Hackers

I do know that some companies such as Symantec and McAfree employ ex-hackers to sniff out intrusions into government and corporate computers...also writing new software to combat and find hacter's, future viruses, Trojans, and malware.

They just recently discovered hacking that has been going on since 2006 or so into UN, IMF, US Government, and corporation computers around the world. Read the article on MSN news two days ago, I think. All evidence so far (from what they have discovered so far...and there's probably more that hasn't been discovered yet) that state-sponsored Chinese hackers are at the root of the hacking intrusions....just like the secrets stolen from Lockheed and others regarding the F-22 Raptor and F-35 Lightning II.

I say hang 'em high and by the balls...that's IF you can get your hands on the little bastards!

From the Wikipedia article: Mitnick now runs Mitnick Security Consulting LLC, a computer security consultancy.

http://en.wikipedia.org/wiki/Kevin_mitnik

Redfred-

i agree with you- at least 50% of the blame for compromised information lies with the custodian of that information, especially since we are all being constantly bombarded with information indicating just how easy it is to hack a "security" system.

If it's that sensitive, it should not be accessible from the Internet. Period.

I have been working for the US military for over twenty-three years and in that time we have been hacking ourselves silly to prove our systems. We must always stress-test each system and try everything we can think of to make it impervious to attack, from within and out.

There is always one more way or newer and better ways to infiltrate data processing systems. The key is to use what you have...i.e., lock your doors. If there are physically no avenues for an intruder to use, then they have no way of penetrating your systems.

That's why the bad guys in the movies always have to break in and bypass the security systems to gain access to cameras, security systems, etc.

Physical security always has been and always will be the first step.

That's why the real goods are not accessible from the internet.

Most of the blame for the current security breaches lies with the operating system and computer language developers. A combination of attempting to stretch the versatility of software to make it appealing to a larger market, cost cutting and rushing to market before it is comprehensively tested, has created a raft of software with major security holes. The factors that encourage these failings are also the factors that make this software the most popular, versatile, cheap, here now. Java is an example. There are versions of Java that contain only subsets of the version embedded in popular browsers, but these would limit some functions (including hacking). Until the software developers take a more responsible attitude, hacking is here to stay.

Pass laws to make software developers financially responsible for for a proportion of any loss incurred as a result of security holes in their products. It would slow the rapid development of software, and increase the up front costs, but I believe that the long term benefits would be worthwhile

My brother is a certified Ethical Hacker (yes, you can get certified as a hacker). An IT graduate, he does consultations for different industries for their data security. Seeing him hacking/working all these years, I have learnt and so have his clients, how easy it is for the wrong people to use your data against you and how much smarter we need to be keep becoming.

I guess technology creates both the yin and the yang, offering opportunity and employment to both- the hacker and the ethical hacker.

I think the saying I don't kiss and tell fits this. You want to be the one that tells the public that the hacker that stole sensitive material is now employed by you to keep it from happening again. Or put it out that anybody that can hack in gets a good job.

They are being selective and they are not advertizing it.