NBN hack attack a sign of bigger security issue: M86
- 04 August, 2011 14:04
- Comments 4
Australia recently experienced its own high profile security scare when a NSW man was charged with hacking a National Broadband Network (NBN) provider.
The furore reached a point where Communications Minister, Senator Stephen Conroy, went to great lengths to emphasise that the NBN was not compromised or hacked, as the provider technically wasn’t signed-up for the NBN when they were hacked.
Whether the provider was part of the NBN or not, the hack has been positioned by the mainstream press as the first if its kind in Australia, though security vendor, M86, believes that this type of activity is happening to other networks around the country.
“Is it the first attack that has occurred in Australia? Absolutely not. Is it the first attack that has actually been caught and discovered? Yes,” M86 Asia-Pacific vice-president, Jeremy Hulse said.
“The reality is that attacks like this are happening in Australia, but I doubt that a lot of people are reporting it or aware that it’s going on.”
Hulse suspects that this hack points to a bigger issue of what exactly is going on in people’s networks that they’re not aware of.
“Could someone out there have access to all of your information?” Hulse hypothesised.
“In all reality, it’s much more beneficial for an individual to have access to something and not let anybody know that they have access to it than to actually try and do what this person was doing, which was damage and harm.”
The NBN attack has highlighted the ease with which anyone can access scripts from theWeb and hack into a network without much professional knowledge.
“What’s happening now is the malicious part of the hacking world has uncovered a few major flaws by which they can get around some of the most stringent security techniques available today,” Hulse said.
“A lot of it, we’re finding, is based on malware hidden within Web pages in very tricky ways and not signature based.”
Since this malicious code changes regularly, the ways that people can access the tools to hack is much easier, making traditional signature and database protection technologies ineffective.
“In 2007, what we saw was anti-virus signature and database technology capable of picking up 97 per cent of malware,” Hulse said.
“What we’ve seen coming into this year is that signature and database technology are only capable of capturing about 40 per cent of the malware floating around today.”
Hulse suggests the approach to looking at and stopping this type of signature needs to be multi-faceted, and there is no one solution fits all.
He also recommends moving beyond the thinking of just creating an anti-virus signature and instead looking at behavioural techniques to actually stop the malware.
“We have to employ much deeper techniques, as the cost of cybercrime annually in 2007 was $21 billion and annual spending on security was $22 billion, while those numbers have grown to $100 billion and $33 billion, respectively, in 2011,” Hulse said.
“So the whole industry has not kept up with the growth of hacking.”
When it comes to Australian business protecting themselves, Hulse recommends taking action sooner rather than later.
“I don’t think we’ve seen the last of the hacks, it will be an ongoing problem, and the reality is that it really needs to hit home that it’s an issue that people need to look at,” Hulse said.
“My question would be who is next and when is it going to occur, because it’s not an issue of 'if' anymore.”
M86 recently found that spam is down but malware attacks are up in the first half of 2011.
Nominations for the 2012 ARN IT Industry Awards open on Tuesday, June 12.
- Bookmark this page
- Share this article
- Got more on this story? Email ARN
- Follow ARN on twitter
-
Italian mathematician prepares to challenge Google
-
Facebook could buy Nokia to build 'FacePhone', expert claims
-
It's not all Doom at new media conference
-
Tech Watch: Who watches the datacentre?
-
Facebook scammers host Trojan horse extensions on the Chrome Web Store
Get exclusive access to ARN's news, research and invitation only events. 
Comments
Emmisfor
Well Patrick, Conroy did not need to go to *great lengths*, as it was a simple truth that the hacked network was not signed up for nor connected to the NBN at that time...
Anyome suggesting it was is either ignorant, lying or just plain dumb, considering all the available facts.
Yet we see the headline of this article?? Was the NBN hacked or attacked Patrick? We see multiple references to a NBN attack in the article.
Was the NBN attacked? Or was the network of a company planning to be a NBN connected provider attacked?
In the meantime I expect we would all gain greatly from some facts and details of the actual attack on the NBN itself? Which part of the actual NBN was attacked and how did they gain entry to the NBN itself?
Thanks.
Kevin
More anti ABN propaganda.
The simple matter is still so many companies are complacent when it comes to computer security.
A virus, trojan or whatever has to be delivered to a system. The most popular method is via an email attachment or from a dubious web site.
Companies need beef up their security and employ a zero tolerance attitude toward personnel accessing any non work related web site or receiving personal email through a works system.
If a person, such as a researcher, needs to access such sites then it should be done on a stand alone system with it's own internet connection.
Malware can be eradicated if everyone was vigilant. Unfortunately not many are. For me 20 year on the internet and two viruses. Proof that it can be done.
Tom Brown
ARN what are you doing!
I am sorry to say that here appears a typical case of Murdoch press journalism or lack of!
Even though the article does not say the man hacked the NBN the title , paragraph 1, 2 and 3 connect the attach to the NBN
and the title and paragraph 9 simply starts "NBN hack attack " and "The NBN attack ".
Though Mr Budmar appears to be reporting on the wider aspects of security all he is doing is associating this hack to the NBN.
This type of article has great impact on casual readers or people who just scan headlines.
And Mr Budmar takes little pain to appear balanced as his para 3 starts out though it is anything but.
Does Mr Budmar realises that to get ahead in the media world today then he must show his ability to manipulate and turn words to other purpose without the pang of honest morality.
gnome
Three good posts above. The story headline "NBN Hack Attack..." is a bloody disgrace and a complete invention.
And it's made worse by printing a fulsome ad/'interview' with a security company guy, who not surprisingly has just the product line to counteract all those 'NBN Hacks'.
Spare us.
Post new comment