The Rising Trend of Internet Counter-Intelligence
by Lance Cottrell - CTO of Anonymizer - Tuesday, 13 May 2008.
All types of organizations – from Fortune 500 to "mom-and-pop" operations – have mandated the use of anti-virus, anti-adware, anti-spam, firewall and cookie removal solutions for every employee workstation. While these programs have proven effective at mitigating various security risks, IT administrators can’t get too comfortable with their initiatives, just yet.

A growing and more dangerous threat, called Internet counter-intelligence, is the use of sophisticated Web analytics to uncover corporate-user identities to analyze and track enterprise surfing habits. Doing so affords the perpetrator the ability to capture IP addresses and network identities.

In many cases, exposing your IP address is as easy a visiting a website. For example, a quick search on WikiScanner will show more than 90 percent of today’s Fortune 500 banks – including Bank of America, US Bank and Wells Fargo – have some of their IP addresses exposed as a result of employees who edited Wikipedia postings from their company workstation. Though these individuals didn’t know that they were exposing their corporation’s identity, a simple software program was able to extract their host IP address and post them for the general public. In this case, what they post to the Wiki is attributed to their company.

The Wiki expample is a very visible way to see how easy it is for an organization’s network and identity to be exposed. Today there are more than one billion IP addresses that have been collected and aggregate by nefarious Web sites.


More than 900 embedded devices share hard-coded certs, SSH host keys

SEC Consult analyzed firmware images of more than 4000 embedded devices of over 70 vendors and found that, in some cases, there are nearly half a million devices on the web using the same certificate.

Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.

Daily digest

Receive a daily digest of the latest security news.

Mon, Nov 30th