"It's true that it's impossible to completely defend against denial of service attacks and still be accessible, " says MarcusRanum, chief security officer of Tenable Security.
Even skeptics of Moy's plan, like MarcusRanum, chief technology officer at Tenable Security, agree that more comprehensive penetration tests may be the only way to show companies how badly they need to revamp their security.
Far more common--but still damaging--are the high-volume crime spikes, spam e-mail distribution and "phishing, " a pernicious technique for stealing credit-card information. (For more on online scams, check out "Where The Scammers Are".) The carnage is hard to pin down in dollar terms, but MarcusRanum, chief security officer of Tenable Security, says it's "billions upon billions"--far more than all "major" hacking incidents combined.