Read more of this story at Slashdot.
Feeds
31335 items (26822 unread) in 5 feeds
OpenSource
(5373 unread)
-
SourceForge.net: Front page news
(802 unread)
-
Slashdot: IT (4571 unread)
Security
(9904 unread)
-
Digg / Security (9904 unread)
Linux
(11545 unread)
-
-
Slashdot: Linux (1584 unread)
Slashdot: IT
-
DoD Takes Criticism From Security Experts On Cyberwar Incident
Posted: September 5th, 2010, 12:59am CEST by Soulskill
Tags: government
wiredmikey writes "Undersecretary of Defense William J. Lynn is being challenged by IT security experts who find it hard to believe that the incident which led to the Pentagon's recognizing cyberspace as a new 'domain of warfare' could have really happened as described. In his essay, 'Defending a New Domain,' Lynn recounts a widely-reported 2008 hack that was initiated when, according to Lynn, an infected flash drive was inserted into a military laptop by 'a foreign intelligence agency.' Critics such as IT security firm Sophos' Chief Security Adviser Chester Wisniewski argue that this James Bond-like scenario doesn't stand up to scrutiny. The primary issue is that the malware involved, known as agent.btz, is neither sophisticated nor particularly dangerous. A variant of the SillyFDC worm, agent.btz can be easily defeated by disabling the Windows 'autorun' feature (which automatically starts a program on a drive upon insertion) or by simply banning thumb drives. In 2007, Silly FDC was rated as Risk Level 1: Very Low, by security firm Symantec."