Security one way paradigm?

While the criminals take full advantage of the
Internet Paradigm, the security faction doesn't.

The cyber criminals hide behind a confusing web
of cyber laws and confusing jurisdictions.

One research team even got inside the C2 of a
bot farm and didn't feel it had the authority to
take it down, ball-less. Kinda like watching
someones house burn cause you don't have
the authority of fire fighters.

The cyber criminals rely on the anonymous
function of the WWW to perpetuate their crimes.
And while many times they can't be identified,
they can be penetrated.

And there in lies the rub.
The fear of violating some jurisdiction or
unknown country's laws prohibits many from
taking action against the cyber criminals.

"They" watch the crime, track it even dissect the
technicals, study its operations, but don't 'interfear.'

The right to self defense seems to have been lost
on the WWW in a morass of legal technicalities.

The state of the WWW is very similar to the
wild west of the 1700's.
But without the guts or intestinal fortitude of
those times.
Even the security vendors are attacked with
impunity.
There is precedent: for forming groups and
going after these criminals using some of the
same methods they use, the anonymity of
the web would allow counter strikes.

Part of the error of the current WWW security
paradigm is the lack of offensive counter measures.
There is very little deterrence, for cyber criminals.
Only the fear of isolated criminal prosecution,
on a limited basis.
Their Risk/Reward ratio balanced in the extreme
to reward. They pound against fire walls laughing at
IT administrators.
AGAIN I SAY THERE CURRENTLY IS NO SECURITY
ON THE WWW,
Internet Anthropologist Think Tank: I'm on your PC,know your IP
AND CYBER CRIME AS A SERVICE IS PUTTING
THE TECHNICAL KNOWLEDGE BUY IN AT EVER
LOWER BARS.

PRIVATEERS letters of Marque, or just plain civilian
counter strike teams are an option.

At the current rate of advance, trust in the internet is slated
for an epic fail, and crippling of parts of the worlds economies.
The problem has gotten so beyond control
there is not currently a force in the world
capable of bringing the number of investigations
and prosecutions to even make a dent.

While the FBI is capable they are overwhelmed.
The complaint center for cyber crime is not a
response force but a statical warehouse.

ID theft is rampant, credit agencys have become
co-dependent with the cyber criminals. Collecting
the crime data, but not reporting it to the victims
via automatic free emails unless paid. WHORES.

Stuxnet has proven the concept, ability to penetrate
and collect data, provide a base from which to strike
out against the cyber criminals.

Security vendors are in a unique position with unique
knowledge to bust up these crime families.
And could charge a premium based on news releases
about their work taking out cyber criminals.
I would pay a premium for a company fighting offensively
on the WWW against cyber criminals, vs a company
offering only passive security systems.

The concept of a surgical cyber attack has been
demonstrated, Server can be taken down, bot farms
erased, C2 commandeered.

And many more out side the box attacks
against cyber criminals are in the offing.

Mean while the public takes their personal
economies in their hands every time they
log on to the WWW.

US credit cards are selling for $2 each.
And ID theft every 8 seconds.

I want to be clear I am NOT targeting
team cymru
But they do a remarkable job tracking events.

'Steal everything' era of hacking

http://www.bbc.co.uk/news/technology-13213632

New US Cyber offensive paradigm

The Internet paradigm can

be used against the cyber criminals.

Gerald

Tactical Internet Systems analyst.

.


Internet AnthroTT: #Whitehouse: 'apocalypse'; Cost of doing biz, this Cyber guy scares me He's Nutz http://bit.ly/kkteYG @GOPWhip #GOP #Democrats


.