Dodging the flak from a hack attack

Industry is fighting fire with firewalls, reports Paul Rodgers

For the producers of Hackers, a new Hollywood film, having their Web site hacked was merely a source of free publicity. But for the Central Intelligence Agency and the US Department of Justice, attacks on their home pages were embarrassingly public breaches.

The "Department of Injustice" attack was arguably the most severe. The departmental seal was replaced with a Nazi swastika, and Adolf Hitler was pictured as the Attorney General. A close-up picture of female genitalia underscored, and undermined, the vandals' stated political motivation: opposition to censorship on the Internet.

The CIA, by contrast, got off lightly. A group calling itself "Power Through Resistance"changed the banner headline to "Welcome to the Central Stupidity Agency", made a libellous attack on an individual, and changed the links to other pages.

Unpopular government departments are not the hackers' only targets. Companies have data that can be sold to competitors, and payments systems that can be subverted to issue cheques to crooks. Some British firms, according to rumours on the Net, have already been hit, but understandably, no-one will confirm the attacks. In all, though, hackers and viruses caused an estimated $60bn of losses and damage worldwide last year.

As the Web rolls on as an advertising medium, so too does the potential damage that vandals, motivated by ideology or some perceived grievance, can wreak.

The Web site attacks illustrate not only the vulnerability of modern computer systems but the speed with which hacking is evolving. Until a year ago most security concerns were focused on hackers getting access to confidential, even top-secret data, or the infiltration of viruses that would flash unwanted messages on screens, if benign, or crash hard disks if more vicious.

While these threats have not lessened, others have been added. E-mail, new Java language programmes - which travel via the Web to computers - and even sound and video clips are vexing security chiefs. Soon encryption systems for credit card and electronic cash transactions will join the queue as potential targets.

"We have to come up with a new application almost every month," says Dr Dev Triant, chief executive of the marketing arm of Checkpoint, the world's largest computer security firm and the second largest Internet stock, after Netscape, on the New York's NASDAQ exchange.

Checkpoint, an Israeli company now worth $1bn, achieved this dominance through the design of the first "firewall" programme that did not require extra hardware to be added to a computer system. Firewalls are the programs that stop unwanted access from the Net and, with 15,000 installations, Checkpoint now has 40 per cent of a $500m world market that is tripling in size each year.

Now, like IBM or Bill Gates' Microsoft, it is setting the pace in trying to fix common standards for the industry worldwide.

Like most security companies, it is reluctant to claim invulnerability. That would be tempting fate. But its own technicians have been unable to crack its walls, even with their detailed inside knowledge.

It also survived a concerted assault by the cream of the hacker community. 60 Minutes, an American investigative journalism programme on the CBS network, invited two hackers from a known New York hang-out for computer cowboys to its studios to test the company's defences. Word spread, however, across the world within minutes.

As a result, Checkpoint's unsuspecting technicians in Tel Aviv recorded an unprecedented 30,000 attempts to break in over a 24-hour period. All failed.

It is an impressive record, but Checkpoint is the first to admit that its product range is limited. Bright sparks in the cyber world continually add useful new doorways to computer systems for video, E-mail and other data exchange, and no one company can guard them all.

Checkpoint's firewalls, for example, will stop outside users from signing on to a system without a valid password, while allowing them to see information - like Web sites - that the provider wants to make publicly available. It cannot, however, stop an E-mail message from carrying a subversive program into a system.

Like Bill Gates before, Checkpoint is releasing data on how its programs are structured so that other companies can design products that will fit like modules alongside its own firewall.

But it is far from universally accepted and it is meeting some resistance. One rival said the standard should have been agreed by all rather than dictated by the leading supplier.

There are also concerns that the release of data could actually help hackers. One London-based consultant with a major US security company also said that, while it will probably speed up the adoption of security programs, it will be mean that any weakness will become standard too. "One big difference between muggers and hackers is that the hackers have to be smart," he said. "If there's a way in, they'll eventually find it."

Dr Triant, a mathematician by training, believes the more serious threat comes not from computer cowboys sitting at home surrounded by ashtrays and Coke cans, but from disgruntled employees. "Some 90 per cent of security breaches can be traced back to employees," she said.

