DOCSLIB.ORG

Cascades: the Anonymous Hack of Hbgary (Part A)

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Cascades: the Anonymous Hack of Hbgary (Part A) Case Study | 2016 | RELEASE 1.0 Cascades: The Anonymous Hack of HBGary (Part A) OPEN TECHNOLOGY INSTITUTE | @NEWAMERICA | CASCADES (A) 1 OPEN TECHNOLOGY INSTITUTE | @NEWAMERICA | CASCADES (A) 2 This case study was created as part of the Open Technology Institute’s (OTI) effort to create a curriculum focused on how digital technology is transforming public policy and governance. It is intended for use in a classroom setting. OPEN TECHNOLOGY INSTITUTE | @NEWAMERICA | CASCADES (A) 3 CASCADES In January 2011, Aaron Barr thought he had research and plans in early February, Anonymous discovered a goldmine. And it could not come unleashed an attack that overwhelmed HBGary, 5 soon enough. Since becoming the CEO of HBGary Inc., Barr’s firm, and Barr himself. More Federal (a company that sold IT security services specifically, Anonymous—which as Coleman 6 to the federal government) in fall 2009, Barr had wrote, was “ready to rumble” after seeing The struggled to generate revenue, occasionally selling Financial Times piece—defaced the company’s “social media training[s]” to private firms but website, released tens of thousands of the failing to secure the large contracts he had company’s e-mails, bragged about deleting a predicted at the start of his tenure.1 Now he terabyte of the firm’s data, and took over Barr’s 7 believed that he had uncovered the key to Twitter account. The hackers posted doctored identifying the leaders of Anonymous, a collection images of Barr, released e-mails detailing his of hacktivists that had gained prominence for marital strife, and went so far as to publish Barr’s (among other things) carrying-out attacks against home address and social security number as well 8 several financial firms that had stopped processing as several tweets with extremely crude content. donations to WikiLeaks.2 Barr planned to share Among them: “Sup mother[redacted]: I’m CEO of his findings in February at B-Sides, a technology a shitty company and I’m a giant media- security conference in San Francisco, and he [redacted]. Lol check out my [redacted] Greg’s believed that the presentation (titled, “Who Needs site: rootkit.com.” And “Okay my fellow the NSA When We Have Social Media”) could Anonymous [redacted] we’re working on bringing 9, 10 jumpstart his career and resolve HBGary Federal’s you the finest Lulz as we speak. Stay tuned!” financial woes.3 As Gabriella Coleman, a cultural For the HBGary brand, the financial fallout anthropologist at McGill University, wrote in her (estimated to be in the millions of dollars) and recent book on Anonymous, “If HBGary was really broader damage was significant.11 “They [the badass enough to identify the movers and shakers hackers] have committed a crime against our behind Anonymous—before even the FBI— company, and, unfortunately, we are legally corporate executives would, with good reason, be bound,” said Penny Leavy, the President of falling all over themselves to employ them.”4 HBGary, Inc. For the IT security community, the The plan backfired. After HBGary leaked the story incident was frightening. “[It] makes me want to to The Financial Times, which reported on Barr’s change all my PWs [passwords] and re-evaluate OPEN TECHNOLOGY INSTITUTE | @NEWAMERICA | CASCADES (A) 4 my processes,” tweeted Jeremiah Grossman, the focused on selling software that helped organizations founder of WhiteHat Security, a firm that in the financial, healthcare, and public sectors specializes in web security, adding, “Do not poke identify and understand IT security threats. the bear.”12 And for the hacktivists, it was a However, in 2009, Hoglund, looking to expand, demonstration of power. “You’ve tried to bite at decided to establish a subsidiary that would focus on the Anonymous hand,” the hacktivists wrote on selling the company’s services to the U.S. federal HBGary Federal’s website, “and now the government.16 The new group was called HBGary Anonymous hand is bitch-slapping you in the Federal, and HBGary, Inc.—which at the time had 30 face.”13 employees and would soon sell for $24 million— would own 10% of the organization.17 As the initial shock of the attacks wore off, Barr, his colleagues, and industry experts found To lead the group, Hoglund hired Barr, a former themselves grappling with a number of difficult military official who had started to build a reputation questions, with important policy implications. in the IT security industry and was eager to run his How did a technology security firm that was own company. Barr had begun his career in the Navy supposed to be demonstrating and selling best where over the course of 12 years and multiple practices get hacked so easily? How did Barr fail to international deployments (including a period in realize that his research—and his public comments Kosovo when he came under fire), he