they did not contact cisa. did cisa contact colonial? >> we were brought in by the fbi. sen. portman: wouldn't have been helpful to you if colonial contacted to you? >> we received information fairly quickly in concert with the fbi. i think right now, we are waiting for additional technical information on exactly what happened so we can use that information to potentially protect other potential victims down the road. sen. portman: is that we are saying? mr. wales: yes but it is not surprising since they have only to working over the weekend. we have historically had a good relationship as long -- we do it expect information to come from that, we will use it to help improve cybersecurity more broadly. we colonial have contacted you to ask for your assistance? mr. wales: i think there is a benefit because the information between, we were to share in a broader fashion to protect other critical infrastructure. sen. portman: that's the point, if there is ransomware focused on colonial, is that true? we appreciate your testimony today. it seems to me we also have to worry about th

>> they did not contact cisa directly. >> so they did not contact cisa. did cisa contact colonial? >> we were brought in by the fbi after they were notified of the incident. >> would it have been helpful to you if colonial had notified you directly? >> so we received information fairly quickly in concert with the fbi. i think right now we are waiting for additional technical information on exactly what happened at colonial so that we can use that information to potentially protect other potential victims down the road. >> so you still don't have the technical information you need to be able to be responsive and to provide support to critical infrastructure, is that what you're saying? >> yes, but that is not surprising given that it's -- you know, they've only been working on the incident response since over the weekend. and it's fairly early. we have had historically a good relationship with both colonial as well as the cybersecurity firms that are working on their behalf. we do expect information to come from that and when we have it we will use it to improve cybersecurity more b

cisa. that's the agency that's in charge of keeping the nation's critical infrastructure safe and secure. so when a hacking group attacks the biggest pipeline in the country, shuts the whole thing down for six days, cisa is the part of the government you call, or at least that you're supposed to call. they're a key part of the government's defense against this sort of stuff and the response when it happens. this a man who you probably remember by sight. his name is christopher krebs. chris krebs was the person in charge of cisa, that agency during the trump administration. and it's possible you're a cyber security nerd. it's possible you're a cisa groupie. and so you know him anywhere. you'd know him even before what he went through before the election. but if mr. krebs is familiar to you by sight, it is more likely that you remember him because of the way he lost his job as the head of cisa at the very end of the trump administration. last fall, cisa's main responsibility was to keep one p

did cisa contact colonial?after they were notified. >> if the fbi had not brought you in, would colonial, you think, have contacted you to ask for your assistance? >> no. >> do you think that's a problem? >> i think that there is benefit when cisa's brought in quickly because the information that we glean, we work to share it in a broader fashion to protect other critical infrastructure. >> right. >> oh, the diplomatic answer of somebody in government at the moment. okay. with me now is chris krebs, who was the first director of cisa. he's now the partner of the krebs stamos group. chris, i feel like we all know each other really well on these topics because we've been dealing with it quite a bit over the last few months. and i have to say, that was the most startling fact that we discovered today, what finding out that cisa was not looped into this. i think this has been sort of your -- you've been evangelizing about this, if you will, that cisa isn't looped in and yet it's supposed to be. how did this happen?

chris krebs is our guest, former director of cisa, we'll be right back.e switched to tide hygienic clean free. it's gentle on her skin, and out cleans our old free detergent. tide hygienic clean free. hypoallergenic and safe for sensitive skin. incomparable design makes it beautiful. state of the art technology, makes it brilliant. the visionary lexus nx. lease the 2021 nx 300 for $349 a month for 36 months. experience amazing, at your lexus dealer. like you, my hands are everything to me. but i was diagnosed with dupuytren's contracture. and it got to the point where things i took for granted got tougher to do. thought surgery was my only option. turns out i was wrong. so when a hand specialist told me about nonsurgical treatments, it was a total game changer. like you, my hands have a lot more to do. learn more at factsonhand.com today. do you struggle with occasional nerve aches like you, my hands have in your hands or feet? try nervivenerve relief from the world's #1 selling nerve care company. nervive contains alpha lipoic acid to relieve occasional

