How to fight cheap malicious hack tools (methods that are not available in any IT Courses)
How to fight cheap malicious hack tools (methods that are not available in any IT Courses)
Reading another shocking note posted on our IT Professional Linkedin Group
(available at their blog here:
https://infosecisland.com/blogview/4160-CRiMEPACK-Zombie-Exploit-Gets-Upgrades.html )
about another easy and cheap way that criminals
can use to hack their way into your precious data, I was thinking
How can we turn this unsolveable situation around?
Here is what I cam up with…let me know what you think…
The main question for us, the good guys is how can we fight that
“ease of use”.
Looking at it from the Sun Tzu’s “Art of War” point of view
and employing “go where the crowds aren’t” and
“if you can’t fight them, confuse them”…
I’d say maybe instead of defending, maybe we should create programs that
feed false data into malicious programs.
Only “authenticaed” processes will get feeded with real data.
Not easy at all, and requires a major mind shift, but maybe worth a look at…
Another option is to spread “malicious” copies of the malicious software that
once activated, reports all the details and activity of the operator.
Let them taste a bit of their own food!
Anyway, my way out of this massive problem, is “if you want to beat them,
think like them” (like done in the wonderful “Ender’s Game” book).
Let me know what you think…
P.S.
Here are links to Audio copies of Sun Tzu’s “Art of War” and free Audio book Coupon:
