In the News
In the news: Dark Reading (Print)
NSA Spying Scandal Darkens Cloud Discussions at RSA
"The steady leak of documents over the last eight months detailing the operations of the NSA intelligence collection activities has damaged both U.S. policy efforts abroad and the business of a variety of multinational companies, especially cloud providers. Efforts to implement strong security guidelines for the cloud will have to overcome efforts by other nations to implement data residency restrictions to hinder competition."
In the news: SC Magazine (Print)
RSA 2014: Richard Clarke Speaks on Rebuilding Trust with the NSA
"Clarke said he observed a disconnect between the policymakers' desire to collect information and the people doing the collecting, but explained that NSA workers are not randomly tapping into the emails and phone calls of Americans, even though they could."
In the news: Washington Post (Print)
Richard Clarke on Miscommunications in the Intelligence Community
"Intelligence expert Richard Clarke recommends more technical support and resources for FISA court staff."
In the news: New York Times (Print)
Obama's From Critic to Overseer of Spying
"Like other presidents before him, the idealistic candidate skeptical of government power found that the tricky trade-offs of national security issues look different to the person charged with using that power to ensure public safety."
In the news: Daily Beast (Print)
Obama Backs Off Real NSA Reform
"President Obama's handpicked surveillance review group, a mix of legal scholars and former government officials, has called for major intelligence policy changes."
In the news: White House (Print)
President Obama's Meeting with the Review Group on Intelligence and Communications Technologies
"Today, President Obama met with his Review Group on Intelligence and Communications Technologies -- Richard Clarke, Michael Morell, Geoffrey Stone, Cass Sunstein and Peter Swire -- to discuss the report they submitted to the President on December 13." You can find the Review Group's report here:
In the news: BankInfoSecurity (Print)
Shutdown's Impact on Federal IT Security
"'The smart adversaries try to launch attacks when they know there's a reduced administrative presence that can identify and respond to their activities,' says Jacob Olcott, cybersecurity principal at Good Harbor Security Risk Management.'"
In the news: White House (Print)
Statement by the Press Secretary on the Review Group on Intelligence and Communications Technology
"On August 9, President Obama called for a high-level group of experts to review our intelligence and communications technologies. Today the President met with the members of this group: Richard Clarke, Michael Morell, Geoffrey Stone, Cass Sunstein and Peter Swire."
In the News: Wall Street Journal (Print)
Cisco to Buy Cybersecurity Firm Sourcefire for $2.7 Billion
"Larger 'industry players are recognizing that security is increasingly a major issue for consumers and end users,' said Jacob Olcott, a principal at Good Harbor Security Risk Management LLC, which does cybersecurity work. 'The larger players are seeing there's a way to integrate security into their existing offerings…That allows them to keep the money in house."
In the News: Gov Info Security (Print, Audio)
Bill Endorses Obama Cybersecurity Plans
"'Draft legislation circulating in the Senate, if enacted, would serve as Congress' endorsement of President Obama's order to create best practices that industry could voluntarily adopt,' says Jacob Olcott, the former counsel to the committee that wrote the bill. Olcott is a principal specializing in cybersecurity at Good Harbor Security Risk Management, a consultancy founded by former White House IT security adviser Richard Clarke."
In the News: American Institute of Aeronautics and Astronautics (AIAA) (Print)
Cybersecurity of Global Aviation a Major Focus of AIAA AVIATION 2013
Leading cybersecurity experts will speak at AIAA AVIATION 2013, being held August 12–14 at the Hyatt Regency Century Plaza, Los Angeles, Calif. Hosted by the American Institute of Aeronautics and Astronautics, the conference will address the risk of the evolving cyber threats to the world’s $2.2 trillion commercial aviation enterprise. ... Richard A. Clarke, chairman and chief executive officer, Good Harbor Security Risk Management, LLC, will deliver a luncheon keynote address at 11:30 a.m. on August 13. Clarke, the former U.S. national coordinator for security, infrastructure protection, and counterterrorism, and the author of the New York Times bestseller "Cyberwar: The Next Threat to National Security and What To Do About It," analyze the potential devastating losses to commercial aviation and society at large if cyber threats to aviation systems are not properly addressed.
In the News: Finanical Times (Print)
IP theft: White House attacks China over hacking
"The bluntest assessment of the risks now facing corporate America from cyber crime has come from Richard Clarke, the former White House counter-terrorism officer under both Bill Clinton and George W. Bush. 'What has been happening over the course of the last five years is that China – let’s call it for what it is – has been hacking its way into every corporation it can find listed in Dun & Bradstreet.'"
