3 Key Reasons why Response to Security Breaches is Difficult
August 1, 2008 by Antivirus Ware.com - Download Norton Antivirus software instantly!
When security breaches occur, responding to them in a forceful manner is often very difficult for numerous reasons. However, the following 3 reasons are the most common reasons for the difficulty that exists in responding forcefully.
#1) Identifying the attackers is difficult - Attackers are usually in other jurisdictions as opposed to the systems that they are attempting to breach. Typically, they operate through one of the following ways:
- anonymous procedures which make backtracking difficult
- proxies
- temporary anonymous dial-up accounts
- wireless connections
Usually they are able to delete logs and cover their tracks once they have breached the security parameters.
#2) Law enforcement officials are not that familiar with IT violations – They do not have the skills necessary to confront the problem, and oftentimes they are not that interested in pursuing the attackers. Additionally, budget constraints can be a factor. Such technologies as DNA testing and other forensic measures cost less money, so the number of criminals who don’t get pursued increases as the cost of the technology used to pursue those increases.
#3) The number of attacks is overwhelming – If the home user is attacked several times per day, it makes sense that the larger corporations are more enticing targets. Automated vulnerability scanners and computer worms are responsible for the majority of the attacks. The bottom line is that the number of attacks is so overwhelming that organizations cannot devote the time necessary to pursue each and every attacker.
