Symantec Cries Wolf About ThreatCon 4: Imminent Global Internet Failure

from the aesop's-modern-fables dept

Symantec's DeepSight threat warning system sent out an erroneous "ThreatCon 4" warning on Friday caused by an errant product test. ThreatCon 4 is the highest level of warning that can be issued by the DeepSight system, and is supposed to indicate times where "extreme global network incident activity is in progress." The level 4 warning has never been issued; the last time level 3 was reached was back in 2004. Symantec issued a retraction of the false alarm approximately an hour after it was issued, and so far, no reports of harm from the false alarm are apparent. Actually, it doesn't even seem like anyone took this warning that seriously at all, considering the lack of any sort of response. And without any sort of response, doesn't that make the early warning system, well, not that useful? After an hour without much of a response, they should have just said: "This was a test of the DeepSite early warning system. Had this been a real warning..."

Reader Comments (rss)

(Flattened / Threaded)

  1. identicon
    Andy, Sep 24th, 2007 @ 3:51pm

    Isn't the fact that you received a message warning of such severity a sign that it's not true?

    reply to this | link to this | view in thread ]

  2. identicon
    greg, Sep 24th, 2007 @ 4:27pm


    Imminent Andy, Imminent.

    reply to this | link to this | view in thread ]

  3. identicon
    Anonymous Coward, Sep 24th, 2007 @ 5:27pm

    Fear is a great sales tactic.

    Yes, there are real threats; nevertheless, a lot of money is made scaring people.

    reply to this | link to this | view in thread ]

  4. identicon
    Anonymous Coward, Sep 24th, 2007 @ 5:39pm

    Rather interesting that your diatribe against Symantec has, right next to it, an ad for Symantec which includes the slogan: "Confidence in a connected world."

    Brought a smile to my face anyway!

    reply to this | link to this | view in thread ]

  5. identicon
    ProphetBeal, Sep 25th, 2007 @ 10:01am

    Not as bad as you may think

    I think you are blowing this way out of proportion. Just because there were “no reports of harm” doesn’t mean that companies or governments that received the message didn’t take action (most likely automated action). The fact is that if someone is using this early warning system they will, most likely, not want to report anything (either success or failure) because that would be seen as a security risk.

    reply to this | link to this | view in thread ]

Add Your Comment

Have a Techdirt Account? Sign in now. Want one? Register here
Get Techdirt’s Daily Email
Save me a cookie
  • Note: A CRLF will be replaced by a break tag (<br>), all other allowable HTML will remain intact
  • Allowed HTML Tags: <b> <i> <a> <em> <br> <strong> <blockquote> <hr> <tt>
Follow Techdirt
Insider Shop - Show Your Support!

Hide this ad »
Essential Reading
Techdirt Deals
Techdirt Insider Chat
Hide this ad »
Recent Stories
Advertisement - Amazon Prime Music
Hide this ad »


Email This

This feature is only available to registered users. Register or sign in to use it.