In the news: Public Radio International (Print, Audio)
Report details U.S. weapons-systems compromised by Chinese hacking
"Richard Clarke, the former White House counter-terrorism czar and now the managing partner of Good Harbor, a cyber-security consultancy, said this likely means that the Chinese will have an easier time building advanced weaponry — or understanding how to counter our military advances. ... Clarke calls the likelihood of the Chinese being able to implant code into our weapons "remote.""
In the news: Wall Street Journal (Print)
Iran Hacks Energy Firms, U.S. Says
Oil-and-Gas, Power Companies' Control Systems Believed to Be Infiltrated; Fear of Sabotage Potential
"'If you were worried about cyberattacks against electric utilities five years ago, you're still worried today,' said Jacob Olcott, a former cybersecurity aide on Capitol Hill now at Good Harbor."
In the news: Center for National Policy (Print, Audio, Video)
The New Spycraft: Cyber Espionage in the 21st Century
"On Monday, the Department of Defense released a new report highlighting - among other issues - cyber espionage...How does the US government and the private sector best protect their systems and intellectual property? Join CNP President Scott Bates and an expert panel as they discuss the trend lines of these threats and how to best mitigate and prevent future loss. Featuring: Emilian Papadopoulos, Chief of Staff, Good Harbor and Richard Bejtlich, Chief Security Officer, Mandiant."
In the news: Wall Street Journal (Print)
Cuomo Names Cyber Security Advisers
Good Harbor Chairman Richard Clarke named to Governor Cuomo Cyber Security Advisory Board: "State governments have to protect their own extensive computer networks, but they also have to be concerned with the security of key, private sector networks that are essential to public safety and the economy within the state," Clarke said in a press release from the Cuomo administration.
In the news: Bank Info Security (Print)
4 Ways to Defend Against Nation-State Attacks
"Jacob Olcott, a principal for cybersecurity at the risk-management adviser Good Harbor, says companies can better manage cyber-risk by requiring vendors to show their work. 'Ask your vendor to provide evidence about the security process used to create the application or hardware,' says Olcott, who served as counsel on IT security matters for the Senate Committee on Commerce, Science and Transportation. 'If the application wasn't developed securely, you can be sure that you're introducing more risk into your enterprise.'"
In the news: Bloomberg (Print)
China's Cyberspies Outwit Model for Bond's Q
"'God forbid we get into a conflict with China but if we did we could face a major embarrassment, where we try out all these sophisticated weapons systems and they don’t work,' said Richard Clarke, former special adviser to President George W. Bush on cybersecurity."
In the news: Virtual Strategy (Print)
Richard A. Clarke, Former White House Cybersecurity Czar, to keynote Courion CONVERGE Conference
"Clarke served as the chief cybersecurity adviser to Presidents Bill Clinton and George W. Bush and is the Chairman of Good Harbor Security Risk Management, a cybersecurity risk management consulting firm. In his book Cyber War, Clarke details the threat of international attacks on the computer infrastructures of critical industrial and government targets."
In the news: Bloomberg (Print)
Cyberattacks Abound Yet Companies Tell SEC Losses Are Few
"'For the sake of investors, the SEC needs to figure out a way of enforcing the appropriate disclosure of material cyber attacks,' said [Good Harbor's] Jacob Olcott, who led a congressional review as counsel to Senator Jay Rockefeller, a West Virginia Democrat, that resulted in the SEC guidance."
In the news: C-Span ( Print)
Nation's Governors Meet in Washington
"Then, the Health and Homeland Security Committee participated in a panel discussion titled “Protecting Our Nation: States and Cybersecurity." Panelists include: David Hannigan, chief information security officer of Zappos.com; Richard Clarke, chairman of Good Harbor Security Risk Management; and State of Michigan Chief Security Officer Dan Lohrmann."
In the news: CSO Magazine (Print)
Hack findings highlight China, U.S. in game of spy vs. spy
"'Corporate espionage almost certainly constitutes an unfair trade practice, but national governments, including the U.S., have hesitated bringing actions against the most egregious violators to the World Trade Organization for economic and political reasons,' said Jacob Olcott, principal consultant for cybersecurity at Good Harbor."
