Home > News > Rep. Ruppersberger: Cyber Networks Are Vulnerable

Comments 0 Comments

The U.S. faces the severe threat of cyberattacks every day. Our networks are not secured, making them ripe for attacks, from both private hackers and state actors. In the news, we hear about cyberattacks on the public and private sectors every day. These attacks can cause significant damage in a number of forms, such as financial losses, compromised intellectual property, and stolen sensitive personal information. Consumers can be subjected to this threat, whether directly through their online activity or indirectly through where they shop, as we saw with the attack on the major retailer, Target.

Symantec Corporation, a cybersecurity firm, conducted a study which found that there are 59 million consumers who are victims of cybercrime in the U.S. each year. The average cost of cybercrime in the U.S. over the past year was $38 billion, with the average cost per victim running about $298.

Cyber thieves target our networks because it is profitable to do so. They seek to steal financial information such as credit cards or even Social Security numbers, which could ultimately lead to identify theft. In fact, a study by the United Nations Office on Drugs and Crime reported that identify theft is one of the most profitable forms of cybercrime, generating about $1 billion in revenue every year on a global scale. Victims of identity theft pay the price, with the total cost to U.S. victims who were targeted through cyber techniques reaching $780 million.

[Article: Majority Leader Eric Cantor: “Let’s Restore Hourly Wages Cut by Obamacare”]

Besides exposure to cybercrime through direct online activity, consumers can become victims indirectly, simply by where they shop. Everyone is familiar with the massive cyberattack on Target’s networks this past winter. Cyber thieves stole personal information from approximately 110 million customers, including credit card numbers from 40 million people.

Some analysts estimate the attack has cost Target over $61 million, and ultimately it cost the CEO of the company his job. The monetary costs are related to reissuing cards, bank settlements, credit monitoring and enhancing security systems.

There are other negative consequences of the attack which are more difficult to quantify, such as the time spent on corrective action and a damaged reputation. Target CFO John Mulligan testified at a recent Senate Judiciary Committee Hearing that the cyberattack shook customers’ confidence in Target.

Target was victimized because it is one of the biggest merchandise retailers in the country, however; the private sector as a whole is at risk for attacks. In January, the FBI sent a letter to retail companies warning them that cyberattacks would likely increase in the coming year. The reason is that hackers are making a lot of money from the crime, so they are always looking for new ways to exploit our private sector networks.

The Target attack required a massive, expensive cleanup – after the damage had already been done. This paradigm shift of cyberspace becoming a battlefield requires us to act. We must have foresight and work to prevent these attacks from occurring in the first place, ultimately protecting U.S. consumers and our economy as a whole.

[Article: Sen. Elizabeth Warren: Why Equal Pay Is Worth Fighting For]

The reason that hackers can penetrate our networks is that we do not have a legislative framework in place to protect them.  The President issued an Executive Order which aims to protect critical infrastructure, but this is only one step in addressing the problem. The issue requires information-sharing legislation in order to truly protect our cyber networks.

In an effort to address this problem, the House Intelligence Committee Chairman Mike Rogers and I introduced the Cyber Intelligence Sharing and Protection Act (CISPA) of 2013. The bill allows for information sharing between the public and private sector in order to prevent cyberattacks from occurring.

Cybersecurity requires a partnership between the government and private sector, as the private sector owns about 80% of the Internet, making it difficult for the government to help protect it.

Under CISPA, if a company is cyberattacked, they could report the malicious code they found to the government, which could then use that to prevent other companies from becoming victims. Currently, there is no legislation that allows this type of sharing, and companies are concerned about discussing cyberattacks with other companies and the government because of anti-trust laws and privacy reasons.

CISPA also offers real-time sharing, which is necessary so that a cyberattack can be stopped before much, if any, damage is done.

[Article: How Can You Tell If Your Identity Has Been Stolen?]

In the process of developing the legislation, many privacy groups indicated concerns about CISPA violating privacy. I am proud to say that CISPA protects privacy and civil liberties in a number of ways, such as by requiring multiple layers of oversight, limiting use of cyber-threat intelligence, and prohibiting the sharing of personal information.

Also, it’s important to keep in mind that cyberattacks violate privacy – when hackers exploit our networks, they are accessing some of our most private information like medical records and Social Security numbers. This situation begs the need for CISPA, so that businesses and, ultimately, consumers are protected.

