Category Archives: CFAA

Congressman says proposed ‘hacking back’ bill is gaining traction

Posted on by

A bill recently proposed by Rep. Tom Graves, R-Ga., that would allow companies victimized by hackers to take “active cyber defense measures,” is now gaining bipartisan support, according to the congressman. Graves told CyberScoop he has received “positive feedback for the concept from both Republican and Democrat members” and “significant interest from the public, business community and academic researchers.” Interest in the bill, Graves explained, reflects a “growing recognition that current federal law doesn’t provide an adequate deterrence for criminal hacking.” “With less than 1 percent of criminal hackers being prosecuted, there is a growing consensus that we need to determine a better way to impose costs to deter their behavior. Self-defense is one method of imposing a higher cost,” Graves said. The proposed bill, named the “Active Cyber Defense Certainty Act,” is currently a discussion draft. Graves’ office continues to receive feedback from industry, think tanks, academia and other members of […]

The post Congressman says proposed ‘hacking back’ bill is gaining traction appeared first on Cyberscoop.

Continue reading Congressman says proposed ‘hacking back’ bill is gaining traction

Congressman says proposed ‘hacking back’ bill is gaining traction

Posted on by

A bill recently proposed by Rep. Tom Graves, R-Ga., that would allow companies victimized by hackers to take “active cyber defense measures,” is now gaining bipartisan support, according to the congressman. Graves told CyberScoop he has received “positive feedback for the concept from both Republican and Democrat members” and “significant interest from the public, business community and academic researchers.” Interest in the bill, Graves explained, reflects a “growing recognition that current federal law doesn’t provide an adequate deterrence for criminal hacking.” “With less than 1 percent of criminal hackers being prosecuted, there is a growing consensus that we need to determine a better way to impose costs to deter their behavior. Self-defense is one method of imposing a higher cost,” Graves said. The proposed bill, named the “Active Cyber Defense Certainty Act,” is currently a discussion draft. Graves’ office continues to receive feedback from industry, think tanks, academia and other members of […]

The post Congressman says proposed ‘hacking back’ bill is gaining traction appeared first on Cyberscoop.

Continue reading Congressman says proposed ‘hacking back’ bill is gaining traction

DoD Opens .Mil to Legal Hacking, Within Limits

Posted on by

Hackers of all stripes looking to test their mettle can now legally hone their cyber skills, tools and weaponry against any Web property operated by the U.S. Department of Defense, according to a new military-wide policy for reporting and fixing security vulnerabilities.

Security researchers are often reluctant to report programming flaws or security holes they’ve stumbled upon for fear that the vulnerable organization might instead decide to shoot the messenger and pursue hacking charges. But on Nov. 21, the DoD aimed to clear up any ambiguity on that front for the military’s substantial online presence, creating both a centralized place to report cybersecurity flaws across the dot-mil space as well as a legal safe harbor (and the prospect of public recognition) for researchers who abide by a few ground rules. Continue reading DoD Opens .Mil to Legal Hacking, Within Limits

Mirai Vulnerability Disclosed, But Exploits May Constitute Hacking Back

Posted on by

A buffer overflow found in the Mirai botnet could eliminate its ability to carry out HTTP flood attacks. But exploiting that vulnerability puts defenders in a gray area with regard to hacking back. Continue reading Mirai Vulnerability Disclosed, But Exploits May Constitute Hacking Back