Article Options
The Next Big Thing
Posts about next generation technologies and their effect on business.

The security approach of giving them what they want - sort of...

Charlie Bess| January 4, 2013
1 Comments
0

security compromize.pngA recent report in the Washington Post describes how a number of companies have started using fake data to consume the attention of hackers. Essentially giving them something they can sink their teeth into early, before they get to the bone of the businesses infromation.

 

This is a variation of the honeypot approach to detect and deflect hackers, though this article calls them rabbit holes. In a way it is like a DoS attack on the hacking community’s time and energy.

 

The article states that the bait was varied — including bogus user log-ins and passwords and phony system configuration files. Anyone who has confidential data can image other pieces of information like false phone numbers, physical addresses, emails or even more detailed business information like purchase orders. It needs to appear ‘hackworthy’.

 

“We’re taking the hackers’ strengths and we’re making it their weaknesses,” said Nathan Hosper, a senior information technology officer at Brown Printing Co. explained, in the article “They get caught up in this cycle of fake information.”

 

The article also quotes former Justice Department security expert Michael DuBose as saying that companies are “tired of just playing defense”, and want to fight back as much as it’s possible to do so.

 

There is always a risk that it could make the hacker community focus its attention even more, if they realize what is happening.

 

“It’s best not to go punch your neighbor in the face before you hit the weight room,” said Rep. Mike Rogers (R-Mich.), the chairman of the House Intelligence Committee. IT organizations that use techniques like this can often underestimate the skills of those who encounter them.

 

As Mark Twain said “Few things are harder to put up with than a good example.

Tags: security| Trends
Labels: security| Trends
Labels:
Comments
| ‎01-05-2013 12:16 PM
Options

A page of top HoneyPot advice.

0
Leave a Comment

We encourage you to share your comments on this post. Comments are moderated and will be reviewed
and posted as promptly as possible during regular business hours

To ensure your comment is published, be sure to follow the community guidelines.
Be sure to enter a unique name. You can't reuse a name that's already in use.
Be sure to enter a unique email address. You can't reuse an email address that's already in use.
Type the characters you see in the picture above.Type the words you hear.
 
Search
turn on suggestions Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
About the Author
  • Steve Simske is an HP Fellow and Director in the Printing and Content Delivery Lab in Hewlett-Packard Labs, and is the Director and Chief Technologist for the HP Labs Security Printing and Imaging program.
Follow Us