Why Laws Won't Save Banks From DDoS Attacks

kierny writes "Rep. Mike Rogers (R-Mich.) should know better. The chairman of the House Intelligence Committee claimed to told NBC News that the Operation Ababil U.S. bank disruption DDoS campaign could be stopped, if only private businesses had unfettered access to top-flight U.S. government threat intelligence. Not coincidentally, Rogers is the author of CISPA (now v2.0), a bill that would provide legal immunity for businesses that share threat data with the government, while allowing intelligence agencies to use it for 'national security' purposes, thus raising the ire of privacy rights groups. Just one problem: Numerous security experts have rubbished Rogers' assertion that threat intelligence would have any effect on banks' ability to defend themselves. The bank disruptions aren't cutting-edge or stealthy. They're just about packets overwhelming targeted sites, despite what Congressionally delivered intelligence might suggest."

Re:Locks keep out honest people...

[teaserX]

Locks also keep out lazy criminals. When you can't know who the criminals are that's a fair defense against most of them. This legislation seeks to more effectively determine who/where the criminals are. They can round up all of the car thieves in my neighborhood and it still be stolen if I leave it unattended and running. Legislation that provides consequences for banks that leave the "door" unlocked might be more effective than this "intelligence sharing" which does little to that end. Makell them to lock the doors. We may not even need anything further.

Re:Sue Microsoft for willful negligence

[amiga3D]

I think he's talking about all those windows peecee's slaved into botnets because of their defective by design OS and are used in DDos attacks such as this. It all starts with malware ya know and Windows is the most pervasive form of malware on the planet.