In the news: New York Times (Print)
Some Victims of Online Hacking Edge Into the Light
"'There hasn’t been an abundance of reporting on cyberevents despite the fact that they are clearly happening,' said [Good Harbor's] Jacob Olcott, a specialist in online risks who managed a Senate investigation into the disclosure practices. The best hope, Mr. Olcott said, is that as investors start paying more attention to the threats, they will demand that companies disclose them."
In the news: Wall Street Journal CIO Journal (Print)
Utilities Race to Protect Electric Grid Before 'Disaster Strikes'
"In September, 70 electric company CEOs got a classified briefing at the North American Aerospace Defense Command in Colorado Springs. In January a group met to discuss how they would respond to a damaging cyber attack. ... 'It turns out,' [Good Harbor Chairman Richard] Clarke said, 'that it is very easy to get into the SCADA networks.'"
In the news: Microsoft (Print)
Linking Cybersecurity Outcomes and Policies
"This paper introduces a methodology for examining how the non-technical socio-economic factors in a country or region impact cybersecurity performance. With this methodology we can build a model we hope can help predict the expected cybersecurity performance of a given country or region based on our observation of non-technical socio-economic data. From that prediction, we can attempt to better understand the public policies that distinguish the performance of different countries and regions." The paper was authored by Microsoft's Global and Security Strategy and Diplomacy team with contributions from Good Harbor's Jacob Olcott and Will Howerton.
In the news: Infoworld (Print)
Unseen, all-out cyber war on the U.S. has begun
"Because cyber conflict is relatively new, interested parties need to focus more energy and attention on developing international norms that will say what is acceptable behavior and what is not, advises Good Harbor's Papadopoulos. That is crucial for maintaining a stable, secure, and trusted Internet, he says."
In the news: Infoworld (Print)
When in China, don't leave your laptop alone
"China and Russia are the two countries most frequently identified as being high risks, notes Emilian Papadopoulos, chief of staff at Good Harbor Security Risk Management, a security consultancy. Other high-risk countries include those with significant cyber capabilities, those known to conduct cyber espionage, and those known for corporate espionage and stealing business secrets and intellectual property, Papadopoulos says. 'Countries with significant state control of private industry, especially in telecommunications, may also be higher risk,' he says."
In the news: Bloomberg Businessweek (Print)
Political Gridlock Leaves U.S. Facing Cyber Pearl Harbor
"The government’s top cybersecurity officials staged a classified demonstration for dozens of senators in March ... They simulated a cyber attack that paralyzed New York City’s power grid, causing multiple deaths and billions of dollars in damage, two officials said.
"While government researchers had identified a vulnerability in the nation’s electrical grid years ago, lawmakers said during a congressional hearing in 2008 that no U.S. or state agency could compel power companies to act.
"'That was really the key moment,' said [Good Harbor's] Jacob Olcott, a former Democratic staffer on the Senate Commerce Committee and a cybersecurity specialist. 'That’s when we realized that there was a gap in the existing regulatory authority, and the private sector was doing little to improve security on its own.'"
In the news: Marketplace (Print & Audio)
President Obama's secret directive on cyber ops
President Obama has reportedly signed a secret directive that sets out rules for how the military might get aggressive in the face of a cyber attack. The order acknowledges that the military response to a computer attack isn't just battening down the hatches on government computers to stop hackers or malicious software. "This is more about the scope and legal authorizations of how the government uses it's offensive capabilities," says Jake Olcott, from the cybersecurity risk management firm Good Harbor. The administration is expected to resume its push for cybersecurity legislation in the new term. "To the extent that the two are intertwined that's great, but they're both important debates to be having," he says.
In the news: Bloomberg (Print & Video)
Coke Hacked and Doesn't Tell
"'Investors have no idea what is happening today,' says [Good Harbor's] Jacob Olcott, a former cyber policy adviser to the U.S. Congress. 'Companies currently provide little information about material events that occur on their networks.'"
In the news: CSO (Print)
Obama to compromise on cybersecurity executive order
"Good Harbor's Jacob Olcott agrees. 'Targeted information sharing with a small number of companies has proven to be a useful exercise,' he said. 'But these efforts are very difficult to scale. ... Heavy-handed regulation is absolutely unnecessary, ... In fact, the government would significantly improve private sector cybersecurity simply by enforcing existing securities laws that require companies to disclose material cyber risks and events to their shareholders.'"
In the news: CSO (Print)
Senator takes cybersecurity law fight to CEOs
"Jacob Olcott, principal at Good Harbor Consulting and past counsel and lead negotiator on comprehensive cybersecurity legislation to Rockefeller, said in the years he worked on the Hill, 'I cannot recall a letter that was sent to as many companies.'"
