Cyberpunk Review » Hacked companies fight back with controversial steps (Reuters)

June 20, 2012

Hacked companies fight back with controversial steps (Reuters)

Source: Reuters

make-love-not-warcraft.jpg

Companies are calling for more active responses to hack attacks, because tinfoil hats are very poor firewalls.

More proof that our present is a cyberpunk future. Reuters reports that companies, frustrated with outdated laws against sophisticated hacking attacks, are now looking for more “active” forms of defense against hackers. Not content with react-and-repair plans, they are now looking for offensive responses:

Known in the cybersecurity industry as “active defense” or “strike-back” technology, the reprisals range from modest steps to distract and delay a hacker to more controversial measures. Security experts say they even know of some cases where companies have taken action that could violate laws in the United States or other countries, such as hiring contractors to hack the assailant’s own systems.

One such “contractor” is CrowdStrike, a “A Stealth-mode Security Start-up” that offer services such as “an on-demand retainer service that empowers your enterprise through experienced and professional tactical response teams” (what some may call “mercenaries”). They can also use more common tactics like honeypots (fake files to keep an intruder’s attention while he’s being traced).

photo-riaa-cops.jpg

One group seems to already have “active defense” in operation.

 

A slippery slope. With such security breaches becoming more commonplace, it would seem that an escalation in hacking countermeasures was inevitable. But such escalation is not without risks:

Henry (Shawn Henry, the former head of cybercrime investigations at the FBI who in April joined CrowdStrike) and CrowdStrike co-founder Dmitri Alperovich do not recommend that companies try to breach their opponent’s computers, but they say the private sector does need to fight back more boldly against cyber espionage.

Of course, that fight-back mentality can lead to mercenary groups who can go world-wide to track and “neutralize” a hacker with a “fuck your laws” mentality.

Other security experts say a more aggressive posture is unlikely to have a significant impact in the near term in the overall fight against cybercriminals and Internet espionage. Veteran government and private officials warn that much of the activity is too risky to make sense, citing the chances for escalation and collateral damage.

 

Who’s really to blame? Hackers are getting more aggressive with their attacks and more silent with their invasions, but are they the bored teen in his/her bedroom looking for lulz, or other corporations and governments looking for an advantage? To underscore the real threat, an example of the recently discovered to be American/Israeli made Flame rootkit is cited as a major failure:

Mikko Hypponen, the well-regarded chief research officer at Finland’s F-Secure Oyj, told the Reuters Summit his company had a sample of Flame in 2010 and classified it as clean and later missed another virus called Duqu that was suspected of being backed by Western governments.

“These are examples how we are failing” as an industry, Hypponen said. “Consumer-grade antivirus you buy from the store does not work too well trying to detect stuff created by the nation-states with nation-state budgets.”

Because some national governments are suspected in attacks on private Western companies, it is natural that some of the victims want to join their own governments to fight back.

Armed responses from corporate militias are more of a colorful afterthought for now, but with the Pentagon wanting to use military force on hackers and recent reports of Obama wanting to use drones for domestic surveillance, corporate militias may not be that far off.

This post has been filed under HackZ AttackZ!, News as Cyberpunk by Mr. Roboto.

Comments

June 23, 2012

Rogue said:

I find this cool and horrible at the same time.

June 27, 2012

digi_owl said:

Yep.

Cool in that what was seen as scifi becomes reality.

Horrible because while reading one could envision oneself at or near the top of the food chain, but in reality one have little chance of getting even close.

July 7, 2012

Sniper said:

They sure don’t rush things where you guys live. Believe Duke when he proclaims the motto of any third world police force: “Good, bad - I’m the guy with the gun!” The cops here would jump at every opportunity to earn a little something on the side, and they don’t care how, as long as they keep their asses clean with lots of paperwork and cash. That’s just what things are, and we all have to learn to live with it. Like this: http://www.kyivpost.com/content/business/closing-of-exua-sparks-intense-cyberwarfare.html

September 14, 2012

im Kino said:

all the time i used to read smaller articles that as well clear their motive,
and that is also happening with this post which I am reading here.

Walker said:

You are so interesting! I do not think I’ve read through something like this before. So great to discover another person with a few original thoughts on this subject matter. Really.. thanks for starting this up. This web site is one thing that is needed on the web, someone with a little originality!

November 22, 2012

Sam said:

Do your work with your whole heart, and you will succeed
- there’s so little competition.

March 31, 2013

Ativan said:

Howdy! This is my 1st comment here so I just wanted to give a quick shout out and say I genuinely enjoy reading through your posts.
Can you suggest any other blogs/websites/forums that deal with
the same subjects? Thanks for your time!

Leave a comment


~All Related Entries Related This~

 

All News as Cyberpunk

<<--Back to top

Made with WordPress and the Semiologic CMS | Design by Mesoconcepts