BaltTech: More companies now have to worry about "advanced persistent threat" - Technology news: Digital tech, innovation, Apple and Microsoft news from reporter Gus Sentementes - baltimoresun.com

baltimoresun.com

The Baltimore Sun > Business > Technology > BaltTech

« Twitter to launch Facebook Connect copycat? | Main | UMBC tops in computer and information science degrees »

January 20, 2010

More companies now have to worry about "advanced persistent threat"

"The phrase 'advanced persistent threat' is something you're going to be hearing a lot more of the next two years," said Martin Roesch, founder of Sourcefire Inc.

That's one bit of perspective Roesch has to offer on last week's news of Google (and 30+ other companies) getting hacked by someone from inside China, by perhaps the Chinese government itself.

Roesch's company, based in Columbia, Md., crafts intrusion detection and prevention defenses for major government and military agencies and, increasingly, major companies.

Roesch says that government military networks have been accustomed to seeing the kind of sophisticated cyber attacks that Google Inc. experienced last week.

But the attack on Google may have been a watershed moment for corporations.

"This is the first time that nation-state-grade tactics were used against a commercial target," Roesch said. "They were trying to hide. They were taking the time to cover the tracks."

Hence the hacking term "advanced persistent threat," or APT. HackingUniverse.com defines APT as:

...cyber attacks mounted by organizational teams that have deep resources, advanced penetration skills, specific target profiles and are remarkably persisent in their efforts. They tend to use sophisticated custom malware that can circumvent most defenses, stealthy tactics and demonstrate good situational awareness by evaluating defenders responses and escalating their attack techniques accordingly.

Indeed, what may be remarkable in Google's case is not the hacking itself, but the fact that Google was able to sniff it out.

What the attack on Google means is that more companies in different industries will need to pay more attention to APT, from defense contractors to banks to health care systems, Roesch told me.

"I think you are seeing a new level of attacking taking place here," Roesch said. "I think this [attack on Google and others] does change the game and the scope of the problem. You have to consider a whole new security posture."

This is an archived version of the technology blog. For updated coverage, see the current baltTech location: baltimoresun.com/balttech

Posted by Gus Sentementes at 7:00 AM | Permalink | Comments (1)
Categories: Big Ideas, Government Tech, Web Dev & Apps

Comments

I think this is a little off "This is the first time that nation-state-grade tactics were used against a commercial target,".

This is the first time it's been discovered and made public. Espionage is nothing new, the attack vector has changed, but the threat has always been there.

I would bet that we see more discoveries of APT infiltration now that it's getting attention and people are looking for it.

Posted by: Jason Lewis | January 21, 2010 9:11 AM

Post a comment

All comments must be approved by the blog author. Please do not resubmit comments if they do not immediately appear. You are not required to use your full name when posting, but you should use a real e-mail address. Comments may be republished in print, but we will not publish your e-mail address. Our full Terms of Service are available here.

Name:

Email Address:

URL:

Remember personal info?

Comments:

Verification (needed to reduce spam):

About Gus G. Sentementes

Gus G. Sentementes (@gussent on Twitter) has been writing for The Baltimore Sun since 2000. He's covered real estate, business, prisons, and suburban and Baltimore City crime and cops. He was one of the first reporters at The Sun to use multimedia tools and Web applications -- a video camera, an iPhone -- to cover breaking news. He hopes to cover Maryland geeks and the gadgets and Web sites they build, and learn -- and share -- something new every day.

Gus has a wife, a young daughter and two feuding cats. They live in Northeast Baltimore.

This is an archived version of the technology blog. For updated coverage, see the current baltTech location: baltimoresun.com/balttech

Follow @gussent on Twitter

Baltimore Sun Business Facebook page

Subscribe to BaltTech by Email

Sign up for business text alerts

-- ADVERTISEMENT --

Recent posts

Most Recent Comments

Facebook deletes photo of artful nude pregnant woman on Disney-owned parent-blogging site's FB page (2)
Malcolm Boura wrote: Content that is more objectionable ... [more]
"App Economy" created nearly 500,000 jobs: study (1)
bob wrote: Too bad Apple takes 30% off the top... [more]
NFL's online copyright monitor vendor threw flag too soon on Chrysler ad (1)
mike wrote: who is the vendor. that mde the ca... [more]
NFL asks Google to reinstate Chrysler's "Halftime in America" ad (3)
Gabe Killian wrote: That's horribly confusing! Were th... [more]
Youtube blocks Chrysler's "Halftime in America" commercial for NFL copyright claim (11)
Douglas J. De Clue wrote: There is NO way the NFL can have a ... [more]

Coupon Codes	Laptop Deals
Apple Coupons	Dell Deals

Baltimore Sun coverage

Technology headlines

Sign up for FREE business alerts

Get free Sun alerts sent to your mobile phone.*

Get free Baltimore Sun mobile alerts

Sign up for Business text alerts Returning user? Update preferences.
Sign up for more Sun text alerts

*Standard message and data rates apply. Click here for Frequently Asked Questions.

Charm City Current

Subscribe to this feed

Categories

Blogroll

Powered by MT Blogroll

Monthly Archives

Stay connected

Powered by Movable Type 3.36