In the news: Dallas News (Print)
Iran may be escalating cyberattacks on U.S. companies in response to American actions, senator says
"'The problem with launching attacks is that you never know who's going to hit back,' Olcott, who consults companies on cybersecurity risks, said yesterday."
In the news: PR Newswire (Print)
First Inductees to National Cyber Security Hall of Fame Unveiled
"Announcing the inductees, [Hall of Fame Chairman Mike] Jacobs ... said, 'Working in areas of technology, public policy, business, education and public awareness, the honorees represent the innovators and visionaries who defined an industry and established the standards in information assurance. These pioneers paved the way for people everywhere to have the ability to securely utilize digital technologies for work, banking, recreation and communication.'" Good Harbor President Richard Clarke sits on the Hall of Fame board of advisors.
In the news: CSO (Print)
Obama's exec order draft on cybersecurity stirs debate
"[The executive branch] adopt[s] executive orders all the time," said Good Harbor principal Jacob Olcott. "It's not a constitutional crisis -- it's the way our government works."
In the news: ComputerWorld (Print)
Executive order would not allow 'meaningful leap' on cybersecurity
"Jacob Olcott, a principal at Good Harbor Consulting, said, ... 'The president can't create new regulations for industries that aren't already regulated, ... But he could expand existing regulatory systems.'"
In the news: PCWorld (Print)
Playing Politics with Cybersecurity
"Richard Clarke, former White House advisor on cybersecurity, has expressed concerns over evidence that China is actively probing and hacking the United States power grid. Clarke pointed out in The Wall Street Journal, 'The only point to penetrating the grid's controls is to counter American military superiority by threatening to damage the underpinning of the U.S. economy.'"
In the news: Marketplace Tech (Print)
Why the U.S. should worry about cyber security
"..It's not 'all this regulation' -- it's a very simple idea, which is that the industries themselves would establish their own best practices. Then, against those best practices, the companies would be audited by a third party. I don't think that's a lot of regulation, and I think something as key as the electric power industry, or the oil and gas industry, should be protected because we're all relying on it and we need to know that they're living up to a set of standards."
In the news: Smithsonian Magazine (Print)
Richard Clarke on Who Was Behind the Stuxnet Attack
"Are we as a nation living in denial about the [cyber] danger we're in?" I asked Clarke as we sat across a conference table in his office suite. 'I think we're living in the world of non-response. Where you know that there's a problem, but you don't do anything about it. If that's denial, then that's denial.'"
In the news: Bloomberg (Print)
SEC Push May Yield New Disclosures of Company Cyber Attacks
"It doesn't square that billions of dollars in intellectual property is being lost and investors don't care," said [Good Harbor principal] Jacob Olcott, a former staff expert on cybersecurity for the Senate Commerce Committee.
In the news: GovInfoSecurity (Print)
Influencing Policy, If Not the Law
In the interview, which took place before the Senate Majority Leader Harry Reid announced that the chamber will debate cybersecurity legislation early next year, Olcott also explains: Why Congress is taking so long to enact comprehensive cybersecurity legislation; How different cultures in the House and Senate affects how lawmakers approach cybersecurity legislation; Why, despite challenges, Congress will enact comprehensive cybersecurity legislation.
In the news: Army Times (Print)
Clarke: Cyber frailty should deter U.S. action
"America's critical computer networks are so vulnerable to attack that it should deter U.S. leaders from going to war with other nations, a former top U.S. cybersecurity official said Monday. ... The U.S. military, [Richard Clarke] said, is entirely dependent on computer systems and could end up in a future conflict in which troops trot out onto a battlefield 'and nothing works.'"
In the news: Network World (Print)
Corporate-owned vs. employee-owned mobile devices
Former White House cybersecurity adviser Richard Clarke, now partner at the firm Good Harbor Consulting, says employee-owned devices used for work may well "represent the newest and largest vulnerability in corporate America now."
In the news: FederalNewsRadio.com (Audio)
White House grading agency cyber progress
"The Obama administration is turning up the pressure on agencies to accomplish four specific cybersecurity goals. The Office of Management and Budget, the Homeland Security Department and the White House cyber coordinator's office gave deputy secretaries a high-level scorecard highlighting their agency's current status against goals for Trusted Internet Connections, implementing continuous monitoring and using secured identity cards to log on to computer networks. ... Jacob Olcott, a principal with Good Harbor Consulting, said a high level scorecard does two things to improve oversight. ... Olcott, who recently left the Hill as a former counsel for Chairman of the Senate Commerce committee Sen. Jay Rockefeller (D-W.Va.), worked on the cyber legislation that is currently going through Congress."
