not be as well versed in determining if there was a hack or even who did it, which is why I feel like CISA would need to get involved in the investigation.