The media myth of the hacker uptick

Paul Raven @ 22-07-2011

The Freakonomics people asked a bunch of folk whether they thought there had been a sudden explosion of hacking in recent times. One of the respondents was Bruce Schneier, who bursts the very myth that the question attempts to bolster:

None of this is new. None of this is unprecedented. To a security professional, most of it isn’t even interesting. And while national intelligence organizations and some criminal groups are organized, hacker groups like Anonymous and LulzSec are much more informal. Despite the impression we get from movies, there is no organization. There’s no membership, there are no dues, there is no initiation. It’s just a bunch of guys. You too can join Anonymous—just hack something, and claim you’re a member. That’s probably what the members of Anonymous arrested in Turkey were: 32 people who just decided to use that name.

It’s not that things are getting worse; it’s that things were always this bad. To a lot of security professionals, the value of some of these groups is to graphically illustrate what we’ve been saying for years: organizations need to beef up their security against a wide variety of threats. But the recent news epidemic also illustrates how safe the Internet is. Because news articles are the only contact most of us have had with any of these attacks.

Unmasking one of the many faces of the modern moral panic… I note that the other four respondents all conceded that there has been an increase in hacking, and that – unlike Schneier – they all hold high positions in computer security businesses.