In the news: Government Computer News (Print)
Clarke: Outdated cyber defense leaves US open to attack
"The recent string of high-profile breaches of government and corporate IT systems illustrates the evolving threat landscape in which the advantage has shifted to the offense," [Richard] Clarke told Government Computer News. "I don't think it's a rosy picture, for the government or the private sector."
"Most enterprises still rely on static, first-generation IT security tools to secure an increasingly porous and ill-defined perimeter and do not protect against a new generation of advanced persistent threats, Clarke said."
In the news: Dossiê Globo News (Print)
Bush ignorou recomendações do Direito Internacional, afirma Richard Clarke (Portuguese)
In the news: The Guardian (Print)
Living with 9/11: the anti-terror chief
In the news: The Daily Beast (Print)
China's Secret Cyberwar
"What's going on is very large-scale Chinese industrial espionage," says Richard Clarke, a former top U.S. government official who held roles in counterterrorism and cybersecurity and now is chairman of Good Harbor Consulting, a security and risk-management company in Arlington, Va. "They're stealing our intellectual property. They're getting our research and development for pennies on the dollar."
In the news: ABC News (Video)
ABC News | June 30, 2011
Richard Clarke, former White House advisor on counter-terrorism and ABC News consultant, said he believes the U.S. does have the capability to deploy "internet in a suitcase" devices, but Iran is also probably capable of combating that particular tactic right now.
In the news: Washington Business Journal (Print)
Jill R. Aitoro
Washington Business Journal | May 12, 2011
Good Harbor Cyber Security Lead Eric Rosenbach:
What should come first, he added, is a strategy for finding more individuals with the technical skills required to protect the technology already in place.
"Rather than recommend wholesale reshuffle of the IT infrastructure, which would be very expensive, government needs to figure out how to secure what they already have," Rosenbach said.
In the news: PBS NewsHour (Video)
In the news: PBS Tavis Smiley (Video)
In the news: The National (Print)
Warning on cyberattack at nuclear power sites
Authorities should ensure they are prepared for the possibility of a cyberattack on the country's nuclear reactors once they are built, a leading security expert advises.
Cyberattacks are a threat to every nation, and the UAE is not exempt, said Richard Clarke at the Second Khalifa University Public lecture on Monday night.
In the news: Business Intelligence Middle East (Print)
Richard Clarke discusses cyber war at Khalifa University public lecture
As part of the Khalifa University public lectures series, Richard A. Clarke delivered a lecture on 'Cyber Security and Technology: Managing Risks of Connected Societies' on Monday.
In the news: ABC's Brian Ross (Video)
In the news: CBCnews (Video)
In the news: Center for First Amendment Studies (Print)
February 15, 2011In commemoration of the tenth anniversary of the attacks of 9/11, The Center for First Amendment Studies and the www.911plus.org announce the Richard A. Clarke 2011 National Scholarly Monograph Contest for graduate students in good standing at American universities. The goal of the contest is to analyze the information leading up to 9/11, the United States’ subsequent invasion of Iraq and Afghanistan, and related government decisions and actions in order to provide thoughtful analysis and public policy recommendations to make America more secure.
In the news: Foreign Affairs (Print)
The Sixth Crisis: Iran, Israel, America, and the Rumors of War
Allin and Simon have organized all the complexities of Iran’s movement toward nuclear capability and produced a readable, short book that fairly presents the positions of all involved.
In the news: Progressive Railroading Daily News (Print)
Hampton Roads Transit voted to hire Good Harbor Consulting to conduct four emergency readiness drills for the light-rail system.
ABC's Brian Ross (Video)
In the news: Popular Past Articles (Video / Print)
Excerpt: 'Your Government Failed You' (Clarke)
ABC News | May 29, 2008
Richard Clarke trusts Obama to fix national security problems (Clarke)
By David Edwards and Muriel Kane
rawstory.com | May 28, 2008
PBS INTERVIEW FROM 1999
Richard A. Clarke
If you are a reporter seeking an interview or opinion piece from one of our consultants, please contact us. If you'd like to find out more about our thought leadership activities, published books or ongoing television appearances, please contact us at contact at goodharbor.net.