301-571-5040    Get SUPPORT

Washington Works Blog

Tech Term: Hacker

Tech Term: Hacker

The term “hacker” is possibly one of the best-known technology-related terms there is, thanks to popular culture. Properties like The Girl with the Dragon Tattoo and the Die Hard franchise have given the layman a distinct impression of what a hacker is. Unfortunately, this impression isn’t always accurate. Here, we’ll discuss what real-life hackers are like, and the different varieties there are.

Defining Hackers
In broad terms, a hacker is an individual that uses their computing and programming skills, sometimes cooperatively with others like them, to identify and exploit gaps in the protocols that protect computer systems. Their actions after that point can be used to classify them further.

There are three main classifications, with subtypes to specify different types of hackers more specifically.

The Types of Hackers
Black Hat
Black hat hackers are the first kind that you probably think about, as they are the bad guys of the hacking spectrum. They are the ones who use their computer skills to entrap their victims and steal information for their own benefit, largely contributing to the public perception of hackers as a whole. If someone is a black hat hacker, their work is motivated by personal gains, tends to take effect at the expense of others, and is illegal.

White Hat
White hat hackers fall on the opposite side of the hacking spectrum, electing to use their skills to help businesses and other organizations keep their IT systems secure by seeking out weak points and vulnerabilities so that steps can be taken to fix these problems. White hat hackers also only operate by request - they will not hack your systems unless you ask them to try. In a way, if Washington Works were to run a penetration test on your business, we would be operating as white hat hackers.

Gray Hat
As their name would suggest, gray hat hackers are a combination of black hat and white hat. While they avoid being classified as black hat by not personally profiting from a hack, they also aren’t white hat, as their hacks aren’t done with the permission (or knowledge) of their target. The vulnerabilities they find will sometimes be reported to the hacked organization or distributed online for others to take advantage of.

Hacker Subtypes
Script Kiddies
These are the amateurs, the hackers that rely on pre-written code to launch basic attacks on their targets. Their motivation is often to attract attention or to impress others, with no appreciation for why the codes they leverage work and no desire to learn.

Blue Hat
Similar to a script kiddie, a blue hat hacker is an amateur who uses the code written by others to lash out against those who have wronged them in their eyes. Again, like a script kiddie, a blue hat hacker has no desire to learn how hacking works, they just want to use it as a means to a vengeful end.

Red Hat
A red hat hacker is a hacker that targets other hackers. Rather than reporting a discovered attack, as a white hat hacker would, a red hat hacker will instead attack back. With the goal of preventing black hat hackers from being able to hack, red hats will use cyberattacks and malware to take them out of commission.

Green Hat
The greenhorns of the hacking world, green hats are script kiddies who actually want to learn and improve. Always ready to ask questions of more experienced hackers and to learn all they can, green hat hackers are the ones who grow to be more skilled in the future.

State-Sponsored
These hackers are employed by a governing body to serve the state, stealing valuable information and targeting the enemies of a nation. These hackers have been known to strike out against key individuals and companies, as well as the opposing nation as a whole. Their status as a government agent provides them with considerable support and resources.

Hacktivist
Again, acting either as an individual or as a part of a group, hacktivists leverage their abilities to act upon a deeply-held conviction. By putting their skills to use, hacktivists are able to damage entities who hold beliefs counter to their own, whether that entity is a business or a governing body. As one might image, their driving motivation is to encourage (or “encourage”) social change.

Whistleblower/Malicious Insider
Instead of relying on hacking skills or borrowed codes, these hackers are those that use their status as an employee to gain access to a company’s confidential, invaluable data. Some act to appease a grudge they have fostered against their employer, while others are moles for one of the company’s rivals. Either way, these hackers are some of the most dangerous to the company, as their threats are the ones that usually aren’t seen coming.

Hackers Switching Hats
Complicating matters somewhat, a hacker’s hat isn’t forever. Many hackers have moved from the realm of black hat to gray. Samy Kamkar gained enough notoriety to earn a lifetime ban from the Internet after crashing MySpace with a worm at the tender age of 19 in 2005. However, his sentence was lifted after three years of good behavior. Today, Kamkar wears a gray hat, identifying vulnerabilities independently and reporting them to those who need to know.

However, the opposite case is equally possible, and shows that these considerations can be complicated. For example, In May 2017, Marcus Hutchins (AKA “MalwareTech”) was responsible for putting a stop to WannaCry but was arrested in August 2017 for allegedly writing and distributing the Kronos banking Trojan, potentially trading a white hat for a gray hat.

There are others, too. MIT professor Robert Morris created the first ever computer worm during his graduate studies at Cornell University, and was the first to be convicted under the Computer Fraud and Abuse Act as a result. A one-time member of the LulzSec Group that hacked the CIA and Sony, Mustafa Al-Bassam now works as a security adviser.

