Who Perpetrates Network Security Attacks?

An exploration of who perpetrates network security attacks and what are their motivations.

I suspect that there is no simple answer to who perpetrates network security attacks. But, the perpetrators can be categorised into two main groups:

• Hackers (in non-computer speak) or more correctly, crackers
• Your own users

Crackers

When crackers are mentioned most people think of spotty teenagers sitting in their bedrooms. I doubt that is a realistic view, after all yesterday’s teenage hacker is tomorrows adult hacker.

Crackers vary in sophistication from the so called ’script kiddies’ who are, perhaps the least technically sophisticated (though not necessarily the least damaging) to uber cognisant and experienced crackers. They do have one thing in common. They are trying to crack your network. They sit down and systematicaly attempt to break your network. This means that you must sit down and systematicaly ensure that they don’t crack your network. It’s kinda like a burglar. If you make your house nice and secure then the burglar is going to find somewhere easier to ply their trade.

The one good thing about your typical cracker is that at least they exist outside of your network. This gives you a great advantage. You construct the boundary that the cracker must penetrate in order to gain access to your network. So, at least you have a defendable border where you can deploy a range of tools to defend yourself.

Your own Users

Perhaps the most underestimated group of attackers is your own users. They may not have the level of sophistication of your average cracker, but they do have ONE big advantage. They wander into your office every day straight past all of your security defenses. They are plugged into the very heart of your network, behind your carefully constructed defenses.

For the vast majority of the time, your users are pretty benign. Users pose their most serious risk when combined with a cleverly worded trojan email. Some trojan emails are particularly clever in their psychology. We received one ourselves about a month ago purporting to be from administrator@openxtra.co.uk telling us that we needed to run the included attachment in order to cure a security problem on our machines. It made me look twice and I AM the administrator! In larger organisations where users are disconnected from their IT personel, some users may be tempted to do exactly what the email suggests.

Whilst your users are benign most of the time, they do sometimes perpetrate attacks completely by accident. Many companies grow in an ad-hoc manner, adding systems as and when necessary. Consequently, some things that really are essential are left undone. I recently saw a classical example of a system ripe to be attacked by a careless user. The router, through which all Internet traffic flowed, was hanging down against a wall with only a power cable supporting it. Of course, the router was just in an open piece of the office, where anybody could brush past it at any time. Another classic is placing servers under somebody’s desk. A sure fire recipe for some unplanned downtime and possible data loss.

Why do people perform Network Security Attacks

There are as many reasons for performing network security attacks as there are network security attacks. But, there are a number of common themes, in no particular order.

• Terrorism - It would be surprising if the likes of al-Qa’ida didn’t consider attacking the Internet. Arab countries are full of under employed, bright, educated young men some of whom are likely to fall under the spell of radical Islamic groups like al-Qa’ida.
• Industrial Espionage - If you’re a company that has fallen behind in the R&D stakes maybe you might be tempted to cheat a little by hiring a cracker to try to discover some secrets from your competitors. Saves all of the hard work of actually having to do the work yourself.
• Kudos - One way to impress your buddies down at your local hacking collective is to crack loads of computer systems, the harder they are to crack the better.
• Vandalism - Most email viruses released have no real intent save for pure vandalism. The perpetrator doesn’t get paid, there is no commercial pay-off. Indeed, there isn’t usually much skill involved either to impress your buddies with. Most viruses are created using one of a number of virus toolkits. So why do it? Because they can, there are few bad consequences for the purportrator. It gives some people a kick to think that they have inconvenienced a whole load of people.
• Accidents - Many people find themselves performing network security attacks completely by accident. Either they are unaware that they have a trojan on their system or they activate an attachment received via email.
• Money - If you are selective about what you crack there can be a financial payoff. Financial institutions take considerable efforts to reduce their risk from network security attacks, and with good reason. If a perpetrator can crack a bank they stand to make a ton of money.

Related Articles & Links

Network Security Attacks - An Introduction

What Types of Network Security Attacks are Perpetrated?

---

About the Author

Jack Hughes possesses extensive experience in the design and implementation of software projects, particularly specialising in network management and communications. In 2003 he co-founded OPENXTRA together with Denis Laverty using his skills as the technical and programming expert within the company as its Chief Technical Officer.

About The Tech Teapot

Jack Hughes's wry observations of the tech industry from the bottom looking up. Read more about OPENXTRA and this blog.

Subscribe

Subscribe now with RSS or subscribe by Email


Your email:

Article Categories

• Network Managemement
• Network

Copyright © 2003-2008 OPENXTRA Limited All rights reserved
Subscribe RSS or email.