What a lack of proof and action
If they could prove that said countries goverments had been doing cyber spying then they should deal with it by sanctions and possibly war as that is what countries do when they are attacked by another country.
Now of course the facts are that the attacking IP traced back to that country means nothing in this day and age of zombie machines.
Indeed only the other day Vauge Hague said that maybe tomorrow we willl be able to trace these criminals and then they will be in trouble so stop it now, pretty please with sugar on top. Whilst not an exact quote it does catch the flavour of the moment somewhat better I believe.
Facts are, anything on the internet is at risk and as such they should question what is linked to that network and what should not be. Indeed the goverment have there own so-called secure internet access for over 10 years, I say secure as its a managed firewall service iirc, but as we know when you give the bottom-feeder users email and the like with internet access then people will click what they should not click.
Real problem is company mentality to security and how many companies will pay hundreds of security guards to make sure you don't steal there items in there shops and have one person who has a 10-role job as in doing the job that should be 10 seperate people solely doing security of there IT if that at all. Most will go we brought X solution and that was it when X solution still needs to be managed and logs need to be audited etc etc. End result being you may not be able to steal that packet of tic-tac's but you can get there enture customer database of credit card nyumbers alot easiely and best of all route via russia or china knowing that the outfalling drama will get laid on there doorsteps. This is what happens folks.
By all means get people into the roles who can do the job and not suit HR paper pushers ideals of what is needed like an art degree. ut do it for the right reasons and not some knee-jerk reaction.
Also get organised in dealing with internet criminals; given there is no universal extradition process in place means that even for physical crime criminals can operate across borders with the safe knowledge they cant be taken to country Y for criminal charges even if true. That alone highlights that trying to do that for internet based crime across the World has by it's very definition a impossible hurdle to cross. Also factor in that say country Y does bring in some extradition process, whilst physical criminals will be immpacted and have to physcaly move the comparable internet criminals just have to route via another location Y if that.
What is realy needed is some balls added to the data protection act or the like and govermental auditing to make sure they comply instead of the usual after-the horse has bolted approach to security and data integrity. That and anybody who connects a computer to the internet has a resonsibility and currently they encourage irasposible people to get a computer and internet. I know ISP's need to take some responsibility and that alone could be enough to get those ignorant people with computers to become less ignorant and wise-up. But until then the team effort involved in resoloving security is not going to happen and more drama headlines will ensue and companies doing ultra experimantal research will still leave research machines attached to the internet when they have no need to be period.
Maybe the replacement for IPV6 will add in digitaly signed data packets, but until then you see the problems clearer every day that pass's.