RSS Alerts

Share

More services

Related Links

Related Stories

  • Major cyberattack on Mitsubishi involving nuclear power plant data
    Japanese authorities are investigating what appears to a major cyberattack involving viruses or trojans against the servers of Mitsubishi Heavy Industries in August of this year.
  • Anti-virus: Is There Life in the Old Dog?
    Once upon a time, anti-virus technology was a well-coveted standalone product. These days, it is often considered a commodity that can be adequately built into a UTM offering. Cath Everett investigates whether or not a market for standalone anti-virus technology still exists
  • Nation-states launch cyberattacks against an array of targets
    Cyber attacks from nation-states can be divided into three categories – political activism and espionage, industrial espionage, and cyberwarfare – observed Kurt Bertone, vice president and security strategist at Fidelis Security Systems.
  • East-West Institute draws up proposals for cyberwar rules of engagement
    Cybersecurity experts at the annual Munich Security Conference are to propose that global rules of engagement are established to cope with cyber weapons.
  • Oil and gas companies hit hardest by cyberwarfare
    The oil and gas sector has been the hardest hit by stealthy infiltration, according to a report from the Center for Strategic and International Studies (CSIS). The sector was hit by stealth attacks 17% more than the cross-sector average, with almost three oil companies in four having had hackers fly under their radar.

Top 5 Stories

News

Japan’s cyber defense weapon: a virus

03 January 2012

The Japanese Defense Ministry is reported to be in the process of developing a computer virus capable of tracking, identifying and disabling sources of cyber-attacks.

Being developed by Fujitsu Ltd, the virus is supposedly able to trace and disable “not only the immediate source of attack, but also all ‘springboard’ computers used to transmit the virus.” It is the culmination of a three-year 178.5 million yen defensive cyber weapon project.

The news, however, has been met with a combination of dismay and surprise by many of the world’s leading anti-virus companies; all of whom confirm that they would remove any such virus they discover. “A virus is computer code that infects other files by inserting its code into them,” explains Luis Corrons, the technical director at PandaLabs, “so it is impossible to control. As soon as an antivirus company gets access to it, that virus would be detected and disinfected.”

“Developing viruses is never right,” confirms Kaspersky’s Ram Herkanaidu, “and we will treat all of them, regardless of who creates them, as malicious and provide detection for our customers.

The general consensus is that something has been lost in translation. “I'm not sure that what they are developing is really a virus,” explains Stephen Cobb, a security evangelist at ESET. “They may be looking at some form of ‘strike back’ or ‘take down’ capability, but doing that via software in an automated manner would be very risky in terms of collateral damage, unexpected consequences, and legal repercussions.”

For now, such a virus would probably be illegal even in Japan, where the Defense and Foreign Ministries are apparently discussing the legislative issues. However, it is unlikely that such a ‘weapon’ would be acceptable to other countries. In the UK, infection of a computer by any third party would almost certainly be contrary to the Computer Misuse Act.

And it probably wouldn’t work. “The idea of launching a software attack against a cyber attacker strikes me as extremely risky and unlikely to succeed in the long run as attackers will inevitably develop counter-measures. Far better to devote those resources to international cooperation between law enforcement agencies and arrest the perpetrators. We need better deployment of defensive technology and more cyber criminals behind bars, not an escalation of cyber-conflict,” says Cobb.

This article is featured in:
Internet and Network Security • Malware and Hardware Security

 

Comment on this article

You must be registered and logged in to leave a comment about this article.

Terms & Conditions |Privacy |Website Design|Reed Exhibitions. All rights reserved. Copyright © 2012