The Art of Intrusion

Got a boss who isn’t taking IT security seriously? This book might shake him or her up. It’s a collection of exploits of intruders based on interviews of the perps by convicted U.S. hacker Kevin Mitnick and co-author William Simon.

This time, to better hammer home their point in an entertaining

way, they tell tales of phone phreaks and ex-hackers, some of whom, like Mitnick, have become security consultants (I can hear you shuddering now), then draw lessons for the reader. So you’ll meet Alex and his buddies who beat the video poker machines in Vegas; neOh, who hacked into Lougheed Martin’s systems; Adrian, who added his name to the New York Times database of quotable experts for reporters, and so on.

Adrian’s an interesting case: Not fluent in programming, say the authors, he relied on analyzing how people set up their systems to discover vulnerabilities. (Adrian turned to journalism after serving time last year. Prison does focus the mind, apparently.)

Some of these hucksters are identified by name, others are not. You’ll have to trust Mitnick, who says he challenged their claims. In many cases, however, there are some technical details to explain the route taken.

Should you trust a con?

Mitnick’s name, of course, lends authority to the book — a hacker ought to know when he’s being conned. On the other hand, he does have a new business he wants to burnish.

One of the lessons he wants drive home is that social engineering — respecting a stranger in your NOC wearing a suit, giving out seemingly innocent corporate information — is just as damaging as not regularly changing passwords.

After reading this book I asked a friend when passwords were last changed at his firm.

“”A couple of years ago,”” he replied. I shuddered.

Would you recommend this article?

Share

Thanks for taking the time to let us know what you think of this article!
We'd love to hear your opinion about this or any other story you read in our publication.


Jim Love, Chief Content Officer, IT World Canada

Featured Download

Howard Solomon
Howard Solomon
Currently a freelance writer. Former editor of ITWorldCanada.com and Computing Canada. An IT journalist since 1997, Howard has written for several of ITWC's sister publications, including ITBusiness.ca. Before arriving at ITWC he served as a staff reporter at the Calgary Herald and the Brampton (Ont.) Daily Times.
Previous articleWhy Software fails
Next articleProjects on the edge

Related Tech News

Get ITBusiness Delivered

Our experienced team of journalists brings you engaging content targeted to IT professionals and line-of-business executives delivered directly to your inbox.