back at cisa, we developed a motto, saying that was defend today, secure tomorrow. as you're operating in the current environment, defending americas, pushing back against disinformation, you also have been to be thinking six months down the road, a year, two years down the road. and i think that's what's so challenging about this risk environment, yes, we have this constant assault and erosion of confidence in democracy domestically, where you see state legislatures enacting laws to restrict voting in many cases, purely based on a lie. purely based on this lie of a stolen election. if it were not for those claims -- i can guarantee if president trump had one re-election, you wouldn't be seeing these same sorts of legislation rolling out at the state level. but at the same time like will said, many of these claims are being promoted and further abused by foreign actors, some of the anti-vax information is in fact being promoted by the russians. so rt, former known as russian today, is promoting a number of different claims, amplifying concerns about clotting and the

within an hour of making this determination, the department notified cisa and omb. subsequently, the department sent a notification of a significant cybersecurity incident to the fbi the request coordinate and support. as required by fisma, the department notified congress within seven days subsequent to provide a more detailed information. the department actively participated in the coordination group and stood up in response to the incident, which supported information sharing, and coordination across the government for all affected agencies. along with the hands-on assistance with respect to the identified compromise, cisa also released an emergency directive which provided a guidance to further investigate and determine the scope of exposure at the department's bureaus beyond and tia. ":{? [indiscernible] department also representative which provided updated information. the department also received assistant from the fbi and microsoft attention and response team to investigate, remediate and recover from the incident. we concluded recommendations to reform our

that partnership is with cisa and ina. but i also believe that there's a strong need for a close and collaborative relationship with the national security agency and the cybersecurity directorate of our intelligence organizations to strengthen the analytical capability that informs our domestic intelligence efforts. >> thank you very much. ms. patel, you mentioned in your testimony the need for ina to adhere to, quote, the highest standards when it comes to the protection of civil rights and civil liberties. given the central role that ina plays sharing information not just within the federal government but also with state and local officials and private sector actors. you mentioned in your testimony instances during both democratic and republican administrations when in your view ina improperly collected or shared information about u.s. persons. i would like you to comment, please, on why you think there may be a tendency for ina to cross this line, in your view, and how congress might better define or constrain ina's rol

hopefully that's the framework that establishes a coordination agency i think that should be cisa.et: sam, we appreciate your time. hopefully we don't have you back too many times in these big hacks. >> thank you, bret. good to be with you again. >> bret: up next, the showdown over that sweeping election bill. we'll bring in the panel. first, beyond our borders tonight in russia. seven students and two adults are dead after a opened fire in a school in kazan today. suspect in custody. media says he was a former president. russian president vladimir putin reacted to the rare school attack by ordering a revision of regulations on the types of weapons allowed for civilian use. and china's population grew at its slowest rate in the last decade since the 1950s. the country's census showed the country's population increasing just 5% over the past decade. growth has slowed since beijing instituted a one child policy in the 1970 you see before adjusting it in 2016 to two children. just some of the other stories beyond our borders tonight. we'll be right back. ♪ ♪ $439 a month for 36 months

and for us at cisa, that was our role, that was our job to support those election officials that for three years, we had been grinding away to build security, to build resilience, but more importantly, not just do the work, but talk to voters about it. and election officials over and over and over again in the lead up to the election talked about how the process may be different, but the integrity of the process remains, that the votes will be counted as cast and that you could have confidence in the results of the election. and i'm really proud of the work we did together, it wasn't necessarily the russians or the iranians in the end that we were pushing back against, but all that preparation and work was critical in being able to push back against the lies in this election. janet: that's really interesting. so you were using the tactics that you had designed for foreign interference for domestic interference, in a way. go ahead. matt: yeah, certainly, i mean, the disinfo or misinfo, you know, lies are lies, right? and so, being able to push and really pre-bunk and the job that stat

