• United States



The Bad Guys are Getting More Organized. Are We?

Mar 07, 20072 mins
CareersData and Information SecurityIdentity Management Solutions

  Something new is happening in cyberspace. I think the bad guys are getting much better and more organized. The question is: are we?

 Many people are blogging about these new trends. One of the best pieces on this topic was sent to me by Joel Weever.  Written by Michael St. Neitzel, the article is entitled: “Welcome to 2007: the year of professional organized malware development.”

 His central theme is that: “Malware writers have noticed that they can gain large amounts of money from distributing malware.” He also discusses how playing defense is getting harder and harder – and he recommends going on the offense against these guys.

 A good general article from the BBC was written about this trend last October. “Spinning a web to catch a hacker”  goes into some details around honeypots and how they can help.

 One last article that I like on this problem came from the Tech Republic last  June. “Online threats outpacing law crackdowns,” describes how law enforcement is outgunned.

 There is no doubt that this is a growing trend. How do we respond? It calls for collaboration and working closer with others. I’m active in Michigan InfraGard and the Multi-State Information Sharing and Analysis Center (MS ISAC)  for these very reasons. If you’re in the private sector, I recommend looking into your local InfraGard chapter. You can see a national InfraGard map with chapters listed at their site.

 If you are a local government employee, there are state ISACs being set up around the country as well. Contact your state’s CISO. For example, if you’re in Michigan, you can get information on joining our ISAC  at our Michigan cyber website.

 Whenever bad things happen, it can become frustrating knowing who to call. Developing your contacts early is essential, and it’s helped me on numerous occasions. I encourage readers to join one of these organizations so we can battle the bad guys together. 

 Over the next few months, I’ll share some stories on how collaboration can solve problems that we can’t solve alone as security professionals.


Daniel J. Lohrmann is an internationally recognized cybersecurity leader, technologist and author. During his distinguished career, Dan has served global organizations in the public and private sectors in a variety of executive leadership capacities, including enterprise-wide Chief Security Officer (CSO), Chief Technology Officer (CTO) and Chief Information Security Officer (CISO) roles in Michigan State Government. Dan was named: "CSO of the Year," "Public Official of the Year," and a Computerworld "Premier 100 IT Leader." Dan is the co-author of the Wiley book, “Cyber Mayday and the Day After: A Leader’s Guide to Preparing, Managing and Recovering From Inevitable Business Disruptions.” Dan Lohrmann joined Presidio in November 2021 as an advisory CISO supporting mainly public sector clients. He formerly served as the Chief Strategist and Chief Security Officer for Security Mentor, Inc. Dan started his career at the National Security Agency (NSA). He worked for three years in England as a senior network engineer for Lockheed Martin (formerly Loral Aerospace) and for four years as a technical director for ManTech International in a US / UK military facility. Lohrmann is on the advisory board for four university information assurance (IA) programs, including Norwich University, University of Detroit Mercy (UDM), Valparaiso University and Walsh College. Earlier in his career he authored two books - Virtual Integrity: Faithfully Navigating the Brave New Web and BYOD For You: The Guide to Bring Your Own Device to Work. Mr. Lohrmann holds a Master's Degree in Computer Science (CS) from Johns Hopkins University in Baltimore, Maryland, and a Bachelor's Degree in CS from Valparaiso University in Indiana.

More from this author