Showing posts with label cybercrime. Show all posts
Showing posts with label cybercrime. Show all posts
Friday, December 4, 2009
Cybercrime or Cyberwar?
In the recently published Virtual Criminality Report 2009 McAfee asked if the transition from criminality to war has already happened, citing evidence that countries hostile to industrial democracies are involved in some of the more serious and sustained cybercrime. In response, McAfee said, “nation-states are arming themselves for the cyberspace battlefield.” McAffee CEO is careful to point out that experts disagree on the definitions of cyber war, but it is apparent that attacks are increasing in number and sophistication. Business, as well as government, must take steps to be prepared.
Thursday, August 27, 2009
Conficker and Cyber War
Two recent articles from the NY Times on Conflicker and the limitations of cyberwarfare point out the risks and paucity of tools to combat cyber threats.
Conflicker is complex and soundly designed worm program that has infected more than 6 million computers worldwide. Over 200 countries have compromised computers. Buenos Aires is thought to be one of the initial infection points. Even though fixes have been available since January 09, the worm continues to spread and even takes measures to protect itself!
The big problem is that no one (besides the maker/controller) really knows what it was designed to do. Someone controls more than 6 million computers that can be unleashed at will.
This brings us to the second article which discusses the limitations and controls on military (and by extension law enforcement) forces to take action. The same abilities that the hackers/malware types possess, the good guys have but they have to operate under rules of engagement and the norms of law and war. Is an attack via computer on a country's critical infrastructure and act of war? Dropping a bomb or launching a missile certainly is. A nation's power grid is a legitimate target for aircraft and missiles in a shooting war, wouldn't it be in a cyber war? What can be done in self-defense? The UN Charter permits self-defense under Article 52. Are we ready for wars fought with electrons?
Lots to ponder.
Conflicker is complex and soundly designed worm program that has infected more than 6 million computers worldwide. Over 200 countries have compromised computers. Buenos Aires is thought to be one of the initial infection points. Even though fixes have been available since January 09, the worm continues to spread and even takes measures to protect itself!
The big problem is that no one (besides the maker/controller) really knows what it was designed to do. Someone controls more than 6 million computers that can be unleashed at will.
This brings us to the second article which discusses the limitations and controls on military (and by extension law enforcement) forces to take action. The same abilities that the hackers/malware types possess, the good guys have but they have to operate under rules of engagement and the norms of law and war. Is an attack via computer on a country's critical infrastructure and act of war? Dropping a bomb or launching a missile certainly is. A nation's power grid is a legitimate target for aircraft and missiles in a shooting war, wouldn't it be in a cyber war? What can be done in self-defense? The UN Charter permits self-defense under Article 52. Are we ready for wars fought with electrons?
Lots to ponder.
Tuesday, August 25, 2009
Smarter Malware
In an article on Dark Reading Kelly Jackson Higgins talks about the new threat in malware. These subtle, targeted pieces of code are designed to obtain specific information from the victim organization. When combined with "spear phishing" attacks, the door to a company's or government's secrets are thrown wide open.
And it isn't only big guys who need to be worried. Small companies are now being targeted. Criminals go where the money is.
And it isn't only big guys who need to be worried. Small companies are now being targeted. Criminals go where the money is.
Subscribe to:
Posts (Atom)
Posts