the former director of homeland cybersecurity, cisa, says tsa can't do it alone. >> we need additional from other agencies like cisa, like the intelligence community and also the department of energy >> reporter: meanwhile, big oil is facing another potential threat shareholders at exxon and chevron determined to force those companies to more aggressively address climate change while a dutch court has ordered shell to cut greenhouse within nine ye. the wake-up call loud and clear for big oil, for both shareholders as gas prices hit a seven-year high following that cyber hack and the green movement is gaining momentum worldwide. lester >> all right tom costello, thanks >>> now to the alarming rise of anti-asian hate crimes and the fear leading many parents to keep their children out of school let's get more now from vicky nguyen. >> reporter: 14-year-old aidan nakajima-wu worked hard to make it into new york's stuyvesant high >> what were you most looking forward to as a freshman >> probably making new friends in high school >> reporter: it hasn't happened first covid kept him home but

up on capitol hill right now a hearing is going on focused on this question of whether cisa, the nation'sas brought in early enough and whether they have enough information now to respond to what happened to colonial pipeline. senator rob portman asking acting said of cisa questions when they were brought in and exactly what information they have now take a listen. >> would it have been helpful if colonia cacced you immediately to respond for effectively >> we received information fairly quickly in concert with the fbi. i think right now we are waiting for additional technical information exactly what happened at colonial to use that information to potentially protect other potential victims down the road. >> so, brandon wales, doesn't have the technical information to respond to the colonial pipeline hack and prevent infrastructure attacks to other major american infrastructure players. seems significant. he downplays a little saying early in the process had a good relationship with colonial in the past not to worry he has expectation they will get this information this attack happened l

third, cisa is leading a counterransomware sprint which is focussed on helping small and medium sized targets of ransomware, better protect themselves. finally, we're pursuing greater international cooperation, ransomware affects countries around the world. to address ransomware, because transnational criminals are most often the perpetrators of these crimes, and they often leverage global infrastructure and global money laundering networks. indeed, to combat the exploitation of virtual currencies often used for payment in ransomware, the u.s. treasury has also been leading international efforts, including driving development and adoption of virtual asset standards under the financial action task force. with those updates, i welcome your questions, turning it over to jen and liz, thank you for your time today. >> okay, kick us off. >> just to clarify something, has colonial paid any ransom, and has there been any advice on that? and then secondly, is there any timeline for when americans should be certain that this is going to be taken care of, that people are getting ready, memorial

how -- office at cisa? how will you plan to operate that? >> it began with the election. one of the things that i directed were a series of planners to go over and work closely with cisa as we put together our strategy for securing the 2020 election. what we found is that this truly is value added. the way that we do planning operations is something that i think is very helpful as we take a look at broad-based problems like elections security. we're going to continue to support that. that's been an element that the secretary has emphasized to us and in very close partnership, obviously, with cisa. so this will be just the first of many steps as we go to work this closely. >> all right. and one final question, and this is kind of related to -- unrepresented to nsa, but congress has just been notified, general, there's a decision to close the nsa's on-site childcare center creating a situation for mows or parents. can you -- employees or parents. can you speak a little bit about that decision? >> congressman, we were alerted several weeks ago by the private company that run

this case, the department of homeland security cybersecurity at infrastructure security agency, or cisa, the fbi, the department of transportation and hazardous materials safety administration, the department of the treasury, the department of defense and other agencies. to give you a sense of what we've been doing since that first meeting we have met throughout the weekend. the department of energy information -- energy information agency or ea is in contact with state and local agencies to assess current supply and in past due to the shutdown. d.o.e. has convene the oil and natural gas and electric sector utility partners to share details about the ransomware attack and discuss recommended basis to mitigate further incidents across the industry. dhs six is preparing release to go to the broader community to ensure it has visibility into the ransomware attack and it's taking appropriate measures to protect its networks. colonial is responsible for safe returning the pipeline to service and our role is to take proactive steps to analyze the impasse of the shutdown on the gasoline, diese