At the end of the day, hackers are more than just a black and white topic, and the lines get more and more blurred every day. What do you think? Is “hacker” a pejorative term, or is it more complicated than just that? Share your thoughts in the comments!

Smaller Practices are Choosing Cloud-Based EHR
Here Are Some VoIP Features That May Surprise You
 

Comments

No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Guest
Sunday, November 18 2018
If you'd like to register, please fill in the username, password and name fields.

Captcha Image

Mobile? Grab this Article!

QR-Code dieser Seite

Tag Cloud

Security Tip of the Week Technology Best Practices Cloud Privacy Business Computing Malware Hackers Email Business Network Security Software Tech Term Internet Productivity Computer Hosted Solutions Data Backup Mobile Devices Data Managed IT Services Backup IT Support Microsoft Ransomware User Tips Data Recovery Productivity Google Managed Service Provider IT Services Outsourced IT Smartphone Efficiency Encryption Cloud Computing Innovation Business Continuity Workplace Tips Android Windows 10 Hardware Communication Small Business Data Management Browser Business Management Office 365 Social Media Paperless Office Bandwidth Government Remote Monitoring Save Money Collaboration Server Disaster Recovery Vulnerability Managed IT Services Unified Threat Management Phishing BYOD Artificial Intelligence Work/Life Balance Windows 10 Facebook Cybersecurity App Smartphones Infrastructure Tip of the week BDR Internet of Things Antivirus How To VoIP Politics Two-factor Authentication Wi-Fi Compliance SaaS IT Management File Sharing Passwords Document Management Managed Service Hosted Solution Maintenance Apps Office Word Password Healthcare Employer-Employee Relationship Customer Relationship Management Windows Network Mobile Device Chrome Big Data Money Chromebook Virtual Reality Saving Money Applications Holiday Risk Management Firewall Vendor Management Scam Computer Care Alert Remote Monitoring and Management Health Taxes Router Data loss Samsung Blockchain Remote Workers Training How To Gmail Websites Physical Security Twitter Tech Support VPN Computing Regulations IoT Information Meetings Quick Tips Storage Data Security Communications Hacker Business Technology Botnet Robot Server Management Virtual Private Network Recovery Automobile HIPAA Machine Learning Remote Computing Identity Theft Website Mobile Security Point of Sale Telephone Systems G Suite Automation Smart Technology Patch Management Smart Tech Employee-Employer Relationship Motion Sickness Mobile Device Management Downloads IT Technicians Bring Your Own Device Project Management Private Cloud Test Downtime IT Budget Unified Threat Management Staff Mobile Read Only Cortana Black Market Disaster Distributed Denial of Service Heating/Cooling Tracking Crowdsourcing Language Internet Exlporer Service Level Agreement E-Commerce Web Server Emoji Comparison Time Management Wires Employees Office Tips Connectivity Multi-Factor Security Mirgation Networking Vulnerabilities Conferencing Error WPA3 Digital Payment Electronic Medical Records User Error Company Culture IT Consultant Augmented Reality Uninterrupted Power Supply Managed IT Service Servers Modem Zero-Day Threat Personal Information YouTube Computing Infrastructure Value Utility Computing Features Cameras Specifications Network Management IBM Permissions Managed IT Update Google Calendar Geography Instant Messaging Staffing Fleet Tracking Cybercrime Legal Printer Analytics Wearable Technology Managing Stress Help Desk The Internet of Things Break Fix Cookies Administrator Gadgets Budget Settings Alerts Electronic Health Records Law Enforcement CCTV Microsoft Office IT Support Black Friday Touchscreen Social Networking Social Notifications Corporate Profile Fraud Outlook Star Wars Professional Services Monitoring Webcam Legislation Google Drive Chatbots High-Speed Internet Finance Solid State Drive Dark Web Statistics Nanotechnology Asset Tracking Sports Access Control Lenovo Enterprise Content Management Bookmarks Education IT Solutions MSP Human Error Computer Repair Users Digital Licensing Mail Merge Management Cyberattacks Gadget Virtualization Cabling Cyber Monday Motherboard Customer Service WannaCry Shortcut Cost Management USB Consulting Mouse VoIP Identity Techology Development Authentication WiFi Upgrade Hard Disk Drive Microsoft Excel Bluetooth Screen Reader OneNote Travel Search SharePoint Firefox Superfish Unified Communications Favorites Relocation Cleaning Upgrades Processors Proactive Permission Supercomputer Spyware Cooperation Address Enterprise Resource Planning Files Spam Monitors Hotspot Assessment Dongle Managed Services Provider Wireless Tablet Avoiding Downtime Cables Authorization GPS CrashOverride Public Speaking Presentation Lithium-ion battery RMM Emergency Printers Hiring/Firing Wireless Technology 5G Safety Fun Marketing Regulation Backup and Disaster Recovery Competition IP Address Hard Drives Miscellaneous Mobile Office Domains