If cyber hackers are aiming their malicious code at US companies or government bureaus, they now face the wrath of brutal sanctions.
That’s the latest law of the land to come from President Barack Obama’s pen — a new executive order signed on Wednesday in which he declared cyber attacks a “national emergency” and ordered the punishment and sanction of foreign hackers.
Obama will wield this authority on any individual deemed to be involved in “cyber-enabled activity” that is likely to result in a “significant threat to national security, foreign policy, or economic health or financial stability of the United States.”
This is perhaps the strongest declaration yet against foreign hackers by the federal government, now prepared to use the same sanctions it uses against members of the Iranian and Russian regimes to specifically target those looking to penetrate US infrastructure, whether public or private.
Considering that cybersecurity is at the forefront of Obama’s agenda, having been mentioned as a key topic in his 2013 State of the Union address, it’s no surprise he’s pumping up executive action to match his rhetoric.
But that action also leaves plenty of room for interpretation and abuse, especially if harmless online antics are interpreted as major threats to national security.
“Remarkable that denial-of-service attacks are on the list of actions that risk U.S. sanctions,” tweeted cybersecurity expert and author Joseph Menn. “They are trivial, cheap and ubiquitous.”
Indeed, by extending the state of emergency to any cyber activity that threatens the foreign policy or economy of the United States, Obama is casting a wide net never before seen in US law.
A 2013 executive order signed by Obama addressed the dangers posed by foreign intrusion into domestic computer networks, but focused on pressing private companies to share “cybersecurity information” with the government.
That was mostly as a result of the presumed “9/11-Pearl Harbor-sized attacks” often invoked by members of US Senate and House committees on technology.
This action by Obama points to the uproar over the hacks that occurred at Sony Pictures, threatening to shut down the screening of the anti-North Korean film The Interview and the publishing of thousands of emails of movie stars and executives online.
The White House initially claimed with certainty it was caused by North Korean hackers, without providing direct evidence, but many independent security researchers still doubt this claim. But that didn’t stop the president from signing new sanctions on North Korea into law just a few weeks later.
Obama’s latest budget proposal seeks US$14 billion for federal cybersecurity efforts, mostly centered on the Department of Defense.
This article first appeared on Watchdog.org.