Question

Successful DDoS attacks often require compromising several unprotected computers by downloading malware into them that turns these computers into zombies under the control of the malicious hacker. Do you think, it will be ethical to track down the owners of these zombie computers and fine or otherwise punish them, as a means of encouraging people to better safeguard their computers? Why or why not? Explain.

Answer 1

It will not be ethical to track down, fine, or punish the owners of these zombie computers due to the following reasons:

1. Just because a hacker was successful in downloading malware into someone's computer does not necessarily imply that the owner of that computer did not take any steps to safeguard their computer. It might have been the case that the owner took all possible steps, like installing antivirus software, etc., to the best of their knowledge but still, the hacker was successful due to the weakness of that antivirus software.

2. Routinely it happens that hackers are able to penetrate into well guarded corporate networks & computer systems that are actively protected by professional cybersecurity experts. If even those systems can get hacked, it will be completely unethical to put the blame on normal computer owners.

3. New vulnerabilities in operating systems & other software are found every day which hackers can & do exploit to put malware into the users' systems. Normal day to day computer users cannot keep track or fix those vulnerabilities by themselves.