The Microsoft take-down of malicious DNS has stirred a healthy debate. This is the sort of active defense dilemma we have been presenting on for years, trying to gather people to discuss. Now it seems to be of interest thanks to a court order authorizing a defense attempt against malware: take-over and scrubbing of name … Continue reading In Defense of Microsoft’s Active Defense Against No-IP
I recently read an article, “Putting an end to “strike back” / “active defense” debate, and another it linked to, “Managing The Legal Risks Of Active Defense,” wherein my friend Bob Clark was quoted. Here is my response: Why in the world would we end the debate? Security sucks and the bad guys have a … Continue reading Update: Putting and End to the End of Active Defense
Today jerichoattrition wrote a provocative blog post called “Putting an end to ‘strike back’ / ‘active defense’ debate…” The magic phrase offered is this: Ending the Debate In One Easy Line If a company can’t do defense correctly, why do you think they can do offense right? That simple, that logical. Security experts are fond … Continue reading Putting and End to the End of Active Defense
Many recent articles on “Active Defense” seem to just sensationalize the topic and draw broad sweeping conclusions based on so-called experts with little research, though analysis, or seeking to help resolve the true problem, that companies today are under massive attack with little to no help.