×

Announcing: Slashdot Deals - Explore geek apps, games, gadgets and more. (what is this?)

Thank you!

We are sorry to see you leave - Beta is different and we value the time you took to try it out. Before you decide to go, please take a look at some value-adds for Beta and learn more about it. Thank you for reading Slashdot, and for making the site better!

Mathematical Model Helps Estimate Optimal Timing of Cyber Attack

Unknown Lamer posted about 10 months ago | from the hack-the-gibson-when-it's-ripe dept.

Security 31

sciencehabit writes "Have you been missing the grim mathematical war games that strategists once used to map out possible nuclear confrontations? Don't worry, the games are back — this time applied to computer security. Researchers have now mathematically formalized the strategy of computer hacking, potentially enabling anyone — governments, activist hackers, cybermafia — to determine the optimal timing of attacks."

Sorry! There are no comments related to the filter you selected.

Now (1)

Anonymous Coward | about 10 months ago | (#45949117)

If you don't do it now, *they* will.

It's kerosene, the rope's soaked with it! (-1)

Anonymous Coward | about 10 months ago | (#45949225)

I was in a bar Saturday night, and had a few drinks.
  I noticed two large women by the bar. They both had strong accents so I asked, "Hey, are you two ladies from Ireland?"
  One of them screamed, "It's Wales you idiot!"
  So, I immediately apologized and said, "Sorry, are you two whales from Ireland?"
  That's all I remember.

http://bash.org/?953413 [bash.org]

ladys that walk around the boxing ring ~ rounds (-1)

Anonymous Coward | about 10 months ago | (#45949289)

they are in cahoots with the madison ave. WMD on credit phosphorian media whitewash mosadists? just when it was getting nice out again.... spiritless analcystic numerologist digitartans undoubtfully using the boxing ring girls for more distraction? sheesh

What could possibly go wrong? (-1)

Anonymous Coward | about 10 months ago | (#45949331)

"potentially enabling anyone â" governments, activist hackers, cybermafia â" to determine the optimal timing of attacks.""

Nice to see the NSA sharing more of its work on how to unleash cyber mayhem on the world. Nice work, Obama!

Optimal attack time (1)

fatphil (181876) | about 10 months ago | (#45949427)

I've worked out the optimal time to pull down their coffee machine.
Where will these strategists be without their coffee, eh?

Obligatory (2, Funny)

Anonymous Coward | about 10 months ago | (#45949491)

What a strange game. The only winning move is not to play.

What about a nice game of chess?

Re:Obligatory (1)

iamnotasmurf (3464141) | about 10 months ago | (#45949525)

What a strange game. The only winning move is not to play.

What about a nice game of chess?

Sir, with an attitude like that you will never get out of your mom's basement!

Re:Obligatory (1)

hcs_$reboot (1536101) | about 10 months ago | (#45949821)

What about a nice game of chess?

With this [chessbase.com] , you won't be disappointed.

Re:Obligatory (0)

Anonymous Coward | about 10 months ago | (#45950811)

I just saw that movie on TV a couple of nights ago. Brings back fond memories of taking my high school girlfriend out to see it on our first date. God, I hate this getting old shit.

Hmmm... let me guess? (0)

Anonymous Coward | about 10 months ago | (#45949521)

Hmm, the best time to attack is in the early morning local time?

Re:Hmmm... let me guess? (1)

drainbramage (588291) | about 10 months ago | (#45950107)

For more detail check the newspaper, perhaps the Perl Harbor Gazette.

Re:Hmmm... let me guess? (1)

sunderland56 (621843) | about 10 months ago | (#45950319)

Hmm, the best time to attack is in the early morning local time?

No. Best time is about 6 PM on Friday - all of your *good* IT guys have left for the weekend, with only the newbies on the night shift left in the building; and all of your really good security people are getting drunk in a bar somewhere.

Re:Hmmm... let me guess? (1)

fatphil (181876) | about 10 months ago | (#45951107)

Nope, saying "6" is an arithmetic solution, we need a mathematical one.

6 + Min[t>=0]:(Max[i]:(competence(staff_member_{i}, time 6+t)) <= target_competence)

Brought it upon ourselves (1)

pcwhalen (230935) | about 10 months ago | (#45949535)

The NSA encouraged weakening of number randomizers and randomization algorithms which weaken encryption. They don't report vulnerabilities in software.

We brought a world of less secure computer networks and electronic banking and commerce upon ourselves.

Hell we even gave hackers a damn fine model on how to attack.

From the article:"The Stuxnet worm, for instance, was supposed to quietly delete itself after doing its harm, but it was unintentionally released âoeinto the wild, where it is no doubt being tweaked, reverse-engineered, and readied for fresh exploits by others."