had served as a surrounding it—would provoke such a forceful signals intelligence officer.18, 19 Hoglund felt this response? And what lessons can technology experience would help Barr market the company’s experts, public policy officials, and academics products to the U.S. government; he also believed glean from this crisis as they try to make the that Barr’s more recent experience at Northrop Internet more secure? Grumman, a large aerospace and defense contractor where Barr had helped to lead multi-million dollar projects, reinforced his credibility. As Hoglund wrote Background in an e-mail to colleagues upon Barr’s hiring, “We have known Aaron and Ted [Ted Vera was another Headquartered in Sacramento, CA and with a employee hired alongside Barr] for more than 5 sales office in Washington, D.C., HBGary, Inc. was years. These two are A+ players in the DoD a mid-sized technology security company with a contracting space and are able to ‘walk the halls’ in high-profile CEO and which in 2011 was trying to customer spaces.”20 Hoglund added in an interview gain a foothold in the market for federal in March 2011, shortly after the Anonymous hack of government IT security services. The firm had HBGary, “Aaron has a very high IQ. He’s a very been founded in 2003 by Greg Hoglund, a smart individual. He also has an incredibly good technology-security entrepreneur and researcher reputation, or he did at that time.”21 who had gained recognition for launching another IT security firm, Cenzic, Inc., and for his extensive For his part, Barr felt that the opportunity to run his work on “rootkits,” software that allows malware own company was too good to pass up. “I’d always and viruses to penetrate a computer without had an itch to try the small-business side and work detection.14, 15 HBGary, Inc. had traditionally OPEN TECHNOLOGY INSTITUTE | @NEWAMERICA | CASCADES (A) 5 in a more fluid, less process-oriented Coopers, there had been 42.8 million environment that had a lot of technical information security incidents worldwide over innovation,” he explained, “and so I decided to the previous year, costing victims an average of give it a try.”22 $2.7 million;27 and in the same year, the Center for Strategic and International Studies (CSIS) IT Security released a report estimating that cybercrime cost the world economy more than $445 billion Over the last decade, the IT security field had (nearly 1% of the world’s income) per year.28 become extremely lucrative because of both the What’s more, some of the individual attacks had world’s increasing dependence on the Internet devastating consequences. The “Love Letter” and the difficulty of securing it. Originating virus, for example, cost between $4 and $10 from academic and U.S. government research billion, which according to James Adams, a that began in the 1960s, the Internet was successful entrepreneur and widely published initially used to connect regional academic and author in the cyber-security field, is “the military networks in the United States.23 equivalent of a complete obliteration of a major However, by the first decade of the 21st century, American city.”29, 30 this vast computer network had become foundational to commerce, communication, and Even as experts called for improved cyber- social interaction. According to a 2011 McKinsey security, they disagreed about how best to report, the Internet had been responsible for achieve it. This stemmed in part from a more than one-fifth of GDP growth in mature foundational disagreement about why the economies over the previous five years. During Internet was insecure. Some argued that the the same period, Facebook had exploded to problem was technological. Seen from this point 24 more than 800 million users. “The Internet,” of view, developers—dating to the Internet’s argued Manuel Castells, a professor of genesis—had prioritized ease of use, not communication technology and society at USC, security. “The Internet,” suggested Joseph “is the decisive technology of the information Menn, a technology industry author and age….”25 Reuters reporter, “was basically in beta when it got out of the lab and escaped, but now the Unfortunately, efforts to secure the Internet had world economy depends on it.”31 Others, not kept pace with the platform’s increasing however, felt that people, not technology, were significance; in particular, individuals were the linchpin of IT security. This perspective considered vulnerable to malicious attempts to emphasized that security hinges more on the obtain sensitive information (e.g., credit card people operating at the endpoints of electronic information), and organizations were connections making good decisions and susceptible to attacks that attempted to disable keeping their defenses up-to-date.32 Put their services and unearth their data.26 The differently, networks help computers connect frequency and financial impact of these and communicate with one another, but it is incidents was disturbing.
