Military and Intelligence Attacks

858
Chapter 19 
■
Investigations and Ethics
Because of the sensitive nature of information collected and used by the military and 
intelligence agencies, their computer systems are often attractive targets for experienced 
attackers. To protect from more numerous and more sophisticated attackers, you will 
generally find more formal security policies in place on systems that house such infor-
mation. As you learned in Chapter 1, “Security Governance Through Principles and 
Policies,” data can be classified according to sensitivity and stored on systems that sup-
port the required level of security. It is common to find stringent perimeter security as 
well as internal controls to limit access to classified documents on military and intelli-
gence agency systems.
You can be sure that serious attacks to acquire military or intelligence information are 
carried out by professionals. Professional attackers are generally very thorough in covering 
their tracks. There is usually very little evidence to collect after such an attack. Attackers 
in this category are the most successful and the most satisfied when no one is aware that an 
attack occurred.
advanced Persistent Threats
Recent years have marked the rise of sophisticated attacks known as advanced persistent 
threats (APTs). The attackers are well funded and have advanced technical skills and 
resources. They act on behalf of a nation-state, organized crime, terrorist group, or other 
sponsor and wage highly effective attacks against a very focused target.

Download 19,3 Mb.

Do'stlaringiz bilan baham: