Poll: Is it moral to "hack back" the source of a computer hack in progress?

[OSPA_President]

If your network security administrator identifies the likely source of a computer hacking attempt, is it moral or ethical to "hack back" that source in order to end the attack? Please discuss.

[bigbubba]

It's tempting to do sometimes, especially when it's on your home network!
But it's better for you to go through the proper authorities.

[Keyser Soze]

I don't think it is a question of morals.  I think is it operationally or legally a sound idea a better question.  I am by no means a computer expert but in hacking back will you create vulnerabilities in your networks?  In hacking back will you tamper with any computer forensics the real experts will need in order to prosecute?

[OSPA_President]

That's a good point, Keyser, especially that the more relevant question is one of legality.
Assuming that one's already isolated the affected network or systems, it shouldn't effect the forensics- but if you "hack back", it could definitely complicate any future litigation!

[cc11]

I voted sometimes, depending on who and what they are trying to access. Obviously the need to eliminate the threat is of the utmost importance, and back hacking will allow for you to gain valuable info as to who it is that is hacking and what exactly they have gained and further looking to gain.
I have a very keen interest in  Cyber Security and Cyber Threats. Not sure if anyone else saw the 60 minutes program approx 3-4 months ago discussing the US Intel that had been stolen through computer hackers. Essentially they fear that hackers now have the ability to shut down essential services all over North America. The Brown Outs that occured a few years back could very well have been the work of terriosts, pilot testing etc.
The interview went on discussing that they also gained valuable Military intel as well financial information which is pretty scary stuff.

[Guarddog]

I voted Yes, an agency or company etc. Would have no choice, as long as they have the capability I suppose.

[cc11]

I voted Yes, an agency or company etc. Would have no choice, as long as they have the capability I suppose.

Good Point, the main problem here is that MOST companies likely do not have the capability, or perhaps they may have strict morals and choose not to retaliate.

[Guarddog]

I would guess most would not know how to hack back, unless they had some very creative IT people on board.
Activities such as this may also create legal reaction as well.

[cc11]

I would guess most would not know how to hack back, unless they had some very creative IT people on board.
Activities such as this may also create legal reaction as well.

Good point.