Load more

Recommended publications
  • How We Became Legion: Burke's Identification and Anonymous By
    How We Became Legion: Burke's Identification and Anonymous by Débora Cristina Ramos Antunes da Silva A thesis presented to the University of Waterloo in fulfilment of the thesis requirement for the degree of Master of Arts in English - Rhetoric and Communication Design Waterloo, Ontario, Canada, 2013 © Débora Cristina Ramos Antunes da Silva 2013 I hereby declare that I am the sole author of this thesis. This is a true copy of the thesis, including any required final revisions, as accepted by my examiners. I understand that my thesis may be made electronically available to the public. ii Abstract This thesis presents a study of how identification, according to Kenneth Burke's theory, can be observed in the media-related practices promoted by the cyber-activist collective Anonymous. Identification is the capacity of community-building through the use of shared interests. Burke affirms that, as human beings are essentially social, identification is the very aim of any human interaction. Cyber-activism deeply relies on this capacity to promote and legitimise its campaigns. In the case of Anonymous, the collective became extremely popular and is now a frequent presence even in street protests, usually organised online, around the world. Here, I argue that this power was possible through the use of identification, which helped attract a large number of individuals to the collective. Anonymous was particularly skilled in its capacity to create an ideology for each campaign, which worked well to set up a perfect enemy who should be fought against by any people, despite their demographic or social status. Other forms of identification were also present and important.
    [Show full text]
  • List of Targets of Arrested Computer Hackers 6 March 2012
    List of targets of arrested computer hackers 6 March 2012 The five computer hackers charged in New York Tribune and Los Angeles Times, using on Tuesday and a sixth who pleaded guilty are misappropriated login credentials. accused of involvement in some of the most notorious hacking incidents of the past 18 months. -- February 2011: A cyberattack on private computer security firm HBGary that involved the The following are some of the cyberattacks in theft of 60,000 emails from HBGary employees and which the two Britons, two Irishmen and two the HBGary chief executive, as well as defacing his Americans allegedly played a role as members of Twitter account. Anonymous, Lulz Security or associated groups: -- April-May 2011: A cyberattack on a Fox -- December 2010: Operation Payback. Distributed Broadcasting Company website that involved the denial of service (DDoS) attacks by members of theft of names, dates of birth, telephone numbers, Anonymous on the websites of MasterCard, email and residential addresses for more than PayPal and Visa in retaliation for their refusal to 70,000 potential contestants on the Fox television accept donations for WikiLeaks. In a DDoS attack, show the "X-Factor." a website is bombarded with traffic, slowing it down or knocking it offline completely. -- May 2011: A cyberattack on Sony Pictures Entertainment that revealed the passwords, email -- January 2011: Defacing a website of the Irish addresses, home addresses and dates of birth of political party Fine Gael after accessing computer 100,000 users of the www.sonypictures.com servers in Arizona used to maintain the website, website and a subsequent online attack against www.finegael2011.com.
