The risk of hacker attacks in the Middle East is growing and the biggest threat, say industry insiders, comes from within.
As more people have access to privileged information, the number of those taking advantage of the situation is increasing.
"One of the primary vulnerabilities is the threat of internal fraud by employees who have access to highly sensitive information and are more likely to use it in the wrong way," said Erik Laykin, president of US FBI InfraGard, which helps corporations fight electronic crime.
Laykin said though there was evidence of an increase in hacker attacks in the Middle East, there was little statistical information.
Speaking at the Hacker Halted conference in Dubai, Sanjay Bavasi, vice-president of EC-Council, said even systems running on real time can be targeted with vital information stolen and used instantly, which is known in the industry as spoofing.
The first of its kind in the Middle East, the two-day Hacker Halted conference ends today.
Local experts attending the conference agreed the region could no longer afford to turn a blind eye to the growing problem.
"We haven't suffered a direct hit and we are happy for that," said Dr. Saeed Al Barwani, CEO of E-Hosting Datafort, a subsidiary of the Dubai Technology and Media Free Zone.
"However, that is not to say there is no risk. There are always attempts being made across all sectors."
Technology continues to evolve, leaving many companies worldwide fighting to keep up with new methods used by hackers. No level of the economy is free from the risk of attack, said Larry Detar, a senior security services consultant.
A strike can destroy retail, financial and even governmental institutions if there is a lack of awareness and communication, he said.
Detar said the only way to combat information theft was training combined with up-to-date IT services.
"They must use the same tools, techniques and methods that the hackers do in order to see if the network is safe from them," he said.
The earliest record of hacking in the UAE was in 2000 when a Briton was charged with sabotaging the country's internet network and misusing equipment provided by Etisalat.
Most recently, Commercial Bank of Dubai got rid of its website provider following concerns about security. The bank's move followed a hacking attack in September that saw the website defaced after a hacker gained entry to the site's administration system.
The attack was the latest security incident to come to light involving UAE banks.
As a result the government adopted several new laws to prosecute hackers.
In a statement by Omar Obeida, legal consultant for Al Tamimi Advocates, the UAE will introduce this year a federal law that will impose penalties for cyber crimes.
"Any person who is found to misuse telephone services or any other wire or wireless service or other public services or abuses, transfers or diffuses any of these services or lines designed to transfer or link these services shall be punished by imprisonment or fine," he said, as listed in Article 391 of the legislation.
Gulf News