Re:Brought it upon ourselves (0)

Anonymous Coward | about 10 months ago | (#45949597)

Hell we even gave hackers a damn fine model on how to attack.

On top of that: people with enough money to spend on sponsoring research nowadays seem to be also the ones insecure enough to be aggressive.

Thanks (0)

Anonymous Coward | about 10 months ago | (#45949605)

Good website. Welcome back mey blog page. Health
e-tedavi.gen.tr

Obvious (4, Interesting)

Akratist (1080775) | about 10 months ago | (#45949609)

While this is not quite what the article is talking about, right around the holidays is probably the best time to stage an attack, as I think the BBC (?) found out already. Where I work, the place was running on a skeleton crew, with the IT staff at a bare minimum and handling service calls instead of doing any network monitoring or maintenance (what do you deal with first -- system maintenance or someone in sales who can't connect to the server and is making a big stink about it?). Social engineering probably works great in the week or so before the holidays...figure out where the company Christmas party is going to be, then crash it. Find someone who's sloshed and start talking them up. If not that, people are still busy and distracted, gifts are often delivered, and so on. Everyone in a company, and especially IT managers, really need to step up their awareness during this time of year, not get lax about it.

Re:Obvious (1)

Anonymous Coward | about 10 months ago | (#45949685)

While this is not quite what the article is talking about, right around the holidays is probably the best time to stage an attack, as I think the BBC (?) found out already.

BBC? Other Targets will more more profitable to attack for sure.

Re:Obvious (-1)

Anonymous Coward | about 10 months ago | (#45949975)

Other Targets

nigger.

Re:Obvious (1)

transporter_ii (986545) | about 10 months ago | (#45949703)

Yes, this. Someone had some taxpayer money to spend to come up with this crap. When the law and the NSA are playing S.H.I.E.L.D, this will look really cool on the monitors. And then they will time it for a holiday or other important day and release the DDoS.

Re:Obvious (0)

Anonymous Coward | about 10 months ago | (#45949725)

Or timed it during the big freeze to further cripple the infrastructure and make it more difficult for operators to manually fix things.
Watch cascade failures during peak power demand as critical nodes are taken offline and the power demands overload the system.

Pretty luck that it hasn't happened.

The Rational Timing of Surprise .. (1)

DTentilhao (3484023) | about 10 months ago | (#45949707)

"A classic example is the British decision in World War II to allow German spies to continue gathering damaging intelligence for Hitler years after the spies’ identities were discovered" link [sciencemag.org]

There were no spys allowed to freely operate prior to D-Day, they were all captured and utilized to feed the enemy false information. Reason being the British were reading the encrypted communications to the spies from Bletchley Park. link [wikipedia.org]

This is like Quantum Physics.... (2)

3seas (184403) | about 10 months ago | (#45949887)

once you look at it.... and TELL EVERYONE....... it changes.

Seems unnecessary (0)

Anonymous Coward | about 10 months ago | (#45949901)

Should be pretty easy to deduce without a computer, right? Any time before and after school, on holidays and weekends... Pretty sure I saw this in Death Note.

We already know the best time to attack (0)

Anonymous Coward | about 10 months ago | (#45949955)

It isn't called a lunchtime attack for nothing.

Mathematical Models? (1)

ruir (2709173) | about 10 months ago | (#45949991)

Captain obvious called. Extended weekends, Xmas and summer holidays.

Re:Mathematical Models? (2)

rmdingler (1955220) | about 10 months ago | (#45950129)

Major Obvious called.

Apparently, a penchant for the apparent is a promotable offense at his office.

Re:Mathematical Models? (1)

BonThomme (239873) | about 10 months ago | (#45950371)

he's just bitter because he's still only a Captain.

Re:Mathematical Models? (1)

aaronb1138 (2035478) | about 10 months ago | (#45954925)

I suspect lunchtime and towards the end of the day during M-F workdays are the best times. Nearby time zones still have enough late work day traffic that a minor issue might be dismissed as general internet congestion and at the same time, the target support people are more exhausted and likely to miss something / want to get out the door and go home.

30 Minutes After ... (0)

Anonymous Coward | about 10 months ago | (#45957267)

Dominos Pizza delivery!

Back in the '90s the FBI warned an "Above Top Secret" Defense Agency to curtail their habit of Dominos Pizza deliveries after tasked with a secure operation because a steady flow of Dominos Pizza cars/trucks was a dead giveaway that something BIG was up. True story!

Check for New Comments
Slashdot Login

Need an Account?

Forgot your password?