Thursday, March 28, 2024

Do Hackers Look Before They Leap?

Datamation content and product recommendations are editorially independent. We may make money when you click on links to our partners. Learn More.

Port scanning, the act of sweeping computer ports to discover which port is open, has long been assumed to be a principal first step of any hacker.

But that may not necessarily be the case, according to a new report from researchers at the University of Maryland (UM).

In UM’s test environment, port scans preceded attacks in only 5 percent of cases. The report also found that more than half of all attacks are not actually predicated by any type of scan. “Hackers don’t necessarily look before they leap,” the study concludes.

“I was surprised that the percentage was that low,” Michel Cukier, a UM assistant professor and one of the report’s authors, said.

Cukier noted that the results may have been influenced by some the decisions made in UM’s testbed.

“It would be interesting to repeat the experiment on other locations with other choices,” Cukier told internetnews.com.

Though port scanning was not a predictor for attacks, vulnerability scans do in fact lead to attacks in a significant percentage of cases. The UM report defines vulnerability scanning as a scan “used to fingerprint the presence or absence of an exploitable vulnerability.”

This article was first published on InternetNews.com. To read the full article, click here.

Subscribe to Data Insider

Learn the latest news and best practices about data science, big data analytics, artificial intelligence, data security, and more.

Similar articles

Get the Free Newsletter!

Subscribe to Data Insider for top news, trends & analysis

Latest Articles