    [Show full text]
  • Easier Said Than Done: Legal Reviews of Cyber Weapons
    Easier Said Than Done: Legal Reviews of Cyber Weapons Gary D. Brown* & Andrew O. Metcalf** INTRODUCTION On June 1, 2012, author and New York Times reporter David Sanger created a sensation within the cyber-law community. Just over a year previously, Vanity Fair, among other media outlets, reported that a malware package of unprec- edented complexity had effectively targeted the Iranian nuclear research pro- gram.1 The malware, which came to be known as Stuxnet, was also discovered on many computer systems outside Iran, but it did not appear to do any damage to these other systems. Just as the discussions spurred by the discovery of Stuxnet had begun to die down, the New York Times published an interview with Mr. Sanger to discuss his newest book, in which he alleged that the Stuxnet malware had been part of a U.S. planned and led covert cyber operation. The assertion that a nation state had used a “cyber attack” in support of its national objectives reinvigorated the attention of cyber-law commentators, both in and out of government. What makes Stuxnet interesting as a point of discussion is that the basic functioning of the software is easy to understand and easy to categorize. A piece of software was deliberately inserted into the target systems, and physical damage was the result. However, resulting physical damage is not characteristic of most cyber operations, and the legal analysis of Stuxnet is of limited utility when examining a broad range of cyber activities.2 A distinct lack of physical effects is much more characteristic of cyber operations, and the absence of physical effects has continued to complicate the legal analysis of cyber in the context of military operations.
    [Show full text]
  • A PRACTICAL METHOD of IDENTIFYING CYBERATTACKS February 2018 INDEX
    In Collaboration With A PRACTICAL METHOD OF IDENTIFYING CYBERATTACKS February 2018 INDEX TOPICS EXECUTIVE SUMMARY 4 OVERVIEW 5 THE RESPONSES TO A GROWING THREAT 7 DIFFERENT TYPES OF PERPETRATORS 10 THE SCOURGE OF CYBERCRIME 11 THE EVOLUTION OF CYBERWARFARE 12 CYBERACTIVISM: ACTIVE AS EVER 13 THE ATTRIBUTION PROBLEM 14 TRACKING THE ORIGINS OF CYBERATTACKS 17 CONCLUSION 20 APPENDIX: TIMELINE OF CYBERSECURITY 21 INCIDENTS 2 A Practical Method of Identifying Cyberattacks EXECUTIVE OVERVIEW SUMMARY The frequency and scope of cyberattacks Cyberattacks carried out by a range of entities are continue to grow, and yet despite the seriousness a growing threat to the security of governments of the problem, it remains extremely difficult to and their citizens. There are three main sources differentiate between the various sources of an of attacks; activists, criminals and governments, attack. This paper aims to shed light on the main and - based on the evidence - it is sometimes types of cyberattacks and provides examples hard to differentiate them. Indeed, they may of each. In particular, a high level framework sometimes work together when their interests for investigation is presented, aimed at helping are aligned. The increasing frequency and severity analysts in gaining a better understanding of the of the attacks makes it more important than ever origins of threats, the motive of the attacker, the to understand the source. Knowing who planned technical origin of the attack, the information an attack might make it easier to capture the contained in the coding of the malware and culprits or frame an appropriate response. the attacker’s modus operandi.
    [Show full text]
  • Analysis of Human Factors in Cyber Security: a Case Study of Anonymous Attack on Hbgary
    Analysis of Human Factors in Cyber Security: A Case Study of Anonymous Attack on Hbgary Benjamin Aruwa Gyunka Directorate of Information and Communication Technology National Open University of Nigeria (NOUN) Abuja, Nigeria [email protected] Abikoye Oluwakemi Christiana Department of Computer Science University of Ilorin Ilorin, Nigeria [email protected] ABSTRACT awareness programmes for workforces and the Purpose: This paper critically analyses the implementations and maintenance of basic human factors or behaviours as major threats to security culture and policies as a panacea for cyber security. Focus is placed on the usual roles social engineering cyber attacks against played by both the attackers and defenders (the individuals and organizations. targets of the attacker) in cyber threats’ Originality: Lots of work has been done and pervasiveness and the potential impacts of such many still on-going in the field of social actions on critical security infrastructures. engineering attacks and human factors, but this Design/Methodology/Approach: To enable an study is the first to adopt an approach of a effective and practical analysis, the Anonymous practical case study to critically analyze the attack against HBGary Federal (A security firm effects of human factors on cyber security. in the United State of America) was taken as a Keywords: The Anonymous; HBGary Federal; case study to reveal the huge damaging impacts Uniform Resource Location (URL); Content of human errors and attitudes against the security Management System (CMS); SQL Injection; of organizations and individuals. Cross-site Scripting (XXS); Social Engineering; Findings: The findings revealed that the Cyber Security; Information Security powerful security firm was compromised and Paper Type: Research Paper overtaken through simple SQL injection techniques and a very crafty social engineering attack which succeeded because of sheer 1 Introduction personnel negligence and unwitting utterances.
