In an effort to better protect companies against actions by hackers or malicious own staff, the FBI changes its strategy to take action only after an attack has taken place. A more active attitude should improve security.
Not only does the FBI contact companies when information is gathered that indicates an imminent attack, it also builds a network with companies that cover an important market. Long T. Chu, executive assistant to the FBI’s cyber division, believes in conversation with ARS that this is the way forward: “To provide information to strengthen the defense of the company in question, before a problem is identified.”
With a new initiative called IDLE (Illicit Data Loss Exploitation), an extra step is taken to improve security. Data is hidden between ‘fake’ data, to make it more difficult to filter what is important.
Hiding the actual data is not only aimed at external attacks, but according to the FBI, also to send malicious insiders onto the wrong track.
In addition to improving security, the FBI hopes to respond more quickly by approaching companies more actively. Information is forwarded faster and the hope is that more data can be exchanged in order to be able to build a case faster.
In addition, the FBI also wants to be able to use all collected data among themselves, even if it comes from an already running case. The ultimate goal, the identification of the perpetrator, should therefore be easier. According to Chu, this only requires more input from the business community, which should be achieved with a more active approach.