If an organisation's internal security over simple things such as passwords is lax, it will always be at risk from the hackers.

Start your day with The Independent, sign up for daily news emails
ebooks
ebooksAn introduction to the ground rules of British democracy
Latest stories from i100
Have you tried new the Independent Digital Edition apps?
Independent Dating
and  

By clicking 'Search' you
are agreeing to our
Terms of Use.

iJobs Job Widget
iJobs Money & Business

SThree: Trainee Recruitment Consultant

£20000 - £25000 per annum + OTE £45K: SThree: SThree were established in 1986....

Recruitment Genius: Compliance Manager

£40000 - £60000 per annum: Recruitment Genius: A Compliance Manager is require...

SThree: Talent Acquisition Consultant

£22500 - £27000 per annum + OTE £45K: SThree: Since our inception in 1986, STh...

Recruitment Genius: Experienced Financial Advisers and Paraplanners

Negotiable: Recruitment Genius: This extremely successful and well-established...

Day In a Page

Seifeddine Rezgui: What motivated a shy student to kill 38 holidaymakers in Tunisia?

Making of a killer

What motivated a shy student to kill 38 holidaymakers in Tunisia?
UK Heatwave: Temperatures on the tube are going to exceed the legal limit for transporting cattle

Just when you thought your commute couldn't get any worse...

Heatwave will see temperatures on the Tube exceed legal limit for transporting cattle
Exclusive - The Real Stories of Migrant Britain: Swapping Bucharest for London

The Real Stories of Migrant Britain

Meet the man who swapped Romania for the UK in a bid to provide for his family, only to discover that the home he left behind wasn't quite what it seemed
Cheaper energy on the way, but it's not all sunshine and rainbows

Cheaper energy on the way, but it's not all sunshine and rainbows

Solar power will help bring down electricity prices over the next five years, according to a new report. But it’s cheap imports of ‘dirty power’ that will lower them the most
Katy Perry prevented from buying California convent for $14.5m after nuns sell to local businesswoman instead

No grace of God for Katy Perry as sisters act to stop her buying convent

Archdiocese sues nuns who turned down star’s $14.5m because they don’t approve of her
Ajmer: The ancient Indian metropolis chosen to be a 'smart city' where residents would just be happy to have power and running water

Residents just want water and power in a city chosen to be a ‘smart’ metropolis

The Indian Government has launched an ambitious plan to transform 100 of its crumbling cities
Michael Fassbender in 'Macbeth': The Scottish play on film, from Welles to Cheggers

Something wicked?

Films of Macbeth don’t always end well - just ask Orson Welles... and Keith Chegwin
10 best sun creams for body

10 best sun creams for body

Make sure you’re protected from head to toe in the heatwave
Wimbledon 2015: Nick Bollettieri - Milos Raonic has ability to get to the top but he must learn to handle pressure in big games

Nick Bollettieri's Wimbledon files

Milos Raonic has ability to get to the top but he must learn to handle pressure in big games
Women's World Cup 2015: How England's semi-final success could do wonders for both sexes

There is more than a shiny trophy to be won by England’s World Cup women

The success of the decidedly non-famous females wearing the Three Lions could do wonders for a ‘man’s game’ riddled with cynicism and greed
How to stop an asteroid hitting Earth: Would people co-operate to face down a global peril?

How to stop an asteroid hitting Earth

Would people cooperate to face a global peril?
Just one day to find €1.6bn: Greece edges nearer euro exit

One day to find €1.6bn

Greece is edging inexorably towards an exit from the euro
New 'Iron Man' augmented reality technology could help surgeons and firefighters, say scientists

'Iron Man' augmented reality technology could become reality

Holographic projections would provide extra information on objects in a person's visual field in real time
Sugary drinks 'are killing 184,000 adults around the world every year'

Sugary drinks are killing 184,000 adults around the world every year

The drinks that should be eliminated from people's diets
Pride of Place: Historians map out untold LGBT histories of locations throughout UK

Historians map out untold LGBT histories

Public are being asked to help improve the map