Using Cybercitizens to Hunt Down Hackers

Symantec is trying to utilize the power of Web users to snare cybercriminals

Since the earliest days of the Internet, people have tried to hack their way into the computers of others. Even as hacking has grown from a way for geeks to impress each other to a means for criminals to steal and blackmail, the strategy for computer security has remained largely the same: Companies and consumers erect the thickest walls they can around computers so the bad guys can't get in.

Now security experts, realizing they're losing the battle, are ready to try a new approach. They plan to recruit victims and other computer users to help them go on the offensive and hunt down the hackers. "It's time to stop building burglar alarms to keep people out and go after the bad guys," says Rowan Trollope, senior vice-president for consumer products at Symantec, the largest maker of antivirus software.

Symantec is one of several companies trying to turn the tables. On Sept. 9, when its new Norton Internet Security is introduced, Symantec will ask customers to opt in to a program that will collect data about attempted computer intrusions and then forward the information to authorities. Symantec will also begin posting the FBI's top 10 hackers and their schemes on its Web site, where customers go for software updates. Next year, the company will begin offering cash bounties for information leading to an arrest.

Bryan Rutberg is ready to help out. Earlier this year hackers commandeered the Seattle resident's Facebook page and told his friends that he needed money wired to London because he had been robbed at gunpoint. The thieves collected more than $1,000 before Rutberg put a stop to the scam. "It's deeply frustrating," he says. "If any company can do something to [improve Internet security], it's a huge service for the online community."


The strategy to involve PC users has its risks, though. Hackers who find novices on their trail may trash their computers or steal their identities as punishment. Citizen hunters could also become cybervigilantes and harm bystanders as they pursue criminals. But some law enforcement experts believe the best way to slow down hackers, whose crimes often span multiple legal jurisdictions, is to get more people involved. "It's impossible to eradicate cybercrime from the top down," says Assistant U.S. District Attorney Matthew A. Parrella, who heads the Computer Hacking & Intellectual Property unit in Northern California.

Hackers, or black hats, as they're known, are increasingly adept at worming their way into corporate networks or deceiving people into installing malicious code on their computers. The government-backed Internet Crime Complaint Center says the number of complaints rose 33% last year, to 275,284.

Symantec's new product uses a technology dubbed Autopsy that quarantines suspicious software being downloaded to a customer's computer. It then creates an onscreen alert that tells the user the software came from an unexpected location such as China or Eastern Europe. A service called Norton Community Watch collects the data and forwards them to law enforcement.

The approach is a reversal from past efforts to make security scans less intrusive. Symantec and other companies long thought people didn't want to be bothered as security software looked for viruses. Now Symantec is betting customers won't mind being disrupted if they can help snare the bad guys. "I'm convinced we can clean up the Internet in 10 years if we can peel away the dirt and show people the threats they're facing," says Trollope.

    Before it's here, it's on the Bloomberg Terminal.