Skip to content
loading...

Revenge Hacking Is Hitting the Big Time

github logo ・1 min read  

Hacking back may become supported in legal terms as per https://www.thedailybeast.com/inside-the-shadowy-world-of-revenge-hackers meaning that if your organization is hacked you can retaliate and try to hack the hackers that hacked you.

It seems this is already done by several organizations and that is an open secret in the security community.

What are your toughs on this?

twitter logo DISCUSS (3)
markdown guide
 

Calling it "revenge hacking" is a pretty major misrepresentation. The proposed legislation basically makes a company exempt from hacking laws if they are doing it to protect their data from someone else who has broken those laws, or assist in forensics.

See: tomgraves.house.gov/uploadedfiles/...

This is pretty important and could have a big positive impact on the field of infosec. Without legislation like this, if your organization had a data breach, and you had a way to get that data out of the hands of the intruder, you wouldn't be legally able to act upon it, as you'd be illegally accessing someone's system yourself.

This basically says "if you had a data breach, you can try to identify the intruder or neutralize the data".

 

Thanks to point out that link :)

I completely agree that being approved this law will benefit the infosec world and they really need it to combat the bad guys ;)

 

In my opinion, if back-hacking were legal, that would be great fun. Mostly because every time I see some hacker group take credit for some lame, uninteresting attack (You brought down PlayStation Network? Oh no...that means I won't be able to play Monster Hunter World for an entire hour while Sony makes the problem disappear?!?), I've always secretly wished that a dump of that hacker group's API keys would suddenly end up on GitHub or that same Twitter profile would tweeting ridiculous things like "All of us here at would just like everyone to know that we have heard your feedback and no, we are not going stop posting to our blog series 'Guess Where I'm Wearing the Peanut Butter'. While we understand that those who have never felt PB between their butt cheeks would find this strange, don't knock it until you've tried it."

Oh and, um... black-hat stuff is bad and such... ahem

Classic DEV Post from Jul 30 '19

Save the planet, clean your mailbox

Paulo Renato profile image
I am a Developer Advocate for Security in Mobile Apps and APIs at approov.io. Another passion is the Elixir programming language that was designed to be concurrent, distributed and fault tolerant.
Join DEV

Learn how to be better at computers and programming and stuff. DEV 4 life.