Blog Posts

In this post I discuss my views on Active Defense in the context of setting the record straight on what I said in a recent Bright Talk panel discussion.  Is Active Defense illegal?  No!  Is attribution impossible?  No! And many other issues.

     Hacking has gotten more prevalent.  Businesses are under constant attack.  Current defenses aren't working.  More options are needed.  Active defense is one option and the discussion regarding the concerns needs to be started and moved forward.

     Companies persistently attacked cannot rely on the government for help.  Let’s face it, if the government was going to and could help you they would. But like most companies they too are overwhelmed defending against a daily barrage of cyber-attacks. So, what‘s the answer? Continue to absorb escalating costs of operation caused by unrelenting hackers? Accept the loss of proprietary data, intellectual property or trade secrets and consequently millions of dollars and reputation?  At what point should the good guys declare enough is enough?

Congress recently held hearings on cyber security and how to protect our public and private interests.  It was agreed that current law is outdated and needs to change.  We must come up with unique solutions and push the discussion of implementation down the road quickly.

Hacking back part II, can you argue I have no right to defend my networks against innocent compromised machines?

Part I in a series of hack back articles.

Here is the abstract to my article, "Hacking Back In Self-Defense: Is It Legal; Should It Be?"  To see the entire article go to Global Knowledge where it is published.