Security News > 2021 > September > Is hacking back effective, or does it just scratch an evolutionary itch?
Retribution by hacking back might make you feel better, but experts urge caution and explain why it's a bad idea.
In the tech realm, some victims of cyberattacks want to enact revenge by hacking their hackers, a.k.a. the hack back.
Jen Ellis, in her Rapid7 article Hack Back Is Still Wack, offers one of the better definitions of hack back: "When we say 'hack back,' we're referring to non-government organizations taking intrusive action against cyberattackers on technical assets or systems not owned or leased by the person taking action or their client. This is generally illegal in countries that have anti-hacking laws."
Some U.S. politicians are trying to pass legislation that will allow private-sector organizations to hack back.
Paul Zimski, VP of product at Automox, in his Help Net Security article, Why companies should never hack back and during a recent email conversation, said he agrees with Ellis that hacking back is an understandable response.
Zimski added, "Attempting to hack back an adversary could have geopolitical implications that go beyond the scope of the individual business and increase the possibility of false-flag operations."