“Cyber is the most dangerous weapon in the world — politically, economically and militarily,” former Defense Secretary Bob Gates, the vice chairman of the JPMorgan International Council, said in the report, which was shared exclusively with CNN.
Several high-profile hacks this year underscore the dangers posed by cyber vulnerabilities.
“Cyber attacks in 2021 grew in number and sophistication, demonstrating that both state actors with vast resources as well as criminal groups have the capacity to threaten critical infrastructure and ultimately national security,” the JPMorgan International Council wrote.
The White House sent out a letter Thursday laying out steps business leaders can take to defend against cyber attacks this holiday season.
“Unfortunately, malicious cyber actors are not taking a holiday — and they can ruin ours if we’re not prepared and protected,” Biden cyber officials warned in the letter.
The JPMorgan council, whose members also include former UK Prime Minister Tony Blair and former US Secretary of State Henry Kissinger, credited the Biden administration and Congress for an “enormous amount of work” aimed at tackling the cyber challenge.
Yet the JPMorgan council, which first met in 1967, also laid out “opportunities to amplify these efforts,” including:
-Strengthening the collaboration between public and private sectors
-Ramping up the hiring of cybersecurity experts in government agencies
-Enhancing intelligence sharing among like-minded countries
-Defining and “enforcing norms of cyber behavior”
-Passing legislation to codify executive orders enacted by the Biden administration and prior administrations
“The public and private sectors must work together to fortify our business and government activities against this threat,” Gates wrote, “and adequately educate the American people about just how dangerous this weapon is.”
Business fears government is holding back on intel
The JPMorgan council called for governments to do more to bring cyber criminals to justice in a more timely manner. The report said this would “build greater trust and improve information sharing” between the public and private sectors.
“Cyber risk is of critical importance to countries, economies, and businesses,” Dimon wrote in the report. “To help protect national security and overcome impediments to trade, we need to hold bad actors accountable, provide transparency to those affected by incidents, invest in the uplift to cybersecurity, and adopt safe and sound practices for data protection and handling.”
The council argued that its crucial that governments don’t withhold what they know about cyber incidents and threats.
“There is a perception among some business leaders that the government is not sharing as much information as it could, which undermines trust and discourages businesses from sharing information in kind,” the report said.
The Biden administration emphasized it is taking these matters very seriously.
“The federal government is aggressively using our authorities to protect the nation from cyber threats,” a National Security Council spokesperson told CNN. The spokesperson pointed to increased intelligence sharing and briefings from across the government, partnerships to deploy cybersecurity technologies and “measures we do not speak about publicly for national security reasons.”
“We believe the federal government and the private sector have accomplished a lot in the past year and look forward to continuing this work and deepening our partnership to counter cyber threats,” the NSC spokesperson said.
Federal Reserve Chairman Jerome Powell warned Wednesday about how a widescale cyberattack could roil financial markets.
Asked during a press conference to identify risks to financial stability, Powell mentioned commonly cited threats such as a new Covid-19 variant and high market valuations. But then he expressed concern about how the Fed would respond to a major cyber event.
“The risk of a successful cyberattack … would be very difficult to deal with,” Powell said. “We know how to deal with bad loans and things like that. I think if a cyberattack that were to take down a major financial institution or financial market utility, that would be really significant financial stability risks that we haven’t actually faced yet.”
Exclusive: ‘Cyber is the most dangerous weapon in the world,’ JPMorgan council warns