Subscribe / Unsubscribe Enewsletters | Login | Register

Pencil Banner

HBGary's Hoglund discusses lessons from the Anonymous hack

Robert Lemos | March 18, 2011
Companies need to make sure that they are protecting their cloud assets, not just their networks, the beleaguered CTO of HBGary says

FRAMINGHAM, 18 MARCH 2011 - On Superbowl Sunday, HBGary CTO Greg Hoglund found himself locked out of his own email account. As has since beenwidely reported in the media, the hacking group Anonymous leaked thousands of email messages from the accounts of Hoglund and HBGary Federal's CEO Aaron Barr, chastising the company in a public statement. In this excerpt of an interview with CSO correspondent Robert Lemos, Hoglund admits that the company made many mistakes in defending its data, but refutes some of the details of the hack and highlights lessons that other companies should take to heart.

You've said that much of the information in the media about the hack is wrong. What happened?
They didn't get anywhere close to our network. As far as I could tell, they were not even aware of its existence. They may have become aware of it by reading the emails later but that was well after the fact. They only got access to our email spool, which was hosted at Google, and its cloud based email service. And they got access via a stolen password, so they were able to log in. There was really no "hack" involved; it was a stolen credential. (Editor's note: They also had some access to HBGary Federal's, a related company, hosted Web site and Barr's Twitter account.)

You were on the phone with Google as Anonymous was stealing your data?
Yes, I was trying to get Google to shut the site down. Google was trying to get me to put a file on my Web site (to authenticate my identity). You see the chicken-and-egg problem there. (HBGary had pulled its site down.)

Anyone with a cloud-based service needs to have an SLA (software license agreement) in the contract that says there is a priority, security hotline so that when there is a security event you have priority support, rather than what happened to me, which is that I got round-robinned to what appeared to be a call center in India. And I'm waiting on the phone and I can't do the technical magic tricks, jumping through the hoops that Google wanted me to jump through, to get them to listen to me. It took me forever to get technical staff on the phone on Sunday afternoon, so they could make the necessary changes so that Google would even start talking to me. And meanwhile, they are downloading my email spool.

 

1  2  Next Page 

Sign up for Computerworld eNewsletters.