 |
|
Oracle Tips by Burleson |
Web Stalkers
Chapter 5 -
All About Cybercrime
Outside-In Hacker Attacks
Hacker attempts against web-enabled systems are
constant, and many companies report thousands of attempts every
day. A comprehensive auditing system will record all illegal access
attempts and include the time, referrer IP address and all other
relevant information. The following is a real-world case.
Real-World Case: The Extortion Attack
In this case, a hacker exploited a web server
vulnerability, started siphoning confidential information from a
corporate database, and shipped it via e-mail to a foreign country
that did not honor U.S. copyright law. A foreign cohort then
extorted the company, proving that they had the data and threatening
to disclose proprietary secrets to a competitor unless they were
paid a significant sum of money.
Faced with the loss of their competitive
advantage, the company contacted the FBI and was told that there was
no reciprocity with the nation and that Interpol would not be able
to investigate or arrest the extortionists. The webmaster had not
detected the data leakage, and he had no idea how the thieves had
accessed the database.
Surprisingly, this is not an uncommon
occurrence, and many multi-national companies keep accounts for
bribery and extortion expenses because they are a legitimate
requirement for doing business in some overseas nations. In this
case, the company quietly paid the extortionist in return for the
promise to destroy the data and details about how the data was
stolen.
|
Download your Oracle scripts now:
www.oracle-script.com
The
definitive Oracle Script collection for every Oracle professional DBA
|
|
