The modus operandi of cybercrime has evolved over a period of time. One of the sophisticated techniques developed by offenders to perpetuate crime is use of botnets. In this case, offenders infect individual computers with malware and then create a chain of numerous compromised computers. The compromised computers may be used to run spam campaigns or initiating distributed denial of service attacks (DDoS) attacks on targeted servers. These attacks pose threat to national security as is established by different attacks during recent years. Recently, European Network and Information Security Agency (ENISA) released a report on detection, measurement, disinfection and defense from botnets. The report focuses on detection and removal of botnets, prevention of new botnet infections and reducing the profitability arising from botnets and cybercrime. The agency emphasizes on incentivizing Internet Service Providers (ISPs) to encourage botnet detection, improving botnet identification measures and malware analysis and information sharing between stakeholders. The report stresses on removal of the entire botnet command and control infrastructure to minimize chances of attackers regaining control and developing deterrence against further botnet takedown efforts.
Cyber security awareness among people is crucial to improving online security practices. Efforts must be made to minimize the growth of malware by improving vulnerability management by developers of IT products and software. Improvement in anti-fraud mechanism and tougher punishment for cybercrime are crucial to reduce the profitability derived by offenders from botnet campaigns and other forms of cybercrime.
The agency suggests improvement in the legal framework and creation of a practical basis to deal with different forms of cybercrime such as establishment and operation of botnets, use of botnets for sending spam e-mails, launching DDoS attacks, stealing of user credentials. Lack of homogenous laws acts as a major deterrence in combating cybercrime. Harmony in cybercrime related laws in the European Union (EU) are crucial to wipe out the botnet infrastructure and enhancing international cooperation. The report emphasizes on creation of responsive network of stakeholders with clearly defined roles and responsibilities across the member states of the European Union (EU). IT professionals must keep themselves abreast of the latest security threats and preventive techniques through e-learning and online IT degree programs.
Internet users must install and regularly update security software to safeguard their computer systems from malware and other forms of threats. Other stakeholders must create Internet security awareness among the public and provide guidance on preventive, detection and mitigating measures through brochures, online IT courses and video tutorials. The agency recommends using ISPs as a medium to notify users on remotely identified infections. The report stresses on the need to integrate and support research institutions in combating botnet attacks. The institutions must aim at developing techniques suited for large-scale operational environments. They must study various botnet detection techniques and conduct malware analysis to devise new tools, which could facilitate quick reaction to complex malware threats. Students should be encouraged to take up IT degree programs to meet the growing requirements of information security professionals.
The agency recognizes the need for effective information sharing among different stakeholders such as counter crime agencies, ISPs and research institutions. Effective coordination and information sharing among these stakeholders could facilitate proper organization of the collected data and creation customized data exchange formats to facilitate investigations. Coordination between stakeholders could also help in creating balance between data protection and privacy laws, enhancing Internet security and ensuring stability of critical infrastructure facilities.
eccuni IT degree programs, online IT courses This entry was posted in Internet Tips and tagged Botnet, ENISA, Fight, Guidelines, Issues, Threats. Bookmark the permalink.Source: http://emamp.info/2011/09/enisa-issues-guidelines-to-fight-botnet-threats/
colonoscopy colonoscopy open office alizee alizee khan academy kate hudson
No comments:
Post a Comment