Volume XI

Issue : 5: November 8, 2012

• FTC Recommends Google Anti-Competitive Practices Suit Over "Standard-Essential Patents"
• Apple Ordered by London Court to Apologize to Samsung, again.
• State of California Takes A Stand on Compliance with Privacy Law
• Online Links: An Adequate Defence for Claims of Defamation?
• EU Backs Away From Copyright Sanctions in Canada Trade Deal
• Canadians mostly concerned about Internet security
• Russia Passes Internet Censorship Law
• US Copyright Office Does Not Extend "Jailbreaking" Exemption to Tablets and PC's
• Active Defense: Cyberattacks and a Vigilante Response?

Home > Volume XI > Issue 5: November 8, 2012 > Active Defense: Cyberattacks and a Vigilante Response?

Active Defense: Cyberattacks and a Vigilante Response?

According to some experts, counterstriking against cyberattacks is legally justifiable as self-defense -- although a more exhaustive legal framework needs to be implemented.  “Active defense” involves a decision by company management (not an IT department) to pursue a cyber- attacker to try to identify the source and possibly stop the current (or future) attack.  Instead of relying solely on passive defenses, such as firewalls and anti-virus software), companies could use network-based honeypot traps (to fool cybercriminals into thinking they've broken into a network), beacons and "digital dye-packs" (to pinpoint attackers that have taken data), and other technological means.  When considering whether and how to strike back at a cyberattacker, it is important to understand the legal limits on what IT and security managers can or should do, and the risks and legal liability that may flow from such activities.  

For more information, visit: 
www.cio.com/article/720547/Hitting_Back_at_Cyberattackers_Experts_Discuss_Pros_and_Cons