    [Show full text]
  • Darpa Starts Sleuthing out Disloyal Troops
    UNCLASSIFIED (U) FBI Tampa Division CI Strategic Partnership Newsletter JANUARY 2012 (U) Administrative Note: This product reflects the views of the FBI- Tampa Division and has not been vetted by FBI Headquarters. (U) Handling notice: Although UNCLASSIFIED, this information is property of the FBI and may be distributed only to members of organizations receiving this bulletin, or to cleared defense contractors. Precautions should be taken to ensure this information is stored and/or destroyed in a manner that precludes unauthorized access. 10 JAN 2012 (U) The FBI Tampa Division Counterintelligence Strategic Partnership Newsletter provides a summary of previously reported US government press releases, publications, and news articles from wire services and news organizations relating to counterintelligence, cyber and terrorism threats. The information in this bulletin represents the views and opinions of the cited sources for each article, and the analyst comment is intended only to highlight items of interest to organizations in Florida. This bulletin is provided solely to inform our Domain partners of news items of interest, and does not represent FBI information. In the JANUARY 2012 Issue: Article Title Page NATIONAL SECURITY THREAT NEWS FROM GOVERNMENT AGENCIES: American Jihadist Terrorism: Combating a Complex Threat p. 2 Authorities Uncover Increasing Number of United States-Based Terror Plots p. 3 Chinese Counterfeit COTS Create Chaos For The DoD p. 4 DHS Releases Cyber Strategy Framework p. 6 COUNTERINTELLIGENCE/ECONOMIC ESPIONAGE THREAT ITEMS FROM THE PRESS: United States Homes In on China Spying p. 6 Opinion: China‟s Spies Are Catching Up p. 8 Canadian Politician‟s Chinese Crush Likely „Sexpionage,‟ Former Spies Say p.
    [Show full text]
  • Ethical Hacking
    Ethical Hacking Alana Maurushat University of Ottawa Press ETHICAL HACKING ETHICAL HACKING Alana Maurushat University of Ottawa Press 2019 The University of Ottawa Press (UOP) is proud to be the oldest of the francophone university presses in Canada and the only bilingual university publisher in North America. Since 1936, UOP has been “enriching intellectual and cultural discourse” by producing peer-reviewed and award-winning books in the humanities and social sciences, in French or in English. Library and Archives Canada Cataloguing in Publication Title: Ethical hacking / Alana Maurushat. Names: Maurushat, Alana, author. Description: Includes bibliographical references. Identifiers: Canadiana (print) 20190087447 | Canadiana (ebook) 2019008748X | ISBN 9780776627915 (softcover) | ISBN 9780776627922 (PDF) | ISBN 9780776627939 (EPUB) | ISBN 9780776627946 (Kindle) Subjects: LCSH: Hacking—Moral and ethical aspects—Case studies. | LCGFT: Case studies. Classification: LCC HV6773 .M38 2019 | DDC 364.16/8—dc23 Legal Deposit: First Quarter 2019 Library and Archives Canada © Alana Maurushat, 2019, under Creative Commons License Attribution— NonCommercial-ShareAlike 4.0 International (CC BY-NC-SA 4.0) https://creativecommons.org/licenses/by-nc-sa/4.0/ Printed and bound in Canada by Gauvin Press Copy editing Robbie McCaw Proofreading Robert Ferguson Typesetting CS Cover design Édiscript enr. and Elizabeth Schwaiger Cover image Fragmented Memory by Phillip David Stearns, n.d., Personal Data, Software, Jacquard Woven Cotton. Image © Phillip David Stearns, reproduced with kind permission from the artist. The University of Ottawa Press gratefully acknowledges the support extended to its publishing list by Canadian Heritage through the Canada Book Fund, by the Canada Council for the Arts, by the Ontario Arts Council, by the Federation for the Humanities and Social Sciences through the Awards to Scholarly Publications Program, and by the University of Ottawa.
