The Uphill Battle for Cybersecurity Accountability

Halcyon's Jon Miller on the Complex Landscape of Cybercrime Enforcement
Jon Miller, co-founder and CEO, Halcyon

Despite the rising tide of cyberattacks, global law enforcement faces significant hurdles in implementing effective deterrents against ransomware. "It comes back to the birth of cyberwarfare," said Jon Miller, co-founder and CEO, Halcyon, "where it was originally started as espionage, done by governments to other governments."

See Also: The Operationalization of Threat Intelligence Programs

It's a slow march toward cybersecurity accountability, as countries vary widely in their legal frameworks regarding cyber activities. While the U.S. government is hesitant to start classifying cyber as a higher-level problem than espionage, there are countries in which a ransomware attack against someone isn't illegal. So what should defenders do?

"If you are a defender, essentially you are on your own," Miller said. "The CISOs, the analysts are essentially the only line between hyper-sophisticated, incredibly well-funded and advanced attacker groups and stopping them. It all comes down to figuring out who's targeting you."

In this video interview with Information Security Media Group at RSA Conference 2024, Miller also discussed:

  • How the healthcare sector has benefited from the FBI's targeting of BlackCat;
  • The roles legal partnerships and insurance play in planning for ransomware attacks;
  • How organizations can build up technical resilience before an attack occurs.

Prior to Halcyon, Miller was the chief research officer of Cylance, now BlackBerry, where he focused on malware and product effectiveness. Before joining Cylance, Miller served at Accuvant, now Optiv, where he was part of a team that established and managed the Accuvant Labs.

About the Author

Michael Novinson

Michael Novinson

Managing Editor, Business, ISMG

Novinson is responsible for covering the vendor and technology landscape. Prior to joining ISMG, he spent four and a half years covering all the major cybersecurity vendors at CRN, with a focus on their programs and offerings for IT service providers. He was recognized for his breaking news coverage of the August 2019 coordinated ransomware attack against local governments in Texas as well as for his continued reporting around the SolarWinds hack in late 2020 and early 2021.

Around the Network

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing, you agree to our use of cookies.