The Ethical and Legal Dilemmas of Threat Researchers

Threat intelligence is mainstreaming into a de-facto everyday tool of cyber-defense. But all that intelligence must be collected, analyzed, and prepared by someone. Enter threat researchers, the advanced scouts of cybersecurity. They are becoming more numerous and conspicuous as more intelligence on illicit hacker activity is demanded. Threat researchers trawl through the dark web, pick apart malware, reverse engineer exploits, track outbreaks across the Internet, and set up honeypots to surveil attacker activity.

They also find themselves weaseling around in the slippery space between what is acceptable and what is forbidden. To get to the truth on the ground, they can find themselves using stealth, misdirection, and even outright deception. This is when threat researchers can find themselves in unpredictable legal and ethical situations with consequences that they and their employers never anticipated. I’m going to pose a series of scenarios based on actual threat researcher incidents to illustrate these dilemmas.

Read more at HelpNetSecurity.

Homeland Security Today

The Government Technology & Services Coalition's Homeland Security Today (HSToday) is the premier news and information resource for the homeland security community, dedicated to elevating the discussions and insights that can support a safe and secure nation. A non-profit magazine and media platform, HSToday provides readers with the whole story, placing facts and comments in context to inform debate and drive realistic solutions to some of the nation’s most vexing security challenges.

See Full Bio