    [Show full text]
  • The Management and Insurance of Cyber
    CONTENTS LIST OF FIGURES .................................................................................................................................... 5 LIST OF TABLES ...................................................................................................................................... 5 ANNEXURES ........................................................................................................................................... 5 DEFINTIONS ........................................................................................................................................... 6 ABSTRACT ............................................................................................................................................ 16 1. Introduction ............................................................................................................................. 17 2. Emerging cyber exposures ....................................................................................................... 19 2.1 Cyber-crime ..................................................................................................................... 20 2.1.1 Business Disruption and Misuse .................................................................................. 20 2.1.2 Online scams ................................................................................................................ 23 2.1.3 Theft and Fraud ..........................................................................................................
    [Show full text]
  • American Behavioral Scientist
    American Behavioral Scientist http://abs.sagepub.com/ ''LOIC Will Tear Us Apart'': The Impact of Tool Design and Media Portrayals in the Success of Activist DDOS Attacks Molly Sauter American Behavioral Scientist published online 15 March 2013 DOI: 10.1177/0002764213479370 The online version of this article can be found at: http://abs.sagepub.com/content/early/2013/03/15/0002764213479370 Published by: http://www.sagepublications.com Additional services and information for American Behavioral Scientist can be found at: Email Alerts: http://abs.sagepub.com/cgi/alerts Subscriptions: http://abs.sagepub.com/subscriptions Reprints: http://www.sagepub.com/journalsReprints.nav Permissions: http://www.sagepub.com/journalsPermissions.nav >> OnlineFirst Version of Record - Mar 15, 2013 What is This? Downloaded from abs.sagepub.com at MASSACHUSETTS INST OF TECH on March 17, 2013 ABSXXX10.1177/0002764213479370American Behavioral ScientistSauter 479370research-article2013 Article American Behavioral Scientist XX(X) 1 –25 “LOIC Will Tear Us Apart”: © 2013 SAGE Publications Reprints and permissions: The Impact of Tool Design sagepub.com/journalsPermissions.nav DOI: 10.1177/0002764213479370 and Media Portrayals in the abs.sagepub.com Success of Activist DDOS Attacks Molly Sauter1 Abstract This article explores the role of tool design and media coverage in the relative success of Operation Payback and earlier activist distributed denial-of-service (DDOS) actions. Through a close reading of changes in the tool’s interface and functionality across several iterations, the article considers the evolution of the Low Orbit Ion Cannon (LOIC) DDOS tool, from one that appealed to a small, inwardly focused community to one that engaged with a larger population.
