Heh, I tried posting this gibson index comment on a BoingBoing article but it got removed (or maybe just moved to a moderation queue, hard to tell)
Posted by
Beryllium (aka grayman)
Feb 19 '13, 12:02
|
Apparently the system ate my other comment. Anyway.
The uptick in hacking incidents in December and January spurred me to create a ranking system for cyber attack severity. For example, I rated the Facebook incident as a "Level 2 Attack" on a scale that goes up to Level 7 ("Skynet" :) ). Because this Apple incident is related to the Facebook one, it seems to show a degree of coordination, so I've actually rated it as a "Level 3" attack - the same level as the Bit9 penetration and the Federal Reserve data heist. I am amused by Cowicide and That_Anonymous_Coward's suggestion that it's a false flag operation to ramrod a bill through Congress, but stranger things have happened.
By way of contrast, I rated the Burger King and Jeep twitter account hacks as mere Level One "Events".
I've open-sourced the overview ("the rules") on my Github account, as well, so I'm hoping that it can be collaboratively refined into a firm methodology for classifying these attacks.
|
Responses:
|
