LulzSec, Anonymous Hacker Arrests Won't Solve Security Attacks

News Analysis: Even if law enforcement organizations arrested everyone in Anonymous and LulzSec tomorrow, it really won't solve the problem of network intrusions, botnets and attacks.

The FBI and Scotland Yard should be praised in their ability to track down, identify and arrest members of the related hacking organizations Anonymous and LulzSec. The cyber-sleuthing they did is not easy. When you have to do it well enough for the arrest to hold up in court, it's harder still. Unfortunately, it's not going to solve the problem.

While the arrest of 12 members of the Anonymous hacking group, as well as two of the reputed six-member LulzSec team, may have taken these specific people off the street, the fact remains there is a limitless supply of people who want to break into computer networks, the higher the profile the better. Anonymous has already threatened a retaliatory attack on the FBI for the arrests. Whether they go through with the threats and whether the attacks, if attempted, are successful remains a mystery until it happens.

But it's a virtual certainty there will be further attacks on the FBI. Likewise, there will be more attacks on Scotland Yard and on any number of other law enforcement and intelligence organizations. These targets are just so tempting that even a mediocre hacker wants the bragging rights.

And that's one of the problems with the collection of hackers these days. Some are just in it for the bragging rights. It doesn't really matter if your important data is encrypted, hidden away and unable to be copied. Some of these people aren't after that. They just want to be able to prove they visited your company, breached your security and then left a message behind that they did it.

Problem is, if they can break into your battle-hardened network, so can someone who has all of the money they need, all of the best talent, and a strong motivation to steal information from you. That someone could be a state-sponsored hacker, a terrorist, a freelance cyber-thief in it for the money, or even a competitor. One way or another, someone is trying to get into your secrets and steal them.

However, it's important to note that a successful attack from Anonymous or some other organization should be a warning. At the very least your security is inadequate. You need to find out how the attack took place and you need to fix it.

Wayne Rash

Wayne Rash

Wayne Rash is a freelance writer and editor with a 35 year history covering technology. He’s a frequent speaker on business, technology issues and enterprise computing. He covers Washington and...