    [Show full text]
  • The Masked Avengers: How Anonymous Incited Online
    A REPORTER AT LARGE | SEPTEMBER 8, 2014 ISSUE The Masked Avengers How Anonymous incited online vigilantism from Tunisia to Ferguson. BY DAVID KUSHNER Anyone can join Anonymous simply by claiming affiliation. An anthropologist says that participants “remain subordinate to a focus on the epic win—and, especially, the lulz.” n the mid-nineteen-seventies, when Christopher Doyon was a child in rural Maine, he spent Ihours chatting with strangers on CB radio. His handle was Big Red, for his hair. Transmitters lined the walls of his bedroom, and he persuaded his father to attach two directional antennas to the roof of their house. CB radio was associated primarily with truck drivers, but Doyon and others used it to form the sort of virtual community that later appeared on the Internet, with self- selected nicknames, inside jokes, and an earnest desire to effect change. Doyon’s mother died when he was a child, and he and his younger sister were reared by their father, who they both say was physically abusive. Doyon found solace, and a sense of purpose, in the CB-radio community. He and his friends took turns monitoring the local emergency channel. One friend’s father bought a bubble light and affixed it to the roof of his car; when the boys heard a distress call from a stranded motorist, he’d drive them to the side of the highway. There wasn’t much they could do beyond offering to call 911, but the adventure made them feel heroic. Small and wiry, with a thick New England accent, Doyon was fascinated by “Star Trek” and Isaac Asimov novels.
    [Show full text]
  • ABSTRACT the Rhetorical Construction of Hacktivism
    ABSTRACT The Rhetorical Construction of Hacktivism: Analyzing the Anonymous Care Package Heather Suzanne Woods, M.A. Thesis Chairperson: Leslie A. Hahner, Ph.D. This thesis uncovers the ways in which Anonymous, a non-hierarchical, decentralized online collective, maintains and alters the notion of hacktivism to recruit new participants and alter public perception. I employ a critical rhetorical lens to an Anonymous-produced and –disseminated artifact, the Anonymous Care Package, a collection of digital how-to files. After situating Anonymous within the broader narrative of hacking and activism, this thesis demonstrates how the Care Package can be used to constitute a hacktivist identity. Further, by extending hacktivism from its purely technological roots to a larger audience, the Anonymous Care Package lowers the barrier for participation and invites action on behalf of would-be members. Together, the contents of the Care Package help constitute an identity for Anonymous hacktivists who are then encouraged to take action as cyberactivists. The Rhetorical Construction of Hacktivism: Analyzing the Anonymous Care Package by Heather Suzanne Woods, B.A. A Thesis Approved by the Department of Communication David W. Schlueter, Ph.D., Chairperson Submitted to the Graduate Faculty of Baylor University in Partial Fulfillment of the Requirements for the Degree of Master of Arts Approved by the Thesis Committee Leslie A. Hahner, Ph.D., Chairperson Martin J. Medhurst, Ph.D. James M. SoRelle, Ph.D. Accepted by the Graduate School May 2013 J. Larry Lyon, Ph.D., Dean Page bearing signatures is kept on file in the Graduate School Copyright © 2013 by Heather Suzanne Woods All rights reserved TABLE OF CONTENTS LIST OF FIGURES ........................................................................................................................
    [Show full text]
  • Seven Things Malware Authors, Botnet Controllers and Security Companies Don’T Want You to Know
    Seven Things Malware Authors, Botnet Controllers and Security Companies Don’t Want You to Know October 2009 White Paper By Rich Cummings, CTO HBGary, Inc. Table of Contents #1 Cybercrime Is Big Business… .................................................................................................................... 3 #2 Information Is Easy To Steal Online ......................................................................................................... 4 #3 Cybercriminals Have An Advantage ......................................................................................................... 5 #4 Networks Are Vulnerable ......................................................................................................................... 6 #5 Modern Malware Bypasses Multiple Security Layers .............................................................................. 7 #6 Malware Removal Is Not Always Possible.............................................................................................. 10 #7 Malware Is Costly To Business ............................................................................................................... 10 New Approach – HBGary Digital DNA – “A better way to detect malware” .............................................. 11 Obtaining Actionable Intelligence – Improving Security Policy .................................................................. 12 New Approach - Responder Pro- The Ultimate Tool for Incident Detection and Malware Analysis .......... 15 HBGary Digital DNA
    [Show full text]