On Dark reading I found this post. It is about how to move the IT security effort from the cool flashy offensive stuff to defense. The post send me to this blog and some related slides from black hat 2011 located on slideshare.
The PDF gives an overview of “the home-field advantage”, but the fun part was the slides. They go through the humorous motion of how to mess with the hackers. It is definitely recommended reading 🙂
The idea of having some sort of shadow system that is not used in production, and that only bad guys would consider accessing, appeals to me (and it is so much easier to get permission to do as opposed to offensive hacking). Honey pots, labyrinth websites and so on – I think we should find a company that want to play with this as a 4th semester internship.