Shifting cybersecurity responsibility to US tech firms may be “counterproductive”, says expert
Monday, March 6, 2023
The strategy has had a mixed reception, however, some experts believe that “overregulation” could have a “counterproductive” effect on a company’s cybersecurity.
“Even amid surging cybercrime, shifting the cybersecurity burden to software developers and tech solution providers may seem an unduly harsh move, however, economically speaking it makes perfect sense,” Dr. Ilia Kolochenko, founder of ImmuniWeb, and a member of Europol Data Protection Experts Network, told Verdict.
“That being said, overregulation or bureaucracy will certainly be harmful and rather produce a counterproductive effect.
“Unnecessarily burdensome or, contrariwise, formalistic and lenient security requirements will definitely bring more harm than good.”
Kolochenko believes the “technical scope” and “timing of implementation” for the requirements of Biden’s proposal is paramount to companies’ success or failure in taking increased responsibility.
The new National Cybersecurity Strategy also calls for US law enforcement to put more emphasis on bringing down gangs of digital thieves and ransomware bandits. Read Full Article
CPO Magazine: 2022 LastPass Password Vault Theft Traced to Home Computer of DevOps Engineer
SecurityWeek: Industry Experts Analyze US National Cybersecurity Strategy