Officials emphasize role of Section 702 in addressing cyberattacks

Senior Biden administration officials have touted that several cyberattacks have been addressed by the U.S. government through intelligence obtained under Section 702 of the Foreign Intelligence Surveillance Act as they seek the reauthorization of the law before it expires by year-end, reports CyberScoop. Aside from helping identify attackers behind the Colonial Pipeline ransomware attack two years ago and helping retrieve most of the $4.4 million ransom paid by the pipeline firm, data from Section 702 has also enabled the U.S. government to better act on an Iranian ransomware attack against a U.S. nonprofit last year, officials said in a press briefing prior to a Senate Judiciary Committee hearing on the intelligence authority law. Attempted hacking of a U.S. transportation company was also discovered by the FBI through Section 702 searches, according to an official. Incidental data collection under Section 702 has resulted in pushback, with Congress urged by civil liberties groups not to renew the law without warrant requirements, but an official said that requiring a warrant for intelligence searches would take a serious toll on national security.