The Senate recently introduced cyber legislation, which means that we are one step closer in handing the President a finished product he can sign. Until then, I look forward to continuing an ongoing dialogue with the White House, my colleagues in the House and Senate, business leaders and privacy groups in order to solve the problem of cybersecurity together, so that ultimately our country, its economy, and our consumers are protected from the vicious attacks that have already caused too much damage.

More on Identity Theft:

This story is an Op/Ed contribution to Credit.com and does not necessarily represent the views of the company or its affiliates.

Image: daoleduc

Comments on articles and responses to those comments are not provided or commissioned by a bank advertiser. Responses have not been reviewed, approved or otherwise endorsed by a bank advertiser. It is not a bank advertiser's responsibility to ensure all posts and/or questions are answered.

Please note that our comments are moderated, so it may take a little time before you see them on the page. Thanks for your patience.

Credit.com receives compensation for the financial products and services advertised on this site if our users apply for and sign up for any of them.

Hello, Reader!

Thanks for checking out Credit.com. We hope you find the site and the journalism we produce useful. We wanted to take some time to tell you a bit about ourselves.

Our People

The Credit.com editorial team is staffed by a team of editors and reporters, each with many years of financial reporting experience. We’ve worked for places like the New York Times, American Banker, Frontline, TheStreet.com, Business Insider, ABC News, NBC News, CNBC and many others. We also employ a few freelancers and more than 50 contributors (these are typically subject matter experts from the worlds of finance, academia, politics, business and elsewhere).

Our Reporting

We take great pains to ensure that the articles, video and graphics you see on Credit.com are thoroughly reported and fact-checked. Each story is read by two separate editors, and we adhere to the highest editorial standards. We’re not perfect, however, and if you see something that you think is wrong, please email us at editorial team [at] credit [dot] com,

The Credit.com editorial team is committed to providing our readers and viewers with sound, well-reported and understandable information designed to inform and empower. We won’t tell you what to do. We will, however, do our best to explain the consequences of various actions, thereby arming you with the information you need to make decisions that are in your best interests. We also write about things relating to money and finance we think are interesting and want to share.

In addition to appearing on Credit.com, our articles are syndicated to dozens of other news sites. We have more than 100 partners, including MSN, ABC News, CBS News, Yahoo, Marketwatch, Scripps, Money Magazine and many others. This network operates similarly to the Associated Press or Reuters, except we focus almost exclusively on issues relating to personal finance. These are not advertorial or paid placements, rather we provide these articles to our partners in most cases for free. These relationships create more awareness of Credit.com in general and they result in more traffic to us as well.

Our Business Model

Credit.com’s journalism is largely supported by an e-commerce business model. Rather than rely on revenue from display ad impressions, Credit.com maintains a financial marketplace separate from its editorial pages. When someone navigates to those pages, and applies for a credit card, for example, Credit.com will get paid what is essentially a finder’s fee if that person ends up getting the card. That doesn’t mean, however, that our editorial decisions are informed by the products available in our marketplace. The editorial team chooses what to write about and how to write about it independently of the decisions and priorities of the business side of the company. In fact, we maintain a strict and important firewall between the editorial and business departments. Our mission as journalists is to serve the reader, not the advertiser. In that sense, we are no different from any other news organization that is supported by ad revenue.

Visitors to Credit.com are also able to register for a free Credit.com account, which gives them access to a tool called The Credit Report Card. This tool provides users with two free credit scores and a breakdown of the information in their Experian credit report, updated twice monthly. Again, this tool is entirely free, and we mention that frequently in our articles, because we think that it’s a good thing for users to have access to data like this. Separate from its educational value, there is also a business angle to the Credit Report Card. Registered users can be matched with products and services for which they are most likely to qualify. In other words, if you register and you find that your credit is less than stellar, Credit.com won’t recommend a high-end platinum credit card that requires an excellent credit score You’d likely get rejected, and that’s no good for you or Credit.com. You’d be no closer to getting a product you need, there’d be a wasted inquiry on your credit report, and Credit.com wouldn’t get paid. These are essentially what are commonly referred to as "targeted ads" in the world of the Internet. Despite all of this, however, even if you never apply for any product, the Credit Report Card will remain free, and none of this will impact how the editorial team reports on credit and credit scores.

Your Stories

Lastly, much of what we do is informed by our own experiences as well as the experiences of our readers. We want to tell your stories if you’re interested in sharing them. Please email us at story ideas [at] credit [dot] com with ideas or visit us on Facebook or Twitter.

Thanks for stopping by.

- The Credit.com Editorial Team