RealNews

Hybrid software deflects attackers

Fremont, Calif., a Silicon Valley city of 200,000, doesn’t sound like a top target for network hacks. But when war began last spring in Iraq, the city’s Web site, at www.ci.fremont.ca.us, received scores of hits from locations in the Middle East. The city had just installed ActiveScout intrusion-prevention software from ForeScout Technologies Inc. of San Mateo, Calif. The software has a map that shows the geographic origin of attempted attacks. “It really opened our eyes,” said Mike Towan, Fremont’s network administrator. “We were surprised at the kind and amount of traffic at our gateway that we weren’t aware of before.” Towan described ActiveScout as a hybrid of honey pot—a system that lures hackers, then blocks their IP addresses—with intrusion detection. ActiveScout learned the network rapidly and began to offer up services to suspected hackers “to tell them the site is wide open,” he said. “When they come back to exploit what they think are vulnerabilities, ActiveScout blocks them.” Full Story

OODA Analyst

OODA Analyst

OODA is comprised of a unique team of international experts capable of providing advanced intelligence and analysis, strategy and planning support, risk and threat management, training, decision support, crisis response, and security services to global corporations and governments.