NEWS
Businesses are exaggerating the amount of damage done by hackers according to a man with more than a little vested interest in the issue – the so-called 'Nasa hacker' Gary McKinnon.
McKinnon is currently awaiting extradition to the US for allegedly hacking into 97 US government computers, including military and Nasa systems.
In total it is claimed McKinnon did around $700,000 worth of damage but McKinnon said that figure is in line with a tendency on the part of organisations to exaggerate damages.
Speaking at the InfoSecurity show in London McKinnon said of his own case: "In order for it to be an extraditable offence I was told you have to have done $5,000 worth of damage to a PC. I found out I had apparently done at least $5,000 worth of damage to every computer."
Commenting on the high figures, he added: "Now they're obviously not shopping in PC World, are they?"
Although McKinnon has a clear interest in claiming those damages have been exaggerated, Peter Wood, an 'ethical hacker' and penetration tester from First Base Technologies who took part in the InfoSecurity show's hacker panel, supported the argument that businesses are prone to exaggerating the costs they incur and suffer around a cyber attack.
He said in part this is due to ignorance and a lack of understanding of the issues.
Comments
There are 3 comments. Join the discussion
1. anonymous
Gary has never even been to the USA, so exactly why he is supposed to be subject to their laws absolutely beats me!
2. Simon
No-one mentioned insurance - if you are going to claim, then you might as well claim for everything you can. I couldn't possibly comment on suggestions that a company suffering from flood damage from faulty roof gutters would move a lot of their old surplus stock to wher ethe water is coming in ...
The same would surely apply to IT problems if the company has any insurance in this area (and many have).
3. Sylvain
The problem is that the insurance will want to have proof and that many (well exagerate) damage.