. >> reporter: cisa, the agency in charge of cybersecurity, says the russian linked group of hackers known as "darkside" gained access to colonial's i.t. system. but that "there was no indication" that colonials operational networks were directly hit. experts say the group has taken advantage of more than 40 victims in the last few years. security analysts says this shows how vulnerable america's cyber infrastructure really is. >> it is absolutely a road map for enemies and adversaries to potentially carry out a devastating blow against our critical infrastructure and really damage not only our economy, but lead to injury or potentially loss of life. >> no question about that. gio benitez live from atlanta tonight. and gio, the late news, the pipeline now back up and running but we know me your y'all day still a couple of weeks away. millions will hit the roads. and it could take that long to get back up to speed? >> reporter: yeah, that's right, david. we're talking about two weeks to get that gas all the way from texas to the northeast. and on that price gouging, remember, those st

federal agencies are monitoring the situation, including the fbi, the department of energy and the cisa, the federal agency in charge of cyber security adding, the attack underscores the threat that ransomware poses to organizations regardless of size or sector. experts caution that a prolonged outage could have an impact on jet fuel supply. that would have a ripple affect on major airport hubs. right now it's unclear who is behind this cyberattack. willie? >> more to come on this story. kathy park, thank you very much. the white house is monitoring that attack very closely this morning. along with friday's jarring april jobs report. this as house republicans prepare to oust liz cheney, the highest ranking woman in their caucus, from her leadership position. monica alba is following all of it this morning. >> reporter: good morning. the president has been briefed on the ransomware attack. they are highlighting issues over cyber security. issues they highlighted to protect the electric grid from these types of threats. it comes amid broader concerns after a jobs report friday showing onl

third, cisa is leading a character ransomware sprint , which is focused on helping small and medium-size companies , who are often the targets of ransomware, better protect themselves. finally we are pursuing greater international cooperation and ransomware affects countries the world here to address ransomware because transnational criminals are most often the perpetrators of these crimes and often leverage global infrastructure, money-laundering network. to combat the exploitation of virtual currencies that are often used for payment in ransomware, the u.s. treasury has also been leading international efforts including driving development and adoption of virtual asset standards under the financial action task force. with those updates i welcome your questions, turning it over jen and liz. thank you for your time today. sec. psaki: connor, kick us off. connor: thanks. just to clarify something. how does colonial paid any ranson and is or in advice on that? and secondly, is there any timeline for when america should be certain that this will be taken care of, people getting great for mem

>> they did not contact cisa directly. >> you still don't have the technical information you need toe able to be responsive and provide support to critical infrastructure? is that what you're saying? >> yes, but that is not surprising. >> if i had not brought you in would colonial have contacted you to ask for your assistance? >> no. >> let's get more details from our cnn security correspondent josh campbell. josh, an important hearing, what are we learning? >> as fellow investigators john and outside experts continue to deal with the aftermath on this attack on this pipeline congress is continuing its oversight role to ensure the government is talking to each other and with the private sector to stop some of these threats. this was the senate, not the house. there were no fists banging on tables but through their question you could sense the frustration of these senators. they were able to elicit on this colonial pipeline hack the federal government still doesn't know how these attackers made their way into that system. they haven't received the key vulnerabilities to help authoriti

>> they did not contact cisa directly. >> you still don't have the technical information you these to to critical infrastructure? is that what you're saying? >> yes, but that is not surprising. >> if the fbi had not brought you in would colonial have contacted you to ask for your assistance? >> no. >> no. colonial pipeline hasn't shared information with the federal government about exactly how darkside hacked their company. does that surprise you, and is that a problem? >> i think it is a problem. the incentive structure for companies right now is all wrong. they want to get back on their feet as quickly as possible. that's totally understandable. they want to minimize the economic impact, totally understandable. but we need to think bigger picture, and think about this is a collective problem, and sharing information with the federal government about what happened is going to be a critical step forward in the public/private partnership. the possibility of a duty to report for first responders to cyberincidents, a concept worth exploring. there's got to be a way to do this to protect

security, our capabilities, to bear through the cyber security and infrastructure security agency or cisa as it's commonly known. we are in the lead in the public-private partnership in an all of government effort to raise the cyber hygiene of private industry and of course within the federal .gov environment as well. we share best practices, we have cyber security directors to actually be on site at a company's facilities, to assess it. to make recommendations, and to direct it with respect to voluntarily direct to it raise its cyber hygiene and how we can best do so. this threat is not imminent. it is upon us. the colonial pipe ransomware attack is a stark example of what we have been saying for some time now. and quite frankly, when i served as deputy secretary of homeland security in the second term of the ba ma-biden administration we were focused on it then. so we are bringing our all of government effort at the president's direction to not only address the situation that is upon us today, that is galvanizing our attention of course, but to really focus on critical infrastructure an

the department of energy and cisa.ansom wear poses to organizations regardless of size or sector. >> that was nbc's kathy park reporting. >>> we turn to liz cheney. what removing her says about what it takes to be a republican. as the former president signals cheney should lose more than just her role in leadership. also ahead, former hud secretary julian castro with bands on evictions nationwide and advice from dr. anthony fauci as administration works to get americans vaccinated and armageddon. the chinese rocket landing in the ocean. why could that not be predicted? what about the new piece of space trash coming down. welcome to a new hear of "american voices". >>> thank you for being with us. i'm alicia menendez. this week the writing is on the

but it's taken a long time for the cyber professionals to be hired into secret service, ice, cbp, cisa. where do you see this initiative going? >> we are -- we are going to have probably the greatest hiring surge in the cyber security talent domain that has ever occurred. working with the cyber security and infrastructure agency in the department of homeland security as well as our management directorate. we have two sprints, one of course dedicated to ransomware, and one before the colonial pipeline. and the second sprint is on this subject about which you inquire which is cyber security talent. i launched a program with the girl scouts of america, one is never too young on the critical path to meet international need. and i welcome the opportunity to share with you, ranking member capito about our focus on recruitment and retention of cyber security talent, including reforms to the pay scales so that we can better compete with the private sector. well, i know that is a big issue because there is great demand across all kinds of spectrum and sometimes the government has difficult -- m

federal agencies are now monitoring the situation, including the fbi, the department of energy, and the cisa, the federal agency in charge of cybersecurity, adding the attack underscores the threat that ransomware poses to organizations regardless of size or sector. and alex, experts caution that a prolonged shutdown could also impact jet fuel supply. and that would have a ripple effect on major airport hubs. and right now it's still unclear who is behind the cyberattack, alex. >> it's a heck of a story. thank you so much, kathy park, for bringing it to us. >>> here to talk more about this attack, technology editor patrick tucker, welcome. big picture here, given the perspective on how big a deal this is, the fact that an outside entity could attack american infrastructure in this way. >> this is potentially a very big deal in terms of the vulnerability of the u.s. electrical infrastructure supply grid in terms of fuel. there is no indication right now that this particular attack is going to have an enormous ripple effect. the company itself shut down the pipeline themselves. there are a lot

from where i would have sat at cisa, if we negotiated a deal with congress on a piece of legislationprotocol to walk that back or ultimately oppose it. you know, he's got a lot off line here. he's going to have those that come up and support him based on the room he was given to run. >> yeah. >> i think breach of protocol is their brand these days. michael, i was going to ask you, if the republicans think they have nothing to high, they think it's preposterous, that they've been accused of given recon advance tours, why aren't they before the commission? >> because they gave reconnaissance tours before the day of the riot. i wouldn't want to testify to that. this is a game of self-interest. what's so madingly unfortunate about this is everybody's gotten locked up into mccarthy's self-interest here. this is a self-interest play. he does not want to have to testify to what he said, and he can't get away with conversations between me and the president are confidential. no, it ain't the not when you've already told other members of congress what the president said to you and what those c

coast guard, secret service, tsa, cisa, fema, cpb, and ice. it is good to know that you have very capable leaders and people in the components working to keep our country safe. i wish we could have discussed the budget proposal, but we covered a lot of ground in our earlier hearings. mr. secretary, though, there are difficult issues that this administration needs to address. about the security at our borders and our infrastructure and how our laws are upheld. as the secretary, we are looking to you to provide answers. i fear we are at a crisis point. border apprehensions are at an all-time high. budd, eyes apprehensions are at an all-time low. -- but, eyes apprehensions are at an all-time low. i have been to the southwest border this year, as well as in the past, to speak with agents and officers on the front lines. we have hundreds of youth coming through an airport in chattanooga on their way to facilities across the region. what we are seeing today is not sustainable. i'm not seeing any actions from the administration that progress is being