McAfee Says Security Industry Failing On Cybercrime

Report outlines proactive, offense-based strategy needed to battle increasingly sophisticated threats.

Mathew Schwartz

August 10, 2010

2 Min Read
NetworkComputing logo in a gray background | NetworkComputing

Antivirus vendor McAfee has called on security researchers and the security industry at large to go on the offensive against criminals and pursue "a more proactive strategy for fighting cybercrime."

"Cybercriminals prosper because they have very little reason to fear the consequences," said Jeff Green, senior VP of McAfee Labs, in a statement. "As security experts, it's time to take a hard look at what we do, how we do it, and what our ultimate goals are."

In the arms race against online criminals, and their increasingly sophisticated yet inexpensive crimeware, malware, and spam-generating capabilities, arguably the good guys are losing. "Every time we release a new statistic about the rise in malware, it points to our failure as an industry," said Green.

What can be done? For starters, a new report from McAfee recommends making it riskier for criminals to operate online, noting that "like any enterprise business model, the psychology of organized cybercrime follows the three major factors: risk, effort, and reward."

Accordingly, why not pursue strategies that increase the risk, effort, and punishment for online crime? "Some of those tactics include publicly disclosing the names of cybercriminals, increasing the fines against cybercriminals, increasing the shutdowns of affected domains, more effective spam filtering, closing 'dropped' e-mail accounts, and freezing payment accounts that are suspected of fraud," said McAfee.

The company also called on the Internet Corporation for Assigned Names and Numbers (ICANN), the not-for-profit organization that coordinates the Internet's naming system, to "take a stronger stance against cybercrime," especially since it's the body that "accredits the registrants that sell the domains which cybercriminals use to host malicious sites."

Another recommendation is to pursue more "shuns and stuns," meaning routing traffic around known-bad networks, as well as actively disabling botnets. "Shuns and stuns have beaten the odds in the past, and industry experts as well as law enforcement should embrace these methods as a common security practice," said McAfee, pointing to Atrivo, MoColo, and Mega-D as relevant success stories.

With the Obama administration and Congress focusing more attention and resources on combating cybercrime, McAfee also suggests fostering more cross-border collaboration, as well as coordination with private industry. Notably, that combination recently helped get alleged Estonian hacker Sergei Tsurikov extradited to the United States.

According to Joe Stewart, director of malware research with the SecureWorks Counter Threat Unit, "creating a framework for these organizations to play a greater role in reporting abuses and enforcing laws -- along with a greatly increased budget -- is where lawmakers seeking to make an impact on cybercrime should turn their attention."

Make no mistake, "this is a long-term effort, and one that will require great political bartering and global treaties," he said. But if handled correctly, it could make online crime a significantly more risky endeavor.

About the Author

SUBSCRIBE TO OUR NEWSLETTER
Stay informed! Sign up to get expert advice and insight delivered direct to your inbox

You May Also Like


More Insights