U.S. Military's Hackers
definate writes "Wired is running a story on the Joint Functional Component Command for Network Warfare, or JFCCNW. A multimillion dollar military task force used to attack the electronic infrastructure of their opponents."
I wonder if there will be restrictions on security patches during war-time?
"I've got to tell you we spend more time on the computer network attack business than we do on computer network defense because so many people at very high levels are interested," said former CNA commander, Air Force Maj. Gen. John Bradley ...
IOW, folks in the Echelons Beyond Reality love the idea of Matrix-style hacking of an enemy network because it's sexy and cool (even though they probably have no idea what real hacking entails) and aren't interested in the boring old-fashioned business of securing our own networks from attack. Okay, guys, here's a quick quiz: of the following possible combatants, which one has the most to lose in the event of an enemy hacker penetrating its computer security?
a) al-Qaeda
b) China
c) the United States
d) North Korea
Think fast!
The correlation between ignorance of statistics and using "correlation is not causation" as an argument is close to 1.
is a good offense. Also, if you know how to attack, you also know how to defend.
Best Slashdot Co
Script Kiddies in Uniform
I don't think you'd want these people using all of their resources to attack your network. Script kiddies, they're not.
And a good way to spend millions of taxpayer money.
Yup, because the bad guys are doing exactly the same thing. And you'll never have a better bunch of people to work on countering that sort of stuff than the people who have done a stint entirely focused on causing damage elsewhere. Who would you want taking a new job working on infrastructure protection: the kid right out of IT school, or the guy who's been working without any distraction or budget tightwaddedness who's just spent the last two years thinking up every way he can to crack and damage networks, content, databases, and more?
Don't disappoint your bird dog. Go to the range.
All that stuff don't neccesarily have to be connected to the internet. They could always bring some specialists behind the front lines who hack it on site or set up a relay of some kind so it can be accessed from behind the front lines.
Ah - any government effort that starts with "Joint" is destined to produce nothing but paperwork and studies. Just as Private industy folks recognize the term "Cross-Functional" as a death sentence. I have no doubts that the leadership of any J**** project has a general idea of what they need to say to continue to justify funding. But the likelihood of them actually producing something worthy of said funding is slim to nothing.
BTW, the best defense against a cruise missile is a net, placed in the flight path. Of course, first you've got to know the flight path.
Best Slashdot Co
... is getting enough of the "great" hackers the proper security clearances and compartmented accesses. You must be a US citizen, pass an SSBI Single Scope Background Investigation, FBI/DIA ivestigators contact scads of people you havent talked to in years as well as your current associates and their associates and the associates of those people as well - they go 3 nodes or more out from you. Add to that a Counter Intelligence polygraph - those are sometimes the biggest hurdles. If you try for NSA credentials, you get the joy of a Lifestyle Polygraph (the worst 6+ hours of your life, trust me on that). On top of that, getting people to move to Nebraska for some duty at Stratcom in Omaha is not all that easy a sell.
Fortunately not al the duty stations are in Nebraska, and not every hacker (used in the best sense of the word) fits the stereotypes. Its not like the movies.
There is one other source they forgot:
Contractors. Look at the big DoD contract companies, and look at the IT openings they have. Northrop Grumman (includes the old TRW people), Raytheon (includes the old Hughes people), Lockheed-Martin, Ball Aerospace (Satellite/comms guys), Titan, and a pile of smaller lesser known companies. Look at what they are hiring for. These are the only relatively secure IT jobs left in the US that are not under threat of being outsourced overseas.
Plenty of work if you can qualify for the security aspects and dont mind being reinvestigated and strapped to a polygraph every few years, on top of other voluntary restrictions you put on your freedoms in exchange for the security clearance (i.e. give up the recreational/illegal drugs, give up drinking to excess, give up gambling, and give up many of the vices the fringe of hackerdom has).
Buffalo buffalo Buffalo buffalo buffalo buffalo Buffalo buffalo! http://goo.gl/J9bkO
that brought down al-jazeera.net when the US invaded Iraq? Remember the 2 week long denial of service attack and subsequent attacks after beheadings and what not?
http://uk.news.yahoo.com/030327/152/dwem2.html/
Top 10 Reasons To Procrastinate
10.
"The Internet." The phone system is also a network, as is the power grid (parts of which are phone accessible, but not internet accessible). Railroads use networked communications to control switches. So does the ATC system. All can be hacked into if you can get access to the communicatons lines and